Suppose I want to add a custom patch to a release system (backport patch from
current and compile on release),
but keep the system able to load more official syspatches:
is it enough to put the relevant new object file (say pf.o) in
/usr/share/relink/kernel/GENERIC.MP/
and just do
On 23/05/2024 20:18, Peter N. M. Hansteen wrote:
On Thu, May 23, 2024 at 11:14:20AM +0200, Why 42? The lists account. wrote:
I need to quickly create a solution for forwarding multicast traffic
between two systems, so I though perhaps I could use pf to do just that
by writing some rules along
On 19/05/2024 19:35, Kapetanakis Giannis wrote:
> On 19/05/2024 14:37, Stuart Henderson wrote:
>> On 2024-05-19, Kapetanakis Giannis wrote:
>>> This is a bit strange. pf works normal, but rules after an enchor an
>>> being attached to the anchor (somehow).
>>>
On 20/05/2024 00:03, Kirill A. Korinsky wrote:
> On Sun, 19 May 2024 20:52:56 +0100,
> Kapetanakis Giannis wrote:
>> I'm trying to bisect a bug and compile an older kernel from cvs
>>
>> cvs checkout -D "2023-01-05" src/sys
>>
>> and following
I'm trying to bisect a bug and compile an older kernel from cvs
cvs checkout -D "2023-01-05" src/sys
and following https://www.openbsd.org/faq/faq5.html#Options
+ make install
New kernel compiles and boots but I get:
# pfctl -f /etc/pf.conf
pfctl: DIOCADDRULE: Operation not supported by
On 19/05/2024 14:37, Stuart Henderson wrote:
On 2024-05-19, Kapetanakis Giannis wrote:
This is a bit strange. pf works normal, but rules after an enchor an
being attached to the anchor (somehow).
All states that are created from rules after the anchor, show the anchor
(pf rule) number instead
This is a bit strange. pf works normal, but rules after an enchor an
being attached to the anchor (somehow).
All states that are created from rules after the anchor, show the anchor
(pf rule) number instead of (only) the rule number in pfctl -vv and in
pflog.
Here is a quite simple example.
Hi,
I want to convert a pf rule to rdr-to via relayd (add load balancer in
the mix to multiple servers).
My hesitation is how to pass the extra tcp options I pass in the rule.
I believe this should be done via match rules, but I'm not sure if the
pass rule should be on the pf or the relayd
On 26/04/2024 20:48, Tobias Fiebig wrote:
Moin,
I am currently playing around with some relayd things, and noticed that
relayd has a #define for RELAY_MAXHOSTS 32 (defined in 2007); Currently
planning to give 64 a shot.
Does somebody recall why this value was chosen? (Kind of trying to not
On 17/04/2024 17:37, Federico Giannici wrote:
> On 4/17/24 15:19, Stuart Henderson wrote:
>> This is most likely because of:
>>
>> https://www.openbsd.org/74.html
>> "Disabled TLSv1.0 and TLSv1.1 in libssl so that they may no longer be
>> selected for use."
>>
>> I don't think there's anything
On 17/04/2024 16:19, Stuart Henderson wrote:
> On 2024-04-17, Federico Giannici wrote:
>> Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4)
>> the FreeRadius EAP authentication no longer works!
>>
>> We are using a custom version of FreeRadius (because we had to do some
>>
On 28/03/2024 20:17, Stuart Henderson wrote:
> On 2024-03-28, Hrvoje Popovski wrote:
>> On 28.3.2024. 11:01, Kapetanakis Giannis wrote:
>>> I'm looking for a new server to replace our firewall/routing.
>>>
>>> Would like to ask if PERC H74
I'm looking for a new server to replace our firewall/routing.
Would like to ask if PERC H745 is supported.
mfi(4) lists
- Dell PERC 5/e, PERC 5/i, PERC 6/e, PERC 6/i, PERC H310, PERC
H700, PERC H800
Is this ok?
Trying bsd.rd on a newer server with H755, it was NOT
On 02/03/2024 12:46, Kasak wrote:
Hello misc! There is a good manual on OpenBSD faq about redirection and
reflection, here it is: https://www.openbsd.org/faq/pf/rdr.html#tcpproxy
I’m using nginx as tcp and udp proxy, but maybe there is another software, more
suitable for this task?
I need to
Has anyone tried these HUNSN mini pcs/routers with multiple interfaces?
I'm thinking of getting one for home routing. Does it work with OpenBSD?
(dmesg?)
Performance? Will it route/firewall at 1Gbps? Intel N100 seems to be low on TDP
and gives numbers.
Any problems with I226? I've read about
I was wondering if anyone runs gre tunnels over carp.
We have an OpenBSD router that does ipsec over gre tunnels with remote location
routers in order to pass voip traffic.
Routing is done with ospf on top of gre.
I'd like to add sasyncd in the mix and a 2nd router for higher availability.
Hi,
I have a strange behavior on my relayd servers. Relayd continues checking
disabled hosts. I see it on backend server's logs.
If relayd detects a down -> up of the service it re-adds the hosts in the table
and passes traffic to the disabled hosts.
Status remains disabled.
Setup is with
On 01/12/2023 13:30, Kapetanakis Giannis wrote:
> I checked web csv but can't see any related change on relayd...
>
> On August and 7.3 this didn't happen.
Not relevant. I'm not on current, I run release.
G
Hi,
This is the 2nd panic I get on this machine after 7.4, both the same,
ip_output() from pflow_output_process()
ddb{0}> show panic
*cpu0: ip_output no HDR
ddb{0}> trace
db_enter() at db_enter+0x14
panic(820bea35) at panic+0xc3
If you're looking for a mirror to install/update
ftp.cc.uoc.gr runs on both IPv4/IPv6 and is listed in official mirrors.
http://ftp.cc.uoc.gr/mirrors/OpenBSD/
G
On 23/10/2023 08:58, Armin Jenewein wrote:
> No idea what you perceive here as a "rant", my apologies if that seemed
> like one to
On 08/10/2023 04:00, Courtney wrote:
> Ultimately, I want to serve a handful of services on 80/443 that are
> easily accessible internally and externally, and I don't want to have
> unencrypted traffic between relayd and my server for the services that
> are passing sessions and such.
Then don't
On 19/07/2023 13:31, Stuart Henderson wrote:
> On 2023-07-19, Kapetanakis Giannis wrote:
>> Maybe even better, can it run under relayd (redirect) on top of carp?
> That's just rdr-to behind the scenes, no problem with that, though if
> you want to do per IP rate limiting
On 18/07/2023 23:59, Stuart Henderson wrote:
> PF's state-tracking options are only for TCP. (Blocking an IP
> based on number of connections from easily spoofed UDP is a good
> way to let third parties prevent your machine from communicating
> with IPs that may well get in the way i.e. trigger a
On 04/07/2023 16:08, r...@danwin1210.de wrote:
How do I block the network access completely for a certain program with a
blacklist or whitelist, whitelist prefered, with OpenBSD's pf(4)? My pdf
reader, music player, video player, vim and much more shouldnt have access
to networking at all. I
Hi,
I'm trying to install current on a Dell R350 with PERC H355 and does not detect
the virtual disk (raid 1).
Is it not supported yet?
OpenBSD 7.3-current (RAMDISK_CD) #1203: Sun Jul 2 12:26:19 MDT 2023
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/RAMDISK_CD
real mem =
On 15/06/2023 19:07, Peter Nicolai Mathias Hansteen wrote:
>> On 15 Jun 2023, at 16:26, Kapetanakis Giannis
>> wrote:
>> After applying some keep state (if-bound) on major rules, I 've already
>> found a problem.
>>
>> pfsync.
>>
>> It co
On 15/06/2023 17:17, Kapetanakis Giannis wrote:
> Hello,
>
> I'd like to make a change to my firewall/router from the default state-policy
> floating to if-bound
>
> I believe the way my pf.conf is configured it will not do any harm but I'm
> being cautious here a
Hello,
I'd like to make a change to my firewall/router from the default state-policy
floating to if-bound
I believe the way my pf.conf is configured it will not do any harm but I'm
being cautious here and I'd like some info.
The way I see it, I have two states for each packet traveling either
On 06/06/2023 16:49, Paul Pace wrote:
> On 6/5/23 3:15 PM, Nick Bouliane wrote:
>> Hi,
>>
>> in relayd.conf I'm trying to do :
>>
>> pass from 192.168.1.1 path "/something.html"
>>
>> If I individually specify the "from" or the "path", it works
>> but when I combine both, it doesn't work.
>
>
I use https://undeadly.org/errata/errata.rss
Seems to work for the last 2 years
G
On 23/05/2023 13:13, Stuart Henderson wrote:
> On 2023/05/23 09:35, Xavier wrote:
>> I did not say that. I did not see that you in particular, or anyone in this
>> mailing list, make this work.
>> As a user, I
On 16/05/2023 00:11, Lyndon Nerenberg (VE7TFX/VE6BBM) wrote:
Nick, spare yourself the pain and just designate one machine as the
master. This is how we run all our proxy server pairs (nginx,
squid, other stuff). For a pair fooa/foob, 'a' is the master, and
gets advskew 100. The 'b' host gets
On 12/05/2023 14:43, Nick Holland wrote:
> I had several other people suggest network problems. I'm not going to
> say "impossible" or even "unlikely", but my understanding is that the
> two machines are both plugged into the same switch, in the same rack.
>
> Several people pointed out I was
Hi,
I still see those messages in my logs.
May 11 06:08:01 /bsd: pf: pfr_get_astats: corruption detected (7)
What does it mean? Is there a problem with my pf tables?
Thanks,
G
On 21/11/2022 18:47, Kapetanakis Giannis wrote:
> Hi,
>
> Can someone explain messages of type
&
On 21/02/2023 14:41, Florian Obser wrote:
> On 2023-02-21 14:24 +02, Kapetanakis Giannis
> wrote:
>> Yes I'm using default netflow version 5.
>>
>> is IPFIX better in general or the only one that supports ipv6?
> Yes, version 5 is not specified for IPv6 flows, o
23-02-21 13:12 +02, Kapetanakis Giannis
> wrote:
>> Hi,
>>
>> Does pflow(4) support export of ipv6 flows?
>>
>> I see none recorded.
>>
>> Thanks,
>>
>> G
>>
Hi,
Does pflow(4) support export of ipv6 flows?
I see none recorded.
Thanks,
G
Hi,
Can someone explain messages of type
/bsd: pf: pfr_get_astats: corruption detected (2)
in /var/log/messages?
thanks,
G
Thanks both Paul and Hrvoje for the quick replies :)
Good news then, lets hope for a better performance.
G
Hi,
Looking for upgrading our firewall/router and thinking about switching from
Xeon to EPYC (73F3 - 16C @ 3.5 GHz).
Anyone running on EPYC? Any problems?
Alternative would be something like dual Intel Xeon Gold 5315Y - 8C @ 3.20
thanks,
Giannis
401 SINGLE:MULTIPLE
all udp 127.0.0.1:123 (remote_ntp2:123) <- y.y.y.y:52525 SINGLE:MULTIPLE
:(
G
On 15/09/2022 11:12, Kapetanakis Giannis wrote:
> Hi,
>
> I'm trying to enforce a local ntpd server (which is also our external
> firewall/router) for all connections and I have a very stran
On 15/09/2022 15:06, Kapetanakis Giannis wrote:
> The problem/limitation is probably from local port binding of the client:123
> which is used for both connections.
>
> I see other clients that use high ports for ntp queries that create multiple
> states without any probl
Hi,
I'm trying to enforce a local ntpd server (which is also our external
firewall/router) for all connections and I have a very strange problem.
Only one (dst) IP is allowed to create a state. After state expires a new dst
IP can be used.
fw# pfctl -sr -R 154
pass in log quick on $int_if inet
On 18/06/2022 12:15, Cristian Danila wrote:
Good day! Does anyone know if OpenBSD(7.1) has the capability to be hidden
against a pingscan(nmap -sn xxx.xxx.xxx.xxx)?
In PF I have only 2 rules to block everything:
block in quick all
block out quick all
This is a fresh OpenBSD7.1 with no other
On 09/02/2022 19:48, Mihai Popescu wrote:
> $ dmesg | grep smt
> cpu0: smt 0, core 0, package 0
> cpu1: smt 1, core 0, package 0
> cpu2: smt 0, core 1, package 0
> cpu3: smt 1, core 1, package 0
>
> for
>
> AMD A8-5500B APU with Radeon(tm) HD Graphics, 3194.46 MHz, 15-10-01
>
> What could be the
Sorry to jump-in, but could this be similar to a problem I have since 6.7 ?
https://marc.info/?l=openbsd-misc=159611309426907=2
tldr;
Server does not finish boot until I connect to the server's java console on the
iRMC (console redirection).
G
On 31/01/2022 16:51, Mark Kettenis wrote:
>> Date:
Hi,
I want to push data from pflog0 device to my graylog server.
Has anyone done something similar or maybe with elastic/GELF ?
There is https://github.com/dennisoelkers/keil but seemd abandoned and I
couldn't make it work.
There is also packetbeat which is also ported to openbsd but it seems
On 10/11/2021 14:58, Paul Wisehart wrote:
Hi!,
Does anyone recommend a forum software that works well with OpenBSD/httpd?
I installed phpBB, and it seems fine, but I figured I'd ask here before
forging ahead.
Thanks!,
--
Paul Wisehart
You can also check SMF
https://www.simplemachines.org/
On 03/11/2021 06:53, cho...@jtan.com wrote:
> ...
>
> On the gripping hand, all it does is run fw_update and syspatch.
This. Unless there is something more.
Anyway, I followed Stuart's advice of adding a second DNS server in resolv.conf
apart from 127.0.0.1
which was my usual practice for
Hi,
Just a notice for this.
I have a system which is a DNS server it self and runs isc-bind, so the daemon
is started from $pkg_scripts.
rc.firsttime is run before pkg daemons are started so the system cannot (yet)
resolve since it lists itself in /etc/resolv.conf
If there is no other reason,
How about a distributed setup?
Has anyone thought of a way getting IPs from various servers (say linux
& fail2ban) to the central OpenBSD (pf) firewall?
Ideally with history in order to punish more the frequent abusers.
I had plans on looking to bgp to distribute the IPs around but maybe
On 02/02/2021 05:18, Jordan Geoghegan wrote:
Hello,
I had a question about using relayd with pfsync.
I have a small gateway/load-balancer set up with relayd, carp and pfsync plus
BGPd for IP failover, and everything is working great. I was pleasantly
surprised at how easy it was to get
On 30/01/2021 10:50, Bastien Durel wrote:
Hello,
IFAIK, wgaip is not routing, using wgaip 0.0.0.0/0 does not add a
default route on interface.
Regards,
Cool.
At least on linux it adds routes by default, which is not always desirable.
Although reading the manual now, there is an option
On 29/01/2021 23:32, Bastien Durel wrote:
Le 29/01/2021 à 17:44, Olivier Cherrier a écrit :
Hi,
I'm trying to setup OSPF on a working Wireguard VPN using 6.8 amd64
machines. This is what I get:
# ospfd -dvvv
id = "172.26.1.1"
startup
kr_init: priority filter enabled
orig_rtr_lsa: area
On 12/01/2021 18:58, Carlos Lopez wrote:
Thanks Gianni, but about what interface ? KVM bridges? In theory, MAC spoofing
is avoided using this option:
bridge.ageing-time: 300
On 12/1/21, 17:47, "owner-m...@openbsd.org on behalf of Kapetanakis Giannis"
wrote:
Check that you have mac spoofing filter disabled on that interface.
G
On 12/01/2021 15:30, Carlos Lopez wrote:
Hi David and misc@,
Sorry to disturb with this.I have realized several tests this morning with two
OpenBSD 6.8 carp'ed firewalls (fully patched) as kvm guests and result is the
Has anyone seen this before?
I'm experiencing disk stalls while doing sysupgrade.
OpenBSD 6.7 -> 6.8, which is a test VM running on KVM RHEL7/RHEL8.
VM storage is LVM on top of 10Gbps iSCSI with multipath.
Disk and network are on virtio.
Installation is fine (iso image stored locally on node).
On 12/01/2021 10:25, Stuart Henderson wrote:
> On 2021-01-12, Masato Asou wrote:
>> Hi,
>>
>> From: Salvatore Cuzzilla
>> Date: Mon, 11 Jan 2021 17:40:21 +0100
>>
>>> I'm having some troubles with compiling the latest version of pmacct
>>> (https://github.com/pmacct/pmacct) on obsd6.8 .
>>>
>>>
Hi,
I've changed today my config from broadcast to p2p for both ipv4 and ipv6.
In ospf6d I get this quite often:
Dec 29 17:39:00 ospf6d[40695]: send_packet: error sending packet on interface
vlanX: Network is unreachable
Dec 29 17:39:00 ospf6d[40695]: send_ls_update: Network is unreachable
On 23/12/2020 03:53, Stuart Henderson wrote:
On 2020-12-22, Kapetanakis Giannis wrote:
Hi,
After upgrading to 6.8-release I can no longer connect to my ldap server with
openldap and SSL/TLS.
I'm using a self signed root CA to sign LDAP server's certificate.
/etc/openldap/ldap.conf has
additional setting seem to help this.
With kindest regards,
Kostya Berger
On Tuesday, 22 December 2020, 17:52:48 GMT+3, Kapetanakis Giannis
wrote:
Hi,
After upgrading to 6.8-release I can no longer connect to my ldap
server with openldap and SSL/TLS.
I'm using a self signed root CA to
Hi,
After upgrading to 6.8-release I can no longer connect to my ldap server with
openldap and SSL/TLS.
I'm using a self signed root CA to sign LDAP server's certificate.
/etc/openldap/ldap.conf has:
TLS_CACERTDIR /etc/openldap/cacerts
TLS_REQCERT demand
# /usr/local/bin/ldapsearch -d9 -x
I've managed to track this a little bit further.
Boot stop and waits until I connect to the server's java console on the iRMC.
Upon connect, even with wrong username/password virtual keyboard is attached
and boot continues. There seems to be some kind of infinite loop...
I've checked various
On 25/07/2020 11:28, Martin wrote:
Hi,
Sometimes dedicated VMs need fixed (the same) IP address assigned by dhcpd
every run. I don't know how to achieve this by dhcpd configured. Every VM
reboot it gets different IP. OpenBSD guests changes their IPs even without
reboot, right in runtime.
On 04/07/2020 14:59, Brian Brombacher wrote:
On Jul 3, 2020, at 3:34 AM, Kapetanakis Giannis
wrote:
Hi,
My setup in relayd is like this:
redirect radius {
listen on $radius_addr udp port radius interface $ext_if
pftag RELAYD_radius
sticky-address
forward to mode least-states check
Hi,
My setup in relayd is like this:
redirect radius {
listen on $radius_addr udp port radius interface $ext_if
pftag RELAYD_radius
sticky-address
forward to mode least-states check icmp demote carp
}
redirect radacct {
listen on $radius_addr udp port radacct interface $ext_if
On 10/06/2020 12:52, Valdrin MUJA wrote:
> Sorry for lack of information,
>
> Firstly, my program is a kind of interactive shell which has own login
> prompt. What I want to do is run my program on startup and do not use OpenBSD
> login prompt.
>
> When I use "chsh", firstly OpenBSD Login
On 10/06/2020 12:03, Valdrin MUJA wrote:
> Hi Misc,
>
> I want to disable OpenBSD Login prompt at startup -and also after logging
> out-. Because I want to run my external program instead of ksh. There is an
> login prompt also in my program and I want to use it.
>
> I updated the /etc/ttys ;
>
errupt
atapiscsi0 at pciide1 channel 1 drive 0
scsibus3 at atapiscsi0: 2 targets
cd0 at scsibus3 targ 0 lun 0: removable
cd0(pciide1:1:0): using PIO mode 4, Ultra-DMA mode 5
usb2 at uhci0: USB revision 1.0
uhub2 at usb2 configuration 1 interface 0 "Intel UHCI root hub" rev 1.00/1.00
addr
Hi,
I'm trying to update a Fujitsu RX200 S6 server from 6.6->6.7 and I'm having
problems.
via sysupgrade boot of upgrade kernel stops (no hung, no ddb) at
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com0: console
pckbc0 at isa0 port 0x60/5 irq 1 irq 12
pcppi0 at isa0 port 0x61
On 28/05/2020 07:16, Quantum Robin wrote:
Hi,
While surfing on the Google to learn more about OpenBSD, I encountered this
one: "OpenBSD: Not Free Not Fuctional and Definetly Not Secure (
https://aboutthebsds.wordpress.com/2013/01/25/20/)
Is the author telling the truth? Or just yet another
On 20/05/2020 11:23, Henrik Krysteli Semark wrote:
> Did the same on my edge firewalls two days ago, with sysupgrade.
>
> It just works flawlessly!
>
+1
G
On 04/03/2020 18:35, Florian Obser wrote:
> The ifconfig option parser is... special.
> You must set flowdst as well as pflowproto.
my bad.
the problem was the src IP which was changed and the change wasn't reflected in
the hostname.pflow0
sorry for the noise
G
Hi,
Is IPFIX removed from pflow in 6.6?
# ifconfig pflow0 pflowproto 10
ifconfig: SIOCSETPFLOW: Can't assign requested address
pflow(4) still mentions it.
regards,
Giannis
On 15/12/2019 21:57, Denis Fondras wrote:
Hi,
I have this setup :
em3: flags=8843 mtu 1500
lladdr
index 4 priority 0 llprio 3
media: Ethernet autoselect (1000baseSX full-duplex)
status: active
inet6 fe80::aa9:b803:8a7a:ca72%em3 prefixlen 64 scopeid
On 23/10/2019 19:14, Predrag Punosevac wrote:
> Hi Misc,
>
> I just upgraded a LDAP server from 6.5 to 6.6 running authorization and
> authentication services for a 100 some member university research group.
> It appears TLS handshake is broken. This worked perfectly on 6.5 and
> earlier.
>
>
Hi,
Today I found out that I was able to disable/enable hosts by name instead of id
:)
It would be nice if it worked when a host is mentioned in multiple
redirects/tables (ie different ports):
Id Type Name Avlblty Status
3 redirect
On 23/06/2019 19:39, Stuart Henderson wrote:
On 2019-06-22, Henry Bonath wrote:
What about GRE(4) with a Cisco router on the other end?
/etc/hostname.gre123:
1.1.1.1 1.1.1.2 netmask 255.255.255.252 up
tunnel IP.OF.OB.SD IP.OF.I.OS
Cisco IOS:
!
interface Tunnel123
ip address 1.1.1.2
On 21/06/2019 20:30, Stuart Henderson wrote:
On 2019-06-21, Kapetanakis Giannis wrote:
Hi,
Can I get an update if point to point network support has been added in ospfd?
Thanks
G
On 19/12/2014 12:54, Kapetanakis Giannis wrote:
On 18/12/14 22:38, Stuart Henderson wrote:
On 2014-12-17
Hi,
Can I get an update if point to point network support has been added in ospfd?
Thanks
G
On 19/12/2014 12:54, Kapetanakis Giannis wrote:
> On 18/12/14 22:38, Stuart Henderson wrote:
>> On 2014-12-17, Kapetanakis Giannis wrote:
>>> Hi,
>>>
>>> I'd like
On 28/05/2019 11:12, Janne Johansson wrote:
> Den sön 26 maj 2019 kl 10:03 skrev Walt :
>
>> I like having a firewall that would pretty much require someone physically
>> entering the computer room in order to attack the firewall. With OpenBSD,
>> your firewall can control your network traffic
Fixed it by deleting /var/run/rc.d/pmacctd
G
On 13/03/2019 11:24, Kapetanakis Giannis wrote:
> Hi,
>
> I'm trying to create a rc file for pmacctd. I've defined the pexp var but for
> some reason it is not working.
> I'm probably missing something not obvious to me.
Hi,
I'm trying to create a rc file for pmacctd. I've defined the pexp var but for
some reason it is not working.
I'm probably missing something not obvious to me.
#!/bin/sh
#
daemon="/usr/local/sbin/pmacctd"
. /etc/rc.d/rc.subr
pexp="pmacctd: Core Process.*"
rc_reload=NO
rc_cmd $1
pexp
On 20/02/2019 23:38, Henry Bonath wrote:
> Not sure if this is what you are looking for, but I like Netdisco for this.
> It uses SNMP to query network routers, switches, and access points,
> and dumps out their TCAM as well as ARP tables into a Database in
> order to preserve a history of not only
On 31/01/2019 15:57, kasak wrote:
> 31.01.2019 15:18, Kapetanakis Giannis пишет:
>> Hi,
>>
>> I've just installed current as well 6.4 on a new pc and I have problems
>> booting it.
>>
>> Although I can boot bsd.rd and install system fine I cannot boot the
Hi,
I've just installed current as well 6.4 on a new pc and I have problems booting
it.
Although I can boot bsd.rd and install system fine I cannot boot the normal
kernel.
Boot hungs after
wskbd0 at pckbd0: console keyboard, using wsdisplay1
In bsd.rd next line is
softraid0 at root
I
2:14:14PM +0200, Kapetanakis Giannis wrote:
>> Hi,
>>
>> I'm a bit confused about syspatch and kernel updates. One of machines after
>> latest syspatch (009) and after reboot it lists old kernel date.
>>
>> This happens only on this machine. I've seen it happen b
Hi,
I'm a bit confused about syspatch and kernel updates. One of machines after
latest syspatch (009) and after reboot it lists old kernel date.
This happens only on this machine. I've seen it happen before, not sure if it
was on the same one or some other box.
machine1:
# syspatch -l
On 19/11/2018 12:30, Stuart Henderson wrote:
> On 2018-11-16, Kapetanakis Giannis wrote:
>> Hi,
>>
>> after upgrading one of my bind (cache resolver) machines to 6.4 (release)
>> I'm getting these errors quite often:
>>
>> Nov 16 15:55:14 serve
Hi,
after upgrading one of my bind (cache resolver) machines to 6.4 (release) I'm
getting these errors quite often:
Nov 16 15:55:14 server named[30616]: client: warning: client @0x6591da02440
xxx.xxx.xxx.xxx#39702 (a1928.d.akamai.net): error sending response: would block
On 19/10/18 21:01, Shawn Southern wrote:
> So apparently this works... I was expecting relayd to listen on those ports,
> but I'm guessing that since it hooks through pf, that's not necessary.
>
> -Original Message-
> From: owner-m...@openbsd.org On Behalf Of Shawn
> Southern
> Sent:
On 13/09/18 16:25, Allan Streib wrote:
> I need to set up DHCP for several VLANs. The server has 1 physical
> interface (bnx1) available for this.
>
> My naive thought is I create the vlans with bnx1 as the "parent", e.g.
>
> /etc/hostname.vlan101:
> inet 172.16.101.253 255.255.255.0 NONE parent
Thanks for the latest changes on ospfd/ospf6d especially for 'depend on' for v6
While you're there can you please also see if you can add the following change.
I've tried to make a diff but failed.
bgpd provides fib-priority to set the routing priority which is useful.
Would you please add it
On 20/06/18 17:03, Leo Unglaub wrote:
Hey,
thank you very much for the link. I have forwarded it to the support
staff at the datacenter. I hope they apply it very quickly. I let you
know if this fixes the problem.
Thanks and greetings
Leo
On 06/19/18 21:21, Kapetanakis Giannis wrote
On 19/06/18 19:47, Stuart Henderson wrote:
On 2018-06-19, Leo Unglaub wrote:
i have searched the list archive and found some similar reports but none
of them found a solution for the problem. (at least not the threads i
have found)
I run some OpenBSD 6.3 instances in a virtual environment.
Hi,
I'm trying to evaluate a new setup with 4 routers. This test setup is on VMs
with Jun/7 snapshot.
|--- R2 ---
R1 |--- R4
|--- R3 ---
See here for better view: https://imgur.com/a/ddyEQPb
R2, R3, R4 are on a shared network and do ospf
R2, R3 have a static default route to R1
On 07/06/18 20:04, Kollar Arpad wrote:
> Hello,
>
> http://www.drdobbs.com/halted-firewalls/199101324
>
> What do you think of it? :) any similar feature in OpenBSD? :D
you might be interested in securelevel(7)
G
On 08/06/18 02:51, justina colmena wrote:
> On June 7, 2018 3:27:30 PM AKDT, Johannes Krottmayer wrote:
> " ... it is our intent that anyone be able to use these images to represent
> OpenBSD in a positive light -- but do not make profit from them "
>
> The no-profit clause is new. Sounds
On 09/05/18 13:36, Stuart Henderson wrote:
> On 2018/05/09 12:06, Jan Vlach wrote:
>> Hello Mirrors discuss list,
>>
>> it seems that ftp2.eu.openbsd.org is missing syspatches 6 and 7 in
>> https://ftp2.eu.openbsd.org/pub/OpenBSD/syspatch/6.3/amd64
>>
>> Latest snapshot in
On 25/04/18 13:22, Jan Vlach wrote:
> Hello misc,
>
> has anybody Dell PowerEdge R430 or E440 running with OpenBSD? Is the
> hardware supported?
>
> I can't really get the exact chipsets from vendor to cross check with
> drivers in OpenBSD and I can't find dmesg or mention anywhere. (Checked
>
On 19/04/18 23:46, Sebastian Benoit wrote:
> Correct. And between Mar 14 and Mar 24, there is i believe nothing (like rm
> commands etc) in the upgrade63.html that you need to do, just do the update
> and run sysmerge and syspatch and pkg_add -u.
Thanks for the answers.
Last question: What's
1 - 100 of 411 matches
Mail list logo
