This is my dmesg, if anyone is interested:
OpenBSD 7.4 (GENERIC.MP) #3: Wed Feb 28 06:23:33 MST 2024
r...@syspatch-74-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4047122432 (3859MB)
avail mem = 3904729088 (3723MB)
random: good seed from bootblocks
mpath0 at root
First and most importantly, I would like to apologize to anyone who was
disturbed by my conversation. It is not my intention to offend people. I
may be curt, but that's not because it's in my character. In daily life
I work with electronics and computers and am much less familiar with
Op 15-04-2024 om 22:20 schreef Peter N. M. Hansteen:
On Mon, Apr 15, 2024 at 10:09:31PM +0200, Karel Lucas wrote:
This gives the following error messages when booting:
no IP address found for igc1:network
/etc/pf.conf:41: could not parse host specification
no IP address found for igc2:network
That's a possibility I hadn't thought of yet. But how do I do that, and
on which page can I find that in your book?
Op 15-04-2024 om 22:17 schreef Peter N. M. Hansteen:
The other option - if your network layout is such that it makes
sense to treat them to the same rule criteria - would be to
Op 14-04-2024 om 21:57 schreef Jens Kaiser:
Hello Karel,
if you want to start simply, then I would recommend to remove all marcos
from your pf.conf which are not referenced. You can add them later if
needed. As already state by others, there is a syntax error in marco
martians. If there are
, Apr 14, 2024 at 05:09:01PM +0200, Karel Lucas wrote:
Hi all,
Everything about PF is all very confusing to me at the moment, so any help
is appreciated. So let's start simple and then proceed step by step. I want
to continue with ping so that I can test the connection to the internet.
This works
They both give a syntax error by booting.
Op 14-04-2024 om 17:45 schreef Zé Loff:
pass in on $int_if proto udp to port 53
pass in on $int_if proto udp to $nameservers port 53
Hi all,
Everything about PF is all very confusing to me at the moment, so any
help is appreciated. So let's start simple and then proceed step by
step. I want to continue with ping so that I can test the connection to
the internet. This works: ping -c 10 195.121.1.34. But this doesn't
work:
roto icmp all icmp-type echoreq
Op 12-04-2024 om 19:46 schreef Zé Loff:
On Fri, Apr 12, 2024 at 07:04:16PM +0200, Karel Lucas wrote:
Hi all,
Traceroute still won't work. I'm playing around with the rules and wondering
what's right and what's wrong with the traceroute rules. Can anyone give me
so
This makes no difference.
Op 13-04-2024 om 22:06 schreef Peter J. Philipp:
On Sat, Apr 13, 2024 at 09:32:48PM +0200, Karel Lucas wrote:
What should I add then, considering my PF ruleset? To be honest, all of this
is very unclear to me at the moment, so any help is appreciated.
How about
What should I add to get it working?
Op 13-04-2024 om 02:39 schreef Alexis:
Karel Lucas writes:
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I
suspect this has to do with DNS servers, but I don't know where
What should I add then, considering my PF ruleset? To be honest, all of
this is very unclear to me at the moment, so any help is appreciated.
Op 13-04-2024 om 02:39 schreef Alexis:
Karel Lucas writes:
Ping only works partially. For example, this works: ping -c 10
195.121.1.34
Hi all,
Traceroute still won't work. I'm playing around with the rules and
wondering what's right and what's wrong with the traceroute rules. Can
anyone give me some starting points here?
/etc/pf.conf:
ext_if = igc0 # Extern interface
int_if = "{ igc1, igc2 }" # Intern
Hi all,
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I suspect
this has to do with DNS servers, but I don't know where to start
troubleshooting. Can someone help me?
/etc/pf.conf:
ext_if = igc0
PF's ruleset will be put under a magnifying glass.
Op 11-04-2024 om 11:09 schreef Peter N. M. Hansteen:
On Thu, Apr 11, 2024 at 09:34:15AM +0100, Zé Loff wrote:
pass log out on egress inet proto udp to port 33433:33626 # for IPv4
pass log out on egress inet6 proto udp to port 33433:33626 # for
The typos have been fixed, and PF's ruleset will be put under a
magnifying glass.
Op 11-04-2024 om 10:34 schreef Zé Loff:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
Hi all,
With the new firewall I am setting up I cannot connect to the internet. That
starts with traceroute
I do get the following error message: sysctl: toplevel name net/inet6 in
net/inet6.ip6.forwarding is invalid
Op 11-04-2024 om 09:49 schreef Peter N. M. Hansteen:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
With the new firewall I am setting up I cannot connect to the internet
a "step by step"
approach to the rules in pf.conf.
Op 11-04-2024 om 09:49 schreef Peter N. M. Hansteen:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
With the new firewall I am setting up I cannot connect to the internet. That
starts with traceroute, so let's start t
Hi all,
With the new firewall I am setting up I cannot connect to the internet.
That starts with traceroute, so let's start there. Ping works fine.
Below I have listed my pf.conf file.
/etc/pf.conf:
ext_if = igc0 # Extern interface
int_if = "{ igc1, igc2 }" # Intern
whats happening because we dont know what those line
errors mean.
When you changed the macros to tables, did you also update the rules
to to match?
On April 9, 2024 9:32:06 AM UTC, Karel Lucas wrote:
I moved the lines with the martians between the 'block log all'
line and the ping
In /etc/pf.conf:
table persist file "/etc/martians"
In /etc/martians:
127.0.0.0/8
192.168.0.0/16
172.16.0.0/12
10.0.0.0/8
169.254.0.0/16
192.0.2.0/24
0.0.0.0/8
240.0.0.0/4
Op 09-04-2024 om 16:06 schreef Peter N. M. Hansteen:
On Tue, Apr 09, 2024 at 10:52:45AM +0200, Karel Lucas
The example I'm referring to is how to define a table (page 42), and I
applied that to the martians example (page 91).
Op 09-04-2024 om 16:06 schreef Peter N. M. Hansteen:
On Tue, Apr 09, 2024 at 10:52:45AM +0200, Karel Lucas wrote:
I defined the table as stated in your book (3rd edition
I can assure you that I did not use capital letters in the macro names,
and used the '<' and '>'.
Op 09-04-2024 om 11:58 schreef Peter N. M. Hansteen:
On Tue, Apr 09, 2024 at 10:52:45AM +0200, Karel Lucas wrote:
I defined the table as stated in your book (3rd edition, page 42). H
I managed to get ping through. The error was the "log" words in the
lines. But this is just the beginning. Now I have another problem with
traceroute, as well as with all the normal internet traffic that has to
go through it. In the traceroute rules I replaced "$ext_if" with
"egress", but that
tc/pf.conf:30: macro 'martians' not defined
/etc/pf.conf:38: syntax error
/etc/pf.conf:39: syntax error
/etc/pf.conf:46: syntax error
Op 09-04-2024 om 11:13 schreef Otto Moerbeek:
On Tue, Apr 09, 2024 at 10:52:45AM +0200, Karel Lucas wrote:
I defined the table as stated in your book (3rd editio
schreef Peter N. M. Hansteen:
On Tue, Apr 09, 2024 at 08:39:08AM +0200, Karel Lucas wrote:
Hi all,
For the first time I tested my new firewall with ping, and it is blocked. I
don't know what the reason is, you can find the information below. I have a
network with only regular clients, so
Hi all,
For the first time I tested my new firewall with ping, and it is
blocked. I don't know what the reason is, you can find the information
below. I have a network with only regular clients, so no servers. I'm
still using OpenBSD V7.4, and will upgrade once the firewall is up and
running
Hi all,
I am creating a bridging firewall with OpenBSD and the following
hardware:
https://www.amazon.nl/dp/B0B6J89MXJ?ref=ppx_pop_dt_b_asin_image=1.
OpenBSD is already installed. I want to use ETH1 for the input from my
ADSL modem, ETH2 and ETH3 for the output to my network. Furthermore, I
Hi all,
Instead of ksh I want to use bash as a general shell. But how can I set
it up that way? Bash is already installed.
This method also works! Instead of vt220 I now used xterm-256color.
Thank you!
Op 30-03-2024 om 11:51 schreef Stuart Henderson:
On 2024-03-29, Karel Lucas wrote:
What should I put in /etc/ttys, taking into account that I regularly use
multiple virtual consoles? And where in that file do I
What should I put in /etc/ttys, taking into account that I regularly use
multiple virtual consoles? And where in that file do I place that? At
the beginning or the end? Or somewhere in between?
Op 29-03-2024 om 09:15 schreef Stuart Henderson:
On 2024-03-28, Karel Lucas wrote:
Op 28-03-2024
Op 28-03-2024 om 07:51 schreef Stuart Henderson:
For the console, use /etc/ttys.
For an X terminal, use whatever mechanism is correct for that terminal
(.Xdefaults XTerm*termName for xterm).
The file /etc/ttys is 22.5kB in size and is full of all kinds of "tty**
...". I don't think this
What is the correct setting, taking into account the coloring of the
directory listing?
Op 27-03-2024 om 14:02 schreef Stuart Henderson:
On 2024-03-27, Karel Lucas wrote:
It works correctly! My /etc/profile now looks like this:
export TERM=xterm-256color
That is not working correctly
:
On 25.03.24 23:40, Karel Lucas wrote:
Hi all,
After installing colorls and making some adjustments to the system, I
still have no colored output from colorls. Below I have indicated the
settings that have been made or are present by default. I would like
to know what is wrong and what needs
Dear Benjamin,
In which configuration file can I change TERM?
Op 25-03-2024 om 23:46 schreef Benjamin Stürz:
On 25.03.24 23:40, Karel Lucas wrote:
Hi all,
After installing colorls and making some adjustments to the system, I
still have no colored output from colorls. Below I have indicated
Dear Amelia,
In which configuration file can I change this? Is 'wsvt25' universally
suitable for use?
Op 26-03-2024 om 00:03 schreef Amelia A Lewis:
On Mon, 25 Mar 2024 23:40:52 +0100, Karel Lucas wrote:
After installing colorls and making some adjustments to the system, I
still have
Hi all,
After installing colorls and making some adjustments to the system, I
still have no colored output from colorls. Below I have indicated the
settings that have been made or are present by default. I would like to
know what is wrong and what needs to be improved.
Default environment:
om 00:04 schreef Stuart Henderson:
On 2023-12-19, Karel Lucas wrote:
Hi all,
I am creating a bridging firewall, and am wondering if it is possible to
use the ntp daemon to ensure that all log files are timed correctly. Is
there a way to achieve that despite the fact that the network
connections
Hi all,
I am creating a bridging firewall, and am wondering if it is possible to
use the ntp daemon to ensure that all log files are timed correctly. Is
there a way to achieve that despite the fact that the network
connections do not have an IP address?
Op 08-12-2023 om 19:42 schreef Theo de Raadt:
Karel Lucas wrote:
In openBSD V7.4 I would like to see the output of ls in color, and
therefore would like to know how to configure that. The output of "man
ls" provides no information about this. Can anyone give me a tip?
Black
Hi all,
In openBSD V7.4 I would like to see the output of ls in color, and
therefore would like to know how to configure that. The output of "man
ls" provides no information about this. Can anyone give me a tip?
Hi all,
I have a computer with openBSD V7.4 without X11, to which I want to
connect a wireless keyboard via Bluetooth. The keyboard is connected via
a separate USB Bluetooth receiver. What software do I need for this, and
how do I configure it? I hope someone responds to this.
Op 17-10-2023 om 16:50 schreef Janne Johansson:
Den tis 17 okt. 2023 kl 16:49 skrev Karel Lucas :
Hi all,
After a new installation of openBSD 7.4 I received the following
message: "reorder_kernel: failed -- see
/usr/share/relink/kernel/GENERIC.MP/relink.log
Op 17-10-2023 om 16:53 schreef Jan Stary:
On Oct 17 16:46:13, cahlu...@planet.nl wrote:
Hi all,
After a new installation of openBSD 7.4 I received the following message:
"reorder_kernel: failed -- see
/usr/share/relink/kernel/GENERIC.MP/relink.log". That turns out to be a zlib
compressed
Hi all,
After a new installation of openBSD 7.4 I received the following
message: "reorder_kernel: failed -- see
/usr/share/relink/kernel/GENERIC.MP/relink.log". That turns out to be a
zlib compressed data file, and I don't know how to unpack or read it.
Does anyone know how I can do that?
Is it already known when openBSD 7.4 will be released? I would like to
know that, because of a project I am working on.
ient on X server ":0"
I don't know what these error messages mean and how to fix them. Maybe
someone can help me with that. It looks like it's not just a problem
with the mouse, but there's more to it.
Op 19-08-2023 om 03:58 schreef Chris Bennett:
On Fri, Aug 18, 2023 at 07:58:03PM +
Dear Nick,
For more than ten years I have been working with an ATEN brand KVM
switch together with several computers, including linux and openBSD
(version 4.1). In all these years I have had no problems, not with my
KVM switch, nor with any degree of disconnection. The keyboard works
HI all,
On a recent install of openBSD I can't get the mouse to work through my
KVM switch. I work with various computers via a KVM switch on 1 monitor
with a keyboard/mouse combination. Only on the PC with openBSD the mouse
does not work, the keyboard on the other hand works fine. Both are
Hi all,
Entered on a fresh install of openBSD : pkg_add bash. I got the
following error: ftp: ftp.nluug.nl/pub/OpenBSD: no address associated
with name. Not too long ago I did this on another machine and it worked.
The correct site is listed in /etc/installurl:
dev/usb3:
addr 01: 8086: Intel, UHCI root hub
Controller /dev/usb4:
addr 01: 8086: Intel, UHCI root hub
Op 04-08-2023 om 16:41 schreef Peter J. Philipp:
On Fri, Aug 04, 2023 at 04:24:09PM +0200, Karel Lucas wrote:
Hi all,
I have a few computers that I control with the same keyboard, m
Hi all,
I have a few computers that I control with the same keyboard, mouse and
monitor via an electronic switch. Namely a Linux PC and an Apple (macos
x), but now also a PC with openBSD. Both Linux PC and Apple work fine
with the switch, only with the PC with openBSD the mouse does not
Hi all,
On a desktop PC on which I have openBSD, I installed KDE. When I start
the X-window system, I still see Fvwm, and no KDE. I also want to start
the X window system when I start this PC, and that is not yet the case.
How can I solve both problems?
at 12:41 PM Karel Lucas wrote:
Hi all,
I'm going to install openBSD on a small PC that currently has
PfSense on
it. This PC boots this OS via (U)EFI, and therefore has an EFI
partition
on the existing SSD. The current partition table looks like, as
shown by
openBSD
de Raadt:
Karel Lucas wrote:
Multi-boot is not an option here. The intention is to replace the entire
PfSense installation with openBSD. Eventually this computer becomes a
firewall with PF, so the current installation is unnecessary. But my
question remains whether I need the (U)EFI partition
Hi,
Multi-boot is not an option here. The intention is to replace the entire
PfSense installation with openBSD. Eventually this computer becomes a
firewall with PF, so the current installation is unnecessary. But my
question remains whether I need the (U)EFI partition for that or not.
Can
be carefull
to not wipe your existing data, a backup is advised
On Jul 30, 2023 19:30, Karel Lucas wrote:
Hi all,
I'm going to install openBSD on a small PC that currently has
PfSense on
it. This PC boots this OS via (U)EFI, and therefore has an EFI
partition
on the existing
Hi all,
I'm going to install openBSD on a small PC that currently has PfSense on
it. This PC boots this OS via (U)EFI, and therefore has an EFI partition
on the existing SSD. The current partition table looks like, as shown by
openBSD fdisk:
0: efiboot0
1: gptboot0
2: swap0
3: zfs0.
Dear all,
For a fresh install of openBSD, I want to mount an SD card or a USB
stick on an existing openBSD install, but don't know which device name
to use. Maybe someone can help me out?
Hi all,
I'm going to create a firewall with openBSD, and would like to use the
ARM64 or ARMv7 distribution for that. Unfortunately I don't know what
hardware I can get for this, and that's the reason for this mail. Can
someone point me to a suitable platform for this? If this email does not
60 matches
Mail list logo
