Am 10/12/14 um 16:28 schrieb Nick Holland:
> On 10/12/14 07:43, Stefan Wollny wrote: ...
>> The moment I run 'cvs -q up -Pd' the system looses it's
>> connection and I get the note "ssh: connect to host
>> ftp.hostserver.de port 22: No route to host cvs [update aborted]:
>> end of file from server (consult above messages if any)"
>
> that's pretty clear, isn't it? The SSH connection is failing.
> Troubleshoot it at that level, or even traceroute. Don't complain
> about CVS when the SSH transport is failing...and not sure I'd talk
> about SSH when you have a "no route to host" message.
>
Hi Nick,
thanks for replying.
My guess on cvs is due to only when trying to update /usr/src,
/usr/ports and /usr/xenocara. Even though I usually use
ftp.hostserver.de for being the closest I have tried with others as
well: openbsd.cs.fau.de, ftp.bytemine.net and ftp.openbsd.org.
Moreover I can ssh into any other machine in my net without trouble -
even though I have to admit that I did so only to one
~current/i386-machine.
But of course I am interested in following your thoughts: What can I
do to investigate further? Or is this s.th. libressl-related that will
be cured in a few days with some of the next snapshots?
> You've got some funky stuff in your pf.conf, including apparently
> blocking your local subnet (which appears to be 192.168.178.0/??,
> blocked with your "broken" table). Shouldn't be a problem, but not
> sure what your firewall/router and/or DHCP server will do with a
> machine that doesn't appear to be there.
I did not deliberately block my subnet, of course, as my subnet is not
part of the tabel <blockes_zones> (but 192.168.0.0 is).
But could this be a result fromn the following rule:
block in quick from { $broken urpf-failed no-route } to any
The moment the route is lost the block-rules matches - correct?
Otherwise may I ask you to give me an other clue on where my rules are
'suboptimal'?
>
>> or "/usr/ports $ sudo cvs -q up -Pd cannot create_adm_p
>> /tmp/cvs-serv32110/net/py-flowtools/pkg No space left on device"
>>
>> No space left on device - WTF???
>
> almost always means "...on the CVS server". cvs has a nasty habit
> of leaving trash laying around in the /tmp directory if someone
> aborts a connection, and by "trash", I mean hundreds of MB
> sometimes. Also...cvs is one of the few apps I've seen burn inodes
> faster than disk space -- if the anoncvs tmp directory is its own
> partition, it generally needs more-than-normal number of inodes,
> and a nightly erasure of anything older than say 24 hours. Notify
> the anoncvs mirror administrator.
>
> Nick.
>
Thanks - I will notify the admins, Sebastian Benoit and Florian Obser.
Cheers,
STEFAN
