Re: Huawei EM770W mobile modem
On Thu, Nov 17, 2011 at 09:27:32AM +0600, Baurzhan Muftakhidinov wrote: > Hi all! > > I own a Acer Aspire ao532H netbook, and it has > a Huawei EM770W mobile wcdma modem built-in. > I think its internally connected via USB. Checked with usbdevs command. > > This modem does not work in stock OpenBSD 5.0 since its product ID is not > listed in /sys/dev/usb/usbdevs, but this modem is supported > by umsm driver (see below). > > Vendor is Huawei (0x12d1), product ID is (0x1404). > I've added this is to usbdevs file, run make all in /sys/dev/usb > ant this ID added to usbdevs.h. I also added product ID > to umsm.c, recompiled and booted new kernel and > this modem worked just fine. > > The modem do not work with DEV_HUAWEI as umsm_flag (see /sys/dev/usb/umsm.c) > but work with DEV_UMASS5 or 0 as umsm_flag. > So here are my questions: > > 1) Maybe someone else also have this modem and can test it; > 2) How to test which value of umsm_flag is correct (DEV_UMASS5 or 0), and > what it affects to; If it works it is correct, the flags exist to change the mode of devices that come up as storage devices initially. > 3) Since modem is working, who to ask to add it to umsm driver, should > I fill bugreport or something? I've added it to umsm, thanks for the report.
Re: Huawei EM770W mobile modem
Baurzhan Muftakhidinov Since it 's checked with usbdevs . so i think it worked .maybe you could check more log about the driver dmesg or /var/log/message like this: umsm0 at uhub0 port 3 configuration 1 interface 0 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 umsm1 at uhub0 port 3 configuration 1 interface 1 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 umsm0 at uhub0 port 3 configuration 1 interface 0 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 ucom0 at umsm0 umsm1 at uhub0 port 3 configuration 1 interface 1 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 ucom1 at umsm1 umsm2 at uhub0 port 3 configuration 1 interface 2 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 ucom2 at umsm2 umsm3 at uhub0 port 3 configuration 1 interface 3 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 ucom3 at umsm3 umsm4 at uhub0 port 3 configuration 1 interface 4 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 umsm5 at uhub0 port 3 configuration 1 interface 5 "Huawei Technologies HUAWEI Mobile" rev 2.00/0.00 addr 2 the driver is built-in : man umsm and you should put a SIM Card into the device .and try to dial up into the Internet with ppp. the measure works for my USB Huawei mobile wcdma modem. >Hi all! > >I own a Acer Aspire ao532H netbook, and it has >a Huawei EM770W mobile wcdma modem built-in. >I think its internally connected via USB. Checked with usbdevs command. > >This modem does not work in stock OpenBSD 5.0 since its product ID is not >listed in /sys/dev/usb/usbdevs, but this modem is supported >by umsm driver (see below). > >Vendor is Huawei (0x12d1), product ID is (0x1404). >I've added this is to usbdevs file, run make all in /sys/dev/usb >ant this ID added to usbdevs.h. I also added product ID >to umsm.c, recompiled and booted new kernel and >this modem worked just fine. > >The modem do not work with DEV_HUAWEI as umsm_flag (see /sys/dev/usb/umsm.c) >but work with DEV_UMASS5 or 0 as umsm_flag. >So here are my questions: > >1) Maybe someone else also have this modem and can test it; >2) How to test which value of umsm_flag is correct (DEV_UMASS5 or 0), and >what it affects to; >3) Since modem is working, who to ask to add it to umsm driver, should >I fill bugreport or something?
关于举办“企事业单位科技管理研讨会”的通知(济南)
12:02:48 [demime 1.01d removed an attachment of type application/octet-stream which had a name of =?utf-8?B?5LyB5LqL5Lia5Y2V5L2N56eR5oqA566h55CG5pqo5LiT6aG56LWE6YeR55Sz5oql56CU6K6o5LyaLmRvYw==?=]
Re: How to suggest a package?
> I see that ii (FIFO-based 'irc it' IRC client) is in the packages, > but sic (ii's "younger brother") is not. How can I suggest that > sic be made as a package for OpenBSD? Sic is little bit too much trouble for the 50 lines of code IRC client. Please see this http://marc.info/?l=openbsd-ports&m=128252891727925&w=2 Best, Predrag
Huawei EM770W mobile modem
Hi all! I own a Acer Aspire ao532H netbook, and it has a Huawei EM770W mobile wcdma modem built-in. I think its internally connected via USB. Checked with usbdevs command. This modem does not work in stock OpenBSD 5.0 since its product ID is not listed in /sys/dev/usb/usbdevs, but this modem is supported by umsm driver (see below). Vendor is Huawei (0x12d1), product ID is (0x1404). I've added this is to usbdevs file, run make all in /sys/dev/usb ant this ID added to usbdevs.h. I also added product ID to umsm.c, recompiled and booted new kernel and this modem worked just fine. The modem do not work with DEV_HUAWEI as umsm_flag (see /sys/dev/usb/umsm.c) but work with DEV_UMASS5 or 0 as umsm_flag. So here are my questions: 1) Maybe someone else also have this modem and can test it; 2) How to test which value of umsm_flag is correct (DEV_UMASS5 or 0), and what it affects to; 3) Since modem is working, who to ask to add it to umsm driver, should I fill bugreport or something?
Re: intermittent 5.0/amd64 kernel/X hangs on Tinkpad T60
Hi, On Wed, 16 Nov 2011, Stefan Wollny wrote: > I have an T60 as well but running the i386-MP-kernel. I witnessed the > same occasional behaviour prior to 4.9. From my memory: This was most > likely to happen with heavy I/O operations on some interface. But I > never investigated closer on this issue. Did you ever try * the i386 uniprocessor kernel? * using the generic VESA video driver? * AMD64, either uniprocessor or multiprocessor? thanks, ciao, -- -- "Jonathan Thornburg [remove -animal to reply]" Dept of Astronomy & IUCSS, Indiana University, Bloomington, Indiana, USA "Washing one's hands of the conflict between the powerful and the powerless means to side with the powerful, not to be neutral." -- quote by Freire / poster by Oxfam
Re: OpenSMTPd and Monit.
On 2011-11-16, Gilles Chehade wrote: > Hi, > > I have no idea about monit but I have a piece of code that might do what > you want: > > http://u.poolp.org/~gilles/projects/procstated/ fwiw, with a recent system, you can do something like this cd /var/run/rc.d; for i in *; do /etc/rc.d/$i check || /etc/rc.d/$i start; done > However that's just a hack yes.
CDs and T-shirt arrived in Australia
Arrived a few days ago, but I only found out yesterday. The genetically engineered Alfred E. Newman pufferfish is kinda scary. Thanks all developers!
Re: bioctl + ami panic "Non dma-reachable buffer" on 5.0/amd64
On 2011-11-16, Andrew Daugherity wrote: > This is on a Dell PowerEdge 1850 with PERC 4e/Si which uses ami(4). > > bioctl works fine on 4.9. The problem appears to be kernel-side, as: > * booting a 4.9 ramdisk, then mounting/chrooting into my 5.0 install: > bioctl works > * booting the latest snapshot bsd.mp (but not modifiying userland): > bioctl works > > Also, when upgrading from 4.9 to 5.0 (via bsd.rd), it had a similar > panic at the end of the upgrade procedure (the last thing printed was > the MAKEDEV step). I haven't had any panics since then aside from > those caused by bioctl, but the system hasn't been under much load. > > It looks like some post-5.0 fixes went into sys/dev/ic/ami.c which > fixed this problem. Can an erratum be issued for this? the fix was backported to -stable so if you use a kernel built from that tree after 2011/10/05 you are likely to be ok.
DVDs and T-shirt arrived in New Zealand
Cheers guys, insert is great! Looking forward to upgrading my v215 Gateway over the weekend. https://plus.google.com/u/0/111096521876100491635/posts/ANUtieu3nho -JoelW
Re: OpenSMTPd and Monit.
On Wed, 16 Nov 2011 04:09:43 +0100, Sarah Caswell wrote: > Hi, > > I'm running a mailserver with smtpd (on OpenBSD) for a small group of folks > and get some (very occasional) crashes - usually just corrupted sessions. > No big deal, a restart of smtpd is all that it takes. > > I'm trying to create a Monit (v 4.10.1) recipe that will automatically > restart the smtpd process for me, but it just doesn't work. > I found the recipe below on a Linux list for monitoring services that don't > write a pidfile. > > -recipe is currently > > check host localhost with address www.xxx.yyy.zzz > start program = "/usr/libexec/smtpd -f /etc/mail/smtpd.conf" I'm not familiar with Monit, but /usr/libexec/smtpd is a directory, not an executable. You may wish to try /usr/sbin/smtpd instead. Regards, Tim > stop program = "pkill smtpd" >if failed host www.xxx.yyy.zzz port 25 type tcp protocol smtp then restart > > -- > > Is anyone here using monit to successfully restart smtpd? > > Any info appreciated. > > :-) > > Sarah > > -- > "Go out on a limb. Thats where the fruit is" - Jimmy Carter
bioctl + ami panic "Non dma-reachable buffer" on 5.0/amd64
This is on a Dell PowerEdge 1850 with PERC 4e/Si which uses ami(4). bioctl works fine on 4.9. The problem appears to be kernel-side, as: * booting a 4.9 ramdisk, then mounting/chrooting into my 5.0 install: bioctl works * booting the latest snapshot bsd.mp (but not modifiying userland): bioctl works Also, when upgrading from 4.9 to 5.0 (via bsd.rd), it had a similar panic at the end of the upgrade procedure (the last thing printed was the MAKEDEV step). I haven't had any panics since then aside from those caused by bioctl, but the system hasn't been under much load. It looks like some post-5.0 fixes went into sys/dev/ic/ami.c which fixed this problem. Can an erratum be issued for this? Panic output (happens after running 'bioctl sd0', every time): panic: Non dma-reachable buffer at curaddr 0x11e9cfb70(raw) Stopped at Debugger+0x5: leave RUN AT LEAST 'trace' AND 'ps' AND INCLUDE OUTPUT WHEN REPORTING THIS PANIC! DO NOT EVEN BOTHER REPORTING THIS WITHOUT INCLUDING THAT INFORMATION! ddb> trace Debugger() at Debugger+0x5 panic() at panic+0xe4 _bus_dmamap_load_buffer() at _bus_dmamap_load_buffer+0x198 _bus_dmamap_load() at _bus_dmamap_load+0x68 ami_load_ptmem() at ami_load_ptmem+0x42 ami_drv_pt() at ami_drv_pt+0xf9 ami_drv_inq() at ami_drv_inq+0x61 ami_ioctl_inq() at ami_ioctl_inq+0x270 bioioctl() at bioioctl+0xd2 VOP_IOCTL() at VOP_IOCTL+0x37 vn_ioctl() at vn_ioctl+0x71 sys_ioctl() at sys_ioctl+0x111 syscall() at syscall+0x14f --- syscall (number 54) --- end of kernel end trace frame: 0x1, count: -13 acpi_pdirpa+0x3ff332: ddb> ps PID PPID PGRPUID S FLAGS WAIT COMMAND *20320 25633 20320 0 7 0bioctl 22779 1 22779 0 30x80 ttyin getty 3109 1 3109 0 30x80 ttyin getty 14770 1 14770 0 30x80 ttyin getty 27875 1 27875 0 30x80 ttyin getty 25633 1 25633 0 30x88 pause ksh 9083 1 9083 0 30x80 selectcron 17840 1 17840 0 30x80 selectinetd 21210 1 21210 0 30x80 selectsendmail 28919 1 28919 0 30x80 selectsshd 30726 14578329 83 30x80 poll ntpd 14578329329 83 30x80 poll ntpd 329 1329 0 30x80 poll ntpd 4798 26811 26811 74 30x80 bpf pflogd 26811 1 26811 0 30x80 netio pflogd 32269 30213 30213 73 30x80 poll syslogd 30213 1 30213 0 30x80 netio syslogd 13 0 0 0 30x100200 aiodoned aiodoned 12 0 0 0 30x100200 syncerupdate 11 0 0 0 30x100200 cleaner cleaner 10 0 0 0 30x100200 reaperreaper 9 0 0 0 30x100200 pgdaemon pagedaemon 8 0 0 0 30x100200 bored crypto 7 0 0 0 30x100200 pftm pfpurge 6 0 0 0 30x100200 usbtskusbtask 5 0 0 0 30x100200 usbatsk usbatsk 4 0 0 0 30x100200 acpi0 acpi0 3 0 0 0 30x100200 bored syswq 2 0 0 0 3 0x40100200idle0 1 0 1 0 30x80 wait init 0 -1 0 0 3 0x200 scheduler swapper ddb> dmesg: OpenBSD 5.0 (GENERIC.MP) #63: Wed Aug 17 10:14:30 MDT 2011 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 4293656576 (4094MB) avail mem = 4165238784 (3972MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.3 @ 0xf9920 (87 entries) bios0: vendor Dell Computer Corporation version "A07" date 04/25/2008 bios0: Dell Computer Corporation PowerEdge 1850 acpi0 at bios0: rev 0 acpi0: sleep states S0 S4 S5 acpi0: tables DSDT FACP APIC SPCR HPET MCFG acpi0: wakeup devices PCI0(S5) PALO(S5) PBLO(S5) VPR0(S5) PBHI(S5) VPR1(S5) PICH(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Xeon(TM) CPU 3.00GHz, 2992.93 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 2MB 64b/line 8-way L2 cache cpu0: apic clock running at 199MHz cpu1 at mainbus0: apid 6 (application processor) cpu1: Intel(R) Xeon(TM) CPU 3.00GHz, 2992.51 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,NXE,LONG cpu1: 2MB 64b/line 8-way L2 cache ioapic0 at mainbus0: apid 7 pa 0xfec000
Mega Hafiza is Firsati - Mega Mental Aritmetik
Merhaba, Bug|n Mega Hafızaânın sunduÄu ilging bir eÄitim ve iÅ fırsatı ile karÅınızdayım. Bu iÅ fırsatının adı âMega Aritmetikâ veya diÄer bir ifadeyle MEGA MENTAL ARITMETÄ°K. EÄitim iÅi ile ilgilenen, toplumun ve gocukların geliÅmesine vnem veren herkesin bu ilging iÅ fırsatını kagırmamasını tavsiye ediyorum. AÅaÄıdaki linke tıklayıp, agılan sayfadaki filmi izleyin ve k|g|c|k beyinlerin neler yapabileceÄini gvr|n. Sonra da hem iÅ fırsatının, hem de gocukların beyin sınırlarını bir d|Å|n|n. ÅaÅıracaksınız. Ä°Åte ilgili web adresi; www.megaaritmetik.com (EÄitim ve Ä°Å Fırsatı) Sizin gocuklarınızın da aynı seviyeye gelmesi igin Mega Mental Aritmetik eÄitimini t|m yurtta BAÅLATTIK. Bir sonraki b|ltende tekrar gvr|Å|nceye kadar beyninize iyi bakın. Saygılarımla, Melik Duyar MEGA HAFIZA VNEMLÄ° UYARI 1-) L|tfen bu mesajın gvnderildiÄi e-posta adresine cevap vermeyiniz. Bu e-posta adresine gelen cevaplar okunmadan otomatik olarak iptal edilmektedir. 2-) Ä°letiÅim igin sadece "i...@megahafiza.com" e-posta adresini kullanınız. Bu adrese gelen t|m cevaplar okunmaktadır. Dikkat! Bir daha bizden bvyle bir bilgi mesajı almak istemiyorsanız buraya tıklayın. PS : To unsubscribe please click here.
Re: OpenBSD ipsec gateway behind a router
Hi, In fact, there's no need to redirect ports, it's working even behind two nats: Openbsd ---NAT OpenBSD ---NAT Router----- OpenBSD Thanks Fabio Almeida Em 15/11/2011, `s 17:38, Mik J escreveu: > Hello, > > Joosep, thank you for pointing out this incompatibility. I have made > tests with Fabio and that was the problem. > > Regarding the ipsec configuration > behind nat routers it has been tested successfully between a 4.9 and a 4.4 > openbsd with udp encapsulation and between a 4.9 openbsd and a fortigate (not > behind nat). However I don't know about long term stability in those two > cases. > Regarding the configuration to adopt when the ipsec gateway is natted, > I'm wondering if it's necessary to port forward udp 500 and 4500 pointing to > the ipsec gateway on the LAN. I think yes if the two ipsec gateways are > natted, and maybe if only one of them is natted. > > As for the configuration > that I described below I have not tried to do a ping from LAN1 to LAN2 with > the OpenBSD having only one interface. I will try to test it when I'll be able > to. > > Something I'm still wondering is, how Openbsd knows that he's natted or > not so that he should use udp 4500. I haven't seen anywhere in the > configuration stating that I would use nat-t or not. Also, if two ipsec > gateways are not natted but I want to force nat-t would that be possible ? > Thanks > > > > - Mail original - >> De : Joosep >> @ : > misc@openbsd.org >> Cc : >> Envoyi le : Lundi 14 Novembre 2011 14h08 >> Objet : > Re: OpenBSD ipsec gateway behind a router >> >> On Mon, Nov 14, 2011 at 2:00 > PM, Mentesan wrote: >> >>> Hi :) >>> >>> I'm trying to do > exactly this setup, between two OpenBSD boxes - 4.4 >>> (central >>> office) > and 4.9 (branch office). >>> With the following setup I can bring the tunnel > up, but the networks >> can't >>> talk to each other: >>> >>> Central > ipsec.conf >>> - >>> ike passive esp tunnel from > 10.20.0.0/16 to any \ >>>srcid matriz.domain.com.br \ >>> > psk testefilial >>> >>> >>> Branch ipsec.conf >>> > - >>> matriz_net = "10.20.0.0/16" >>> matriz_gw = > "178.9.35.10" >>> filial_net = "10.10.11.0/24" >>> >>> ike dynamic esp tunnel > from $filial_net to $matriz_net peer $matriz_gw >> \ >>>srcid > filial.domain.com.br \ >>>dstid matriz.domain.com.br \ >>> >psk testefilial >>> --- >>> >>> # ipsecctl -sa >>> FLOWS: >>> flow esp in from 10.10.11.0/24 to 10.20.0.0/16 peer 185.53.27.23 srcid >>> > matriz.gruponp.com.br dstid filial.gruponp.com.br type use >>> flow esp out > from 10.20.0.0/16 to 10.10.11.0/24 peer 185.53.27.23 srcid >>> > matriz.gruponp.com.br dstid filial.gruponp.com.br type require >>> >>> SAD: >>> > esp tunnel from 178.9.35.10 to 185.53.27.23 spi 0x59f8b098 auth >>> > hmac-sha2-256 >>> enc aes >>> esp tunnel from 185.53.27.23 to 178.9.35.10 spi > 0xda08a9c3 auth >>> hmac-sha2-256 >>> enc aes >>> >>> --- >>> >>> # > route -n show -encap >>> Routing tables >>> >>> Encap: >>> Source > Port DestinationPort Proto >>> SA(Address/Proto/Type/Direction) >>> > 10.10.11/240 10.20/16 0 0 >>> > 185.53.27.23/esp/use/in >>> 10.20/16 0 10.10.11/240 > 0 >>> 185.53.27.23/esp/require/out >>> >>> >>> Fabio Almeida >>> >>> Em > 13/11/2011, `s 12:06, Mik J escreveu: >>> Hello, I would > like to know if such configuration is possible. LAN1 > (192.168.10.0/24) <--> OpenBSD .99 <--> .254 Router IPx >> <--> Internet >>> > <--> >>> IPy IPSec_GW (Vendor) <--> LAN2 (192.168.20.0/24) > As you can see the OpenBSD 4.9 server sits on the LAN1 and has one > physical interface. When it wants to access to the internet, its > address 192.168.10.99 is natted in IPx and >>> that's how the > IPSec_GW(Vendor) sees the source packets. It's not really > important now if other machines on LAN1 should ping machines on LAN2. I > would >> like >>> for now that the OpenBSD could ping machines on LAN2. I have search for examples on the internet for this > particular case because the OpenBSD is behind >> a >>> nat router. And I > haven't found the proper way to do this. I don't >> even know >>> if > it's possible. I know some kind of nat-t should be used though. > Does anyone have this configuration in place ? Thanks >>> >>> > [demime 1.01d removed an attachment of type application/pgp-signature >>> > which had a name of signature.asc] >>> >>> >> Hi! >> >> I think the problem in > your case is HMAC-SHA2 incompatibility between >> releases before 4.7 and > 4.7(and upwards) releases. Please check this link >> > http://www.openbsd.org/faq/upgrade47.html#hmac-sha2 >> >> regards, >> Joosep [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.
Pour votre information
Madame, Monsieur, Dans cette piriode difficile, il est important de soutenir votre activiti commerciale. Pour divelopper l'activiti de votre sociiti, vous devez mettre en avant vos produits, vos services, trouver de nouveaux clients. En un mot : Vous faire connantre. La publiciti par Email est efficace, rapide et trhs iconomique. Pour vous en convaincre, nous vous proposons jusqu'au 30 Novembre 2011 cette offre d'essai unique: L'envoi d'un de vos documents publicitaires ` 10 000 prospects que vous choisirez dans notre fichier national de 950 000 mails pour 19,90 euros HT*. Vous pouvez cibler par zone giographique ou par activiti parmi plusieurs centaines de milliers d'emails en cliquant ici. Vous pouvez aussi nous contacter au : Contrairement aux fichiers que vous pouvez vous procurer sur CD qui sont dij` obsolhtes au moment de votre achat, vous binificiez d'une information franche mise ` jour en temps riel. Aucune connaissance technique n'est nicessaire. Vous saurez chaque jour combien de personnes ont lus votre publiciti, et vous recevrez la liste ditaillie des personnes qui ont iti intiressies**. A bienttt Bonne journie Le service commercial Direct Mails Obtenir plus d'informations : Cliquez ICI * Offre d'essai pour une campagne jusqu'` 10 000 emails professionnels sans option. ** Option + zone de clics ;.
hostname.if routing question
I am having trouble figuring out how I should configure a physical interface and a carp virtual interface where the carp IP will serve as a default route for hosts on the network and also hold some aliases for server re-directs. From what I have seen the routes built at startup "home" the route for the network on the interface that is configured with the actual network mask so: >/etc/hostname.em0 >inet A.B.C.14 255.255.255.240 A.B.C.15 rdomain 2 > >/etc/hostname.carp0 >vhid 9 pass rdomain 2 >inet A.B.C.1 255.255.255.255 A.B.C.15 rdomain 2 >inet alias A.B.C.3 255.255.255.255 A.B.C.15 rdomain 2 >inet alias A.B.C.4 255.255.255.255 A.B.C.15 rdomain 2 Will put the A.B.C.0/28 entry in table 2 to: >A.B.C.0/28 link#1 UC 0 0 - 4 em0 Changing the masks so carp0 has the open mask on its first ip and em0 is all 1s yields: >A.B.C.0/28 link#9 UC 0 0 - 4 carp0 Is it better for that to be on carp0 instead of em0, given that carp0 will be the router for that network?
Calendários 2012 personalizados
[IMAGE] [IMAGE] Calendario de Parede: 30x15cm / 30x20cm Calendario de Secretaria: 15x15cm pacote de 20 unid PVP: 99,00⬠pacote de 50 unid PVP: 150,00⬠Calendario de Parede: 45x32cm pacote de 20 unid PVP: 165,00⬠pacote de 50 unid PVP: 250,00⬠Calendario de Bolso: 8,5x5,5cm pacote de 25 unid PVP: 12,50⬠pacote de 50 unid PVP: 20,00⬠Disponmveis a partir de 15 de Novembro Temos ainda disponmvel, Cartues de Boas Festas e Postais Personalizados. [IMAGE] Mensagem enviada para: misc@openbsd.org Caso pretenda remover o seu e-mail clique aqui
Re : OpenBSD ipsec gateway behind a router
Hello, Joosep, thank you for pointing out this incompatibility. I have made tests with Fabio and that was the problem. Regarding the ipsec configuration behind nat routers it has been tested successfully between a 4.9 and a 4.4 openbsd with udp encapsulation and between a 4.9 openbsd and a fortigate (not behind nat). However I don't know about long term stability in those two cases. Regarding the configuration to adopt when the ipsec gateway is natted, I'm wondering if it's necessary to port forward udp 500 and 4500 pointing to the ipsec gateway on the LAN. I think yes if the two ipsec gateways are natted, and maybe if only one of them is natted. As for the configuration that I described below I have not tried to do a ping from LAN1 to LAN2 with the OpenBSD having only one interface. I will try to test it when I'll be able to. Something I'm still wondering is, how Openbsd knows that he's natted or not so that he should use udp 4500. I haven't seen anywhere in the configuration stating that I would use nat-t or not. Also, if two ipsec gateways are not natted but I want to force nat-t would that be possible ? Thanks - Mail original - > De : Joosep > @ : misc@openbsd.org > Cc : > Envoyi le : Lundi 14 Novembre 2011 14h08 > Objet : Re: OpenBSD ipsec gateway behind a router > > On Mon, Nov 14, 2011 at 2:00 PM, Mentesan wrote: > >> Hi :) >> >> I'm trying to do exactly this setup, between two OpenBSD boxes - 4.4 >> (central >> office) and 4.9 (branch office). >> With the following setup I can bring the tunnel up, but the networks > can't >> talk to each other: >> >> Central ipsec.conf >> - >> ike passive esp tunnel from 10.20.0.0/16 to any \ >> srcid matriz.domain.com.br \ >> psk testefilial >> >> >> Branch ipsec.conf >> - >> matriz_net = "10.20.0.0/16" >> matriz_gw = "178.9.35.10" >> filial_net = "10.10.11.0/24" >> >> ike dynamic esp tunnel from $filial_net to $matriz_net peer $matriz_gw > \ >> srcid filial.domain.com.br \ >> dstid matriz.domain.com.br \ >> psk testefilial >> --- >> >> # ipsecctl -sa >> FLOWS: >> flow esp in from 10.10.11.0/24 to 10.20.0.0/16 peer 185.53.27.23 srcid >> matriz.gruponp.com.br dstid filial.gruponp.com.br type use >> flow esp out from 10.20.0.0/16 to 10.10.11.0/24 peer 185.53.27.23 srcid >> matriz.gruponp.com.br dstid filial.gruponp.com.br type require >> >> SAD: >> esp tunnel from 178.9.35.10 to 185.53.27.23 spi 0x59f8b098 auth >> hmac-sha2-256 >> enc aes >> esp tunnel from 185.53.27.23 to 178.9.35.10 spi 0xda08a9c3 auth >> hmac-sha2-256 >> enc aes >> >> --- >> >> # route -n show -encap >> Routing tables >> >> Encap: >> Source Port DestinationPort Proto >> SA(Address/Proto/Type/Direction) >> 10.10.11/240 10.20/16 0 0 >> 185.53.27.23/esp/use/in >> 10.20/16 0 10.10.11/240 0 >> 185.53.27.23/esp/require/out >> >> >> Fabio Almeida >> >> Em 13/11/2011, `s 12:06, Mik J escreveu: >> >> > Hello, >> > >> > I would like to know if such configuration is possible. >> > >> > LAN1 >> > (192.168.10.0/24) <--> OpenBSD .99 <--> .254 Router IPx > <--> Internet >> <--> >> IPy >> > IPSec_GW (Vendor) <--> LAN2 (192.168.20.0/24) >> > >> > As you can see the OpenBSD 4.9 >> > server sits on the LAN1 and has one physical interface. >> > When it wants to >> > access to the internet, its address 192.168.10.99 is natted in IPx and >> that's >> > how the IPSec_GW(Vendor) sees the source packets. >> > >> > It's not really important >> > now if other machines on LAN1 should ping machines on LAN2. I would > like >> for >> > now that the OpenBSD could ping machines on LAN2. >> > >> > I have search for examples >> > on the internet for this particular case because the OpenBSD is behind > a >> nat >> > router. And I haven't found the proper way to do this. I don't > even know >> if >> > it's possible. I know some kind of nat-t should be used though. >> > >> > Does anyone >> > have this configuration in place ? >> > >> > Thanks >> >> [demime 1.01d removed an attachment of type application/pgp-signature >> which had a name of signature.asc] >> >> > Hi! > > I think the problem in your case is HMAC-SHA2 incompatibility between > releases before 4.7 and 4.7(and upwards) releases. Please check this link > http://www.openbsd.org/faq/upgrade47.html#hmac-sha2 > > regards, > Joosep
Chrome crashing.
Hello all, Using i386 5.0 release, installed gnome and chromium from packages. Chromium dumps core rather frequently. Any help would be appreciated. The following is gdb output: GNU gdb 6.3 Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "i386-unknown-openbsd5.0". Core was generated by `chrome'. Program terminated with signal 11, Segmentation fault. Reading symbols from /usr/lib/libpthread.so.13.1...done. Loaded symbols for /usr/lib/libpthread.so.13.1 Reading symbols from /usr/X11R6/lib/libX11.so.15.0...done. Loaded symbols for /usr/X11R6/lib/libX11.so.15.0 Reading symbols from /usr/X11R6/lib/libXrender.so.5.0...done. Loaded symbols for /usr/X11R6/lib/libXrender.so.5.0 Reading symbols from /usr/X11R6/lib/libXss.so.5.0...done. Loaded symbols for /usr/X11R6/lib/libXss.so.5.0 Reading symbols from /usr/X11R6/lib/libXext.so.12.0...done. Loaded symbols for /usr/X11R6/lib/libXext.so.12.0 Reading symbols from /usr/local/lib/libexecinfo.so.0.0...done. Loaded symbols for /usr/local/lib/libexecinfo.so.0.0 Reading symbols from /usr/local/lib/libgtk-x11-2.0.so.2400.0...done. Loaded symbols for /usr/local/lib/libgtk-x11-2.0.so.2400.0 Reading symbols from /usr/local/lib/libgdk-x11-2.0.so.2400.0...done. Loaded symbols for /usr/local/lib/libgdk-x11-2.0.so.2400.0 Reading symbols from /usr/local/lib/libpangocairo-1.0.so.1802.0...done. Loaded symbols for /usr/local/lib/libpangocairo-1.0.so.1802.0 Reading symbols from /usr/X11R6/lib/libXdamage.so.3.1...done. Loaded symbols for /usr/X11R6/lib/libXdamage.so.3.1 Reading symbols from /usr/local/lib/libcairo.so.11.1...done. Loaded symbols for /usr/local/lib/libcairo.so.11.1 Reading symbols from /usr/X11R6/lib/libpixman-1.so.22.2...done. Loaded symbols for /usr/X11R6/lib/libpixman-1.so.22.2 Reading symbols from /usr/X11R6/lib/libpthread-stubs.so.1.0...done. Loaded symbols for /usr/X11R6/lib/libpthread-stubs.so.1.0 Reading symbols from /usr/local/lib/libpng.so.12.0...done. Loaded symbols for /usr/local/lib/libpng.so.12.0 Reading symbols from /usr/local/lib/libgdk_pixbuf-2.0.so.2200.1...done. Loaded symbols for /usr/local/lib/libgdk_pixbuf-2.0.so.2200.1 Reading symbols from /usr/local/lib/libpango-1.0.so.1802.0...done. Loaded symbols for /usr/local/lib/libpango-1.0.so.1802.0 Reading symbols from /usr/local/lib/libgobject-2.0.so.2800.0...done. Loaded symbols for /usr/local/lib/libgobject-2.0.so.2800.0 Reading symbols from /usr/X11R6/lib/libfontconfig.so.7.0...done. Loaded symbols for /usr/X11R6/lib/libfontconfig.so.7.0 Reading symbols from /usr/lib/libexpat.so.9.0...done. Loaded symbols for /usr/lib/libexpat.so.9.0 Reading symbols from /usr/X11R6/lib/libfreetype.so.18.0...done. Loaded symbols for /usr/X11R6/lib/libfreetype.so.18.0 Reading symbols from /usr/lib/libz.so.4.1...done. Loaded symbols for /usr/lib/libz.so.4.1 Reading symbols from /usr/local/lib/libgthread-2.0.so.2800.0...done. Loaded symbols for /usr/local/lib/libgthread-2.0.so.2800.0 Reading symbols from /usr/local/lib/libglib-2.0.so.2800.0...done. Loaded symbols for /usr/local/lib/libglib-2.0.so.2800.0 Reading symbols from /usr/lib/libevent.so.3.0...done. Loaded symbols for /usr/lib/libevent.so.3.0 Reading symbols from /usr/local/lib/libjpeg.so.64.0...done. Loaded symbols for /usr/local/lib/libjpeg.so.64.0 Reading symbols from /usr/local/lib/libnss3.so.27.0...done. Loaded symbols for /usr/local/lib/libnss3.so.27.0 Reading symbols from /usr/local/lib/libsmime3.so.27.0...done. Loaded symbols for /usr/local/lib/libsmime3.so.27.0 Reading symbols from /usr/local/lib/libplc4.so.21.1...done. Loaded symbols for /usr/local/lib/libplc4.so.21.1 Reading symbols from /usr/local/lib/libnspr4.so.21.1...done. Loaded symbols for /usr/local/lib/libnspr4.so.21.1 Reading symbols from /usr/local/lib/libgconf-2.so.6.2...done. Loaded symbols for /usr/local/lib/libgconf-2.so.6.2 Reading symbols from /usr/local/lib/libxml2.so.12.0...done. Loaded symbols for /usr/local/lib/libxml2.so.12.0 Reading symbols from /usr/local/lib/libxslt.so.3.8...done. Loaded symbols for /usr/local/lib/libxslt.so.3.8 Reading symbols from /usr/local/lib/libcups.so.5.0...done. Loaded symbols for /usr/local/lib/libcups.so.5.0 Reading symbols from /usr/local/lib/libgcrypt.so.15.0...done. Loaded symbols for /usr/local/lib/libgcrypt.so.15.0 Reading symbols from /usr/local/lib/libbz2.so.10.4...done. Loaded symbols for /usr/local/lib/libbz2.so.10.4 Reading symbols from /usr/lib/libsndio.so.4.0...done. Loaded symbols for /usr/lib/libsndio.so.4.0 Reading symbols from /usr/local/lib/libvpx.so.2.0...done. Loaded symbols for /usr/local/lib/libvpx.so.2.0 Reading symbols from /usr/lib/libkvm.so.11.0...done. Loaded symbols for /usr/lib/libkvm.so.11.0 Reading symbols from /usr/local/lib/lib