Re: Is OpenSMTPD worthy of OpenBSD inclusion?
2015/10/07 0:10 "ÐÑÑÑÑ ÐÑÑомин": > > On Tue, Oct 06, 2015 at 02:20:31AM +0300, Kimmo Paasiala wrote: > > On Mon, Oct 5, 2015 at 10:52 PM, ÐÑÑÑÑ ÐÑÑомин wrote: > > > On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: > > >> The smtpd code is very good. > > > > > > static void > > > filter_tx_io(struct io *io, int evt) > > > { > > > struct filter_session *s = io->arg; > > > size_t len, n; > > > char*data; > > > charbuf[65535]; > > > > > > > > > switch (evt) { > > > case IO_DATAIN: > > > data = iobuf_data(>ibuf); > > > len = iobuf_len(>ibuf); > > > memmove(buf, data, len); > > > buf[len] = 0; > > > > > > > You just validated all the concerns about the quality of OpenSMTPd and > > also the need for peer/code reviews. That is not production quality > > code by any measure. > > I mean exactly that. It is sarcasm about "very good code". > Well, you know, if I'm supposed to judge an entire project based on a supposedly unchecked pointer parameter, and a supposedly unchecked length given to a block move (both occurring in a statically declared function) I'd still want some sort of a pointer to the file it came from, and a pointer to the bug report filed for it and any discussion on the mailing lists that occured concerning the code in question. Otherwise, I'm judging the reporter more severely than whoever wrote the code. Joel Rees Computer memory is just fancy paper, CPUs just fancy pens. All is a stream of text flowing from the past into the future.
Re: Boot on a device with only one video mode 1280 x 850 x 16
1280 x 850 x 16 refers to 16 bit colour depth ( 16bpp ) I can only get grub2 output if I set GFXTERM = 1280 x 850 If I test on grub2 $ videotest 640x480x8 I get a black screen Try $ videotest 1280x850x16 I get the test patten on the Pixel 2. I believe the reason for just the one resolution, is at present, the SeaVGABIOS does not have support for mode switching on Intel graphics adapters. So even if we had more than one resolution available, the SeaVGABIOS can't switch to it. On Fri, Oct 9, 2015 at 9:14 PM, edward wandasiewicz <0.w3...@gmail.com> wrote: > Is it possible to boot OpenBSD on a device which only has one video > mode available through the BIOS? > > At present, we boot in text mode via vga(4) and wscons(4). > > If we have a machine compatible with inteldrm(4), it attaches, and the > dmesg output is then set to the highest resolution. > > Is it possible to boot with no dmesg output during the VGA text mode, > but then once we attach to inteldrm(4), as if by magic, we get the > dmesg output and can login. > > At present, with only one video mode on an inteldrm(4) compatible > machine, the kernel boots, and then hangs / freezes. > Basically, no dmesg output. Just sits there... > > Is it possible to say, okay, we have a resolution that's not > compatible for VGA console text mode, but if we can attach to > inteldrm(4) successfully, we can continue with booting? > > Or is it a case of a bad BIOS design in the first place, and it would > be a case of making bad coding practice following someone else's bad > coding practice, which is a mess. > > The machine in question is a Google Chromebook Pixel 2, which only has > one video resolution available of 1280 x 850 x 16 in the BIOS. It has > a Broadwell i7 processor. > > vbeinfo command in Grub2 lists just one value of 1280 x 850 x 16. > > Edward.
Re: Private cloud hosting recommendations
On 10/9/2015 11:04 AM, Martín Ferco wrote: Do you know or can recommend other private cloud providers? I use ramnode (kvm) and core networks (physical). Both support OpenBSD. Ramnode doesn't do a private network but they'll give you extra bandwidth to compensate; I'm not sure about core.
Re: match rules and priorities
Am Freitag, den 09.10.2015, 07:56 +0300 schrieb Kimmo Paasiala: > On Thu, Oct 8, 2015 at 4:26 PM, Christer Solskogen > > I boiled the rule down to this: > > match proto tcp to port { http https } set prio 7 > > > > But I still can't see that it does anything useful, as I don't see > > any > > better speed on http with or without that rule. > > What have I missed? :( [..] > Your downloads from the internet are > incoming traffic on your internet facing network interface and can not > be prioritized. Well, actually it can[1]. But it involves some kind of reverse thinking and hsfc queues. And if this link is indeed not the bottleneck, even in the best case you can't win, but in the worst, you can screw up awfully. This is why I asked Christer to try to identify the exact limit that is being hit. Christer, if you find out that traffic on the incoming connection (i.e. the one from the last router of your provider to your OpenBSD machine) is indeed the problem, post it to the list and I may give you better instructions. [1] The basic idea is to limit traffic to the internal LAN to a bit less than the current bottleneck. This way you have control over the outgoing traffic on the (artificial) bottleneck link and you may indeed be able to do shaping. But this approach is of course complicated by the fact that (a) it would involve hsfc queues instead of the default prio ones and it will only work, if the protocols running are cooperative enough (i.e. predominantly TCP and no massive amounts of flows). Cheers David
Re: kernel panic
> On Fri, Oct 09, 2015 at 06:22:53AM +0200, Holger Glaess wrote: >> hi >> >> what kind of information you need more ? >> > > uhm. this machine is very very strange. It has devices I've never > seen before and many other devices not even recognized. Without access > to the hardware there's not much we can do here. > > You've posted about this machine in the past, and we've done our best > to help you but I think this may be a losing battle. > hi you mean physikal access or is connection by ssh also ok ? ssh access i can give you. Holger >> holger >> >> >> Stopped at 0:ehci0: unrecoverable error, controller halted >> panic: kernel diagnostic assertion "ci->ci_fpcurproc == p" failed: file >> "../../../../arch/i386/isa/npx.c", line 881 >> Stopped at Debugger+0x7: leave >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND >> Debugger(d09fe02c,f51cfdd4,d09d8f30,f51cfdd4,d709bfc8) at Debugger+0x7 >> panic(d09d8f30,d0957746,d0b0522f,d0b0532c,371) at panic+0x71 >> __assert(d0957746,d0b0532c,371,d0b0522f,d0bbb160) at __assert+0x2e >> npxsave_proc(d7216744,0,f51cfe58,d03b9029,40) at npxsave_proc+0x5a >> cpu_exit(d7216744,d7215000,d709b00c,0,1) at cpu_exit+0x2a >> exit1(d7216744,4,1,d03b3844,40,4,1,0) at exit1+0x22c >> sigexit(d7216744,4,0,0,21fc000) at sigexit+0x76 >> postsig(4,0,808f05d0,63,21de800) at postsig+0x28a >> userret(d7216744) at userret+0x49 >> alltraps(,,,,) at alltraps+0x2e >> uvm_fault(0xd0bbb0a0, 0xd000, 0, 1) -> e >> kernel: page fault trap, code=0 >> Stopped at trap+0x18: movl0x2c(%esi),%edi >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND >> trap() at trap+0x18 >> --- trap (number 32) --- >> 0: >> http://www.openbsd.org/ddb.html describes the minimum info required in >> bug >> reports. Insufficient info makes it difficult to find and fix bugs. >> ddb> >> >> >> OpenBSD 5.8-current (GENERIC) #1219: Thu Oct 8 07:55:22 MDT 2015 >> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC >> cpu0: Genuine Intel(R) processor 1.20GHz ("GenuineIntel" 686-class) 1.21 >> GHz >> cpu0: >> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,PERF >> real mem = 1072041984 (1022MB) >> avail mem = 1038999552 (990MB) >> mpath0 at root >> scsibus0 at mpath0: 256 targets >> mainbus0 at root >> bios0 at mainbus0: date 07/06/09, BIOS32 rev. 0 @ 0xfa530, SMBIOS rev. >> 2.2 @ >> 0xf0800 (39 entries) >> bios0: vendor Phoenix Technologies, LTD version "ANSA 3020 R01 >> Jul,2,2009" date 07/06/2009 >> acpi0 at bios0: rev 0 >> acpi0: sleep states S0 S3 S4 S5 >> acpi0: tables DSDT FACP MCFG APIC >> acpi0: wakeup devices EPA0(S3) EPA1(S3) PEX0(S5) PEX1(S5) PEX2(S5) >> PEX3(S5) >> HUB0(S5) PCI0(S5) >> acpitimer0 at acpi0: 3579545 Hz, 24 bits >> acpimcfg0 at acpi0 addr 0xe000, bus 0-255 >> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat >> cpu0 at mainbus0: apid 0 (boot processor) >> mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges >> cpu0: apic clock running at 133MHz >> ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 40 pins >> acpiprt0 at acpi0: bus 0 (PCI0) >> acpiprt1 at acpi0: bus 2 (EPA1) >> acpiprt2 at acpi0: bus -1 (BR10) >> acpiprt3 at acpi0: bus -1 (BR11) >> acpiprt4 at acpi0: bus -1 (BR12) >> acpiprt5 at acpi0: bus -1 (BR13) >> acpiprt6 at acpi0: bus -1 (BR14) >> acpiprt7 at acpi0: bus 3 (P0P1) >> acpiprt8 at acpi0: bus -1 (PEX0) >> acpiprt9 at acpi0: bus -1 (PEX1) >> acpiprt10 at acpi0: bus -1 (PEX2) >> acpiprt11 at acpi0: bus -1 (PEX3) >> acpiprt12 at acpi0: bus -1 (HUB0) >> acpicpu0 at acpi0: C1(@1 halt!) >> acpitz0 at acpi0: critical temperature is 75 degC >> acpibtn0 at acpi0: PWRB >> bios0: ROM list: 0xc8000/0x4000! 0xcc000/0x2200! 0xef000/0x1000! >> pci0 at mainbus0 bus 0: configuration mode 1 (bios) >> pchb0 at pci0 dev 0 function 0 "Intel EP80579 Host" rev 0x01 >> "Intel EP80579 Memory" rev 0x01 at pci0 dev 0 function 1 not configured >> "Intel EP80579 EDMA" rev 0x01 at pci0 dev 1 function 0 not configured >> ppb0 at pci0 dev 2 function 0 "Intel EP80579 PCIE" rev 0x01: apic 2 int >> 16 >> pci1 at ppb0 bus 1 >> em0 at pci1 dev 0 function 0 "Intel 82574L" rev 0x00: msi, address >> 00:14:b7:00:61:63 >> ppb1 at pci0 dev 3 function 0 "Intel EP80579 PCIE" rev 0x01: apic 2 int >> 16 >> pci2 at ppb1 bus 2 >> ppb2 at pci0 dev 4 function 0 "Intel EP80579" rev 0x01 >> pci3 at ppb2 bus 3 >> em1 at pci3 dev 0 function 0 "Intel EP80579 LAN" rev 0x01: apic 2 int >> 16, >> address 00:14:b7:00:61:65 >> em2 at pci3 dev 1 function 0 "Intel EP80579 LAN" rev 0x01: apic 2 int >> 17, >> address 00:14:b7:00:61:66 >> em3 at pci3 dev 2 function 0 "Intel EP80579 LAN" rev 0x01: apic 2 int >> 18, >> address ff:ff:ff:ff:ff:ff >> gcu0 at pci3 dev 3 function 0 "Intel EP80579 GCU" rev 0x01 >> "Intel EP80579 CANbus" rev 0x01 at pci3 dev 4 function 0 not configured >> "Intel EP80579 CANbus" rev 0x01 at pci3 dev 5 function 0 not configured >> "Intel
Re: CD's arrived
On 2015-10-08 22:13, ian kremlin wrote: Hello Syracuse, NY -- no CD, but poster has arrived. looks great! http://ce.gl/openbsd-5.8-poster.jpg ian Who can beat this old sckool?
Re: Private cloud hosting recommendations
On Fri, October 9, 2015 4:34 pm, MartÃn Ferco wrote: > I can consider that as well, but I'd like to not depend on someone > inserting CDs or something like that for installing the OS for example > and, > also, I'd like to have the possibility of having our private network > connected via VPN to our other sites. > For a measly $30 a month I have my own system and can get a network KVM attached for console access through which you can also provide an ISO for it to boot from / read. And no reason you can't VPN to the box. I have that set up for myself. For $150 you've gotta be able to do even better than that. I was looking for cheap, so I don't have easy access to that KVM, it's by request, and support is through their ticketing system only. No phone or the like. This isn't a recommendation for a business (but for personal use, I recommend them) but for a comparison: https://www.wholesaleinternet.net/dedicated For $85 you could have a 12 core 72G system, install ESX and then whatever VMs you want. :) Tim.
Re: Private cloud hosting recommendations
I know that in iweb dedicated servers you can request a spider kvm with 24h notice and not pay for that. If it's an urgent request you have to pay a fee. On Oct 9, 2015 9:36 PM, "MartÃn Ferco"wrote: > I can consider that as well, but I'd like to not depend on someone > inserting CDs or something like that for installing the OS for example and, > also, I'd like to have the possibility of having our private network > connected via VPN to our other sites. > > I used Softlayer in the past for hosting FreeBSD, perhaps they somehow > support OpenBSD, and mounting CD images via IPMI or something like that? Do > you know any big providers that can do this? > > Thanks! > > On Fri, Oct 9, 2015 at 5:18 PM, trondd wrote: > > > On Fri, October 9, 2015 1:57 pm, MartÄn Ferco wrote: > > > Thanks for all your input! > > > > > > I'm not particularly concerned about price -- if they are as expensive > as > > > AWS (paying around $150/mo per instance there), I'd be OK as well. If > > they > > > are cheaper, the better, but I want quality and service as a priority. > > > > > > > $150 per instance? For that money, why not go with dedicated hardware. > > > > Tim.
Re: Private cloud hosting recommendations
On Fri, October 9, 2015 1:57 pm, MartÃn Ferco wrote: > Thanks for all your input! > > I'm not particularly concerned about price -- if they are as expensive as > AWS (paying around $150/mo per instance there), I'd be OK as well. If they > are cheaper, the better, but I want quality and service as a priority. > $150 per instance? For that money, why not go with dedicated hardware. Tim.
Re: Private cloud hosting recommendations
I can consider that as well, but I'd like to not depend on someone inserting CDs or something like that for installing the OS for example and, also, I'd like to have the possibility of having our private network connected via VPN to our other sites. I used Softlayer in the past for hosting FreeBSD, perhaps they somehow support OpenBSD, and mounting CD images via IPMI or something like that? Do you know any big providers that can do this? Thanks! On Fri, Oct 9, 2015 at 5:18 PM, tronddwrote: > On Fri, October 9, 2015 1:57 pm, MartÄn Ferco wrote: > > Thanks for all your input! > > > > I'm not particularly concerned about price -- if they are as expensive as > > AWS (paying around $150/mo per instance there), I'd be OK as well. If > they > > are cheaper, the better, but I want quality and service as a priority. > > > > $150 per instance? For that money, why not go with dedicated hardware. > > Tim.
Boot on a device with only one video mode 1280 x 850 x 16
Is it possible to boot OpenBSD on a device which only has one video mode available through the BIOS? At present, we boot in text mode via vga(4) and wscons(4). If we have a machine compatible with inteldrm(4), it attaches, and the dmesg output is then set to the highest resolution. Is it possible to boot with no dmesg output during the VGA text mode, but then once we attach to inteldrm(4), as if by magic, we get the dmesg output and can login. At present, with only one video mode on an inteldrm(4) compatible machine, the kernel boots, and then hangs / freezes. Basically, no dmesg output. Just sits there... Is it possible to say, okay, we have a resolution that's not compatible for VGA console text mode, but if we can attach to inteldrm(4) successfully, we can continue with booting? Or is it a case of a bad BIOS design in the first place, and it would be a case of making bad coding practice following someone else's bad coding practice, which is a mess. The machine in question is a Google Chromebook Pixel 2, which only has one video resolution available of 1280 x 850 x 16 in the BIOS. It has a Broadwell i7 processor. vbeinfo command in Grub2 lists just one value of 1280 x 850 x 16. Edward.
Re: Boot on a device with only one video mode 1280 x 850 x 16
edward wandasiewicz wrote: > I believe the reason for just the one resolution, is at present, the > SeaVGABIOS does not have support for mode switching on Intel graphics > adapters. So even if we had more than one resolution available, the > SeaVGABIOS can't switch to it. In short, this is an incomplete PC lacking essential PC features. Google has made something that has a decent resemblance to a PC, but which is nevertheless not a PC. There is a sparc CPU in the printer sitting next to me, but I would not expect to run the OpenBSD/sparc port on it because it too is lacking several important features of the traditional sparc(station) platform.
Re: kernel panic
On Fri, Oct 09, 2015 at 04:35:48AM -0700, Mike Larkin wrote: > On Fri, Oct 09, 2015 at 09:53:16AM +0200, Holger Glaess wrote: > > > On Fri, Oct 09, 2015 at 06:22:53AM +0200, Holger Glaess wrote: > > >> hi > > >> > > >> what kind of information you need more ? > > >> > > > > > > uhm. this machine is very very strange. It has devices I've never > > > seen before and many other devices not even recognized. Without access > > > to the hardware there's not much we can do here. > > > > > > You've posted about this machine in the past, and we've done our best > > > to help you but I think this may be a losing battle. > > > > > > > hi > > you mean physikal access or is connection by ssh also ok ? > > > > ssh access i can give you. > > > > I meant getting one of these boards in hand. > PS that wasn't me volunteering. It was just a statement that debugging strange hardware usually goes faster with physical access. > > > > Holger > > > > > > >> holger > > >> > > >> > > >> Stopped at 0:ehci0: unrecoverable error, controller halted > > >> panic: kernel diagnostic assertion "ci->ci_fpcurproc == p" failed: file > > >> "../../../../arch/i386/isa/npx.c", line 881 > > >> Stopped at Debugger+0x7: leave > > >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND > > >> Debugger(d09fe02c,f51cfdd4,d09d8f30,f51cfdd4,d709bfc8) at Debugger+0x7 > > >> panic(d09d8f30,d0957746,d0b0522f,d0b0532c,371) at panic+0x71 > > >> __assert(d0957746,d0b0532c,371,d0b0522f,d0bbb160) at __assert+0x2e > > >> npxsave_proc(d7216744,0,f51cfe58,d03b9029,40) at npxsave_proc+0x5a > > >> cpu_exit(d7216744,d7215000,d709b00c,0,1) at cpu_exit+0x2a > > >> exit1(d7216744,4,1,d03b3844,40,4,1,0) at exit1+0x22c > > >> sigexit(d7216744,4,0,0,21fc000) at sigexit+0x76 > > >> postsig(4,0,808f05d0,63,21de800) at postsig+0x28a > > >> userret(d7216744) at userret+0x49 > > >> alltraps(,,,,) at alltraps+0x2e > > >> uvm_fault(0xd0bbb0a0, 0xd000, 0, 1) -> e > > >> kernel: page fault trap, code=0 > > >> Stopped at trap+0x18: movl0x2c(%esi),%edi > > >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND > > >> trap() at trap+0x18 > > >> --- trap (number 32) --- > > >> 0: > > >> http://www.openbsd.org/ddb.html describes the minimum info required in > > >> bug > > >> reports. Insufficient info makes it difficult to find and fix bugs. > > >> ddb> > > >> > > >> > > >> OpenBSD 5.8-current (GENERIC) #1219: Thu Oct 8 07:55:22 MDT 2015 > > >> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC > > >> cpu0: Genuine Intel(R) processor 1.20GHz ("GenuineIntel" 686-class) 1.21 > > >> GHz > > >> cpu0: > > >> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,PERF > > >> real mem = 1072041984 (1022MB) > > >> avail mem = 1038999552 (990MB) > > >> mpath0 at root > > >> scsibus0 at mpath0: 256 targets > > >> mainbus0 at root > > >> bios0 at mainbus0: date 07/06/09, BIOS32 rev. 0 @ 0xfa530, SMBIOS rev. > > >> 2.2 @ > > >> 0xf0800 (39 entries) > > >> bios0: vendor Phoenix Technologies, LTD version "ANSA 3020 R01 > > >> Jul,2,2009" date 07/06/2009 > > >> acpi0 at bios0: rev 0 > > >> acpi0: sleep states S0 S3 S4 S5 > > >> acpi0: tables DSDT FACP MCFG APIC > > >> acpi0: wakeup devices EPA0(S3) EPA1(S3) PEX0(S5) PEX1(S5) PEX2(S5) > > >> PEX3(S5) > > >> HUB0(S5) PCI0(S5) > > >> acpitimer0 at acpi0: 3579545 Hz, 24 bits > > >> acpimcfg0 at acpi0 addr 0xe000, bus 0-255 > > >> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > > >> cpu0 at mainbus0: apid 0 (boot processor) > > >> mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges > > >> cpu0: apic clock running at 133MHz > > >> ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 40 pins > > >> acpiprt0 at acpi0: bus 0 (PCI0) > > >> acpiprt1 at acpi0: bus 2 (EPA1) > > >> acpiprt2 at acpi0: bus -1 (BR10) > > >> acpiprt3 at acpi0: bus -1 (BR11) > > >> acpiprt4 at acpi0: bus -1 (BR12) > > >> acpiprt5 at acpi0: bus -1 (BR13) > > >> acpiprt6 at acpi0: bus -1 (BR14) > > >> acpiprt7 at acpi0: bus 3 (P0P1) > > >> acpiprt8 at acpi0: bus -1 (PEX0) > > >> acpiprt9 at acpi0: bus -1 (PEX1) > > >> acpiprt10 at acpi0: bus -1 (PEX2) > > >> acpiprt11 at acpi0: bus -1 (PEX3) > > >> acpiprt12 at acpi0: bus -1 (HUB0) > > >> acpicpu0 at acpi0: C1(@1 halt!) > > >> acpitz0 at acpi0: critical temperature is 75 degC > > >> acpibtn0 at acpi0: PWRB > > >> bios0: ROM list: 0xc8000/0x4000! 0xcc000/0x2200! 0xef000/0x1000! > > >> pci0 at mainbus0 bus 0: configuration mode 1 (bios) > > >> pchb0 at pci0 dev 0 function 0 "Intel EP80579 Host" rev 0x01 > > >> "Intel EP80579 Memory" rev 0x01 at pci0 dev 0 function 1 not configured > > >> "Intel EP80579 EDMA" rev 0x01 at pci0 dev 1 function 0 not configured > > >> ppb0 at pci0 dev 2 function 0 "Intel EP80579 PCIE" rev 0x01: apic 2 int > > >> 16 > > >> pci1 at ppb0 bus 1 > > >> em0 at pci1 dev 0 function 0 "Intel 82574L" rev 0x00: msi, address > > >>
Re: CD's arrived
On 10/07/2015 04:51 PM, M Wheeler wrote: CD's arrived today UK. Thanks again. Arrived fine in Belgium too.
pf table counters
Hi, Is there a problem with table counters and NAT? I don't have any counters at all. I have a table which has counters enabled # pfctl -sT -v|grep nat_users --a-r-C nat_users I also have pf rules that reference this table. @100 pass out quick on vlan123 inet proto tcp from port > 1023 to ! port > 1023 flags S/SA nat-to xx.xx.xx.xx/29 source-hash 0xkey I also have states created from this rule #pfctl -ss -vv|grep "rule 100" age 04:00:49, expires in 23:59:43, 1150:1431 pkts, 163312:103039 bytes, rule 100 age 04:00:35, expires in 23:53:03, 60:35 pkts, 3266:1980 bytes, rule 100 age 00:06:10, expires in 00:10:00, 15:1 pkts, 4544:60 bytes, rule 100 ... However I don't have counters on the table's entries. # pfctl -t nat_users -vTshow yy.yy.yy.1 Cleared: Thu Sep 24 14:13:08 2015 yy.yy.yy.2 Cleared: Thu Sep 24 14:13:08 2015 If I create another table and a normal pf rule (no nat) then I have counters... as soon as there is traffic matching the rule. second question: when is the cleared time I see above updated apart from the initial input of the ip in the table? thanks Giannis
Re: kernel panic
On Fri, Oct 09, 2015 at 09:53:16AM +0200, Holger Glaess wrote: > > On Fri, Oct 09, 2015 at 06:22:53AM +0200, Holger Glaess wrote: > >> hi > >> > >> what kind of information you need more ? > >> > > > > uhm. this machine is very very strange. It has devices I've never > > seen before and many other devices not even recognized. Without access > > to the hardware there's not much we can do here. > > > > You've posted about this machine in the past, and we've done our best > > to help you but I think this may be a losing battle. > > > > hi > you mean physikal access or is connection by ssh also ok ? > > ssh access i can give you. > I meant getting one of these boards in hand. > > Holger > > > >> holger > >> > >> > >> Stopped at 0:ehci0: unrecoverable error, controller halted > >> panic: kernel diagnostic assertion "ci->ci_fpcurproc == p" failed: file > >> "../../../../arch/i386/isa/npx.c", line 881 > >> Stopped at Debugger+0x7: leave > >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND > >> Debugger(d09fe02c,f51cfdd4,d09d8f30,f51cfdd4,d709bfc8) at Debugger+0x7 > >> panic(d09d8f30,d0957746,d0b0522f,d0b0532c,371) at panic+0x71 > >> __assert(d0957746,d0b0532c,371,d0b0522f,d0bbb160) at __assert+0x2e > >> npxsave_proc(d7216744,0,f51cfe58,d03b9029,40) at npxsave_proc+0x5a > >> cpu_exit(d7216744,d7215000,d709b00c,0,1) at cpu_exit+0x2a > >> exit1(d7216744,4,1,d03b3844,40,4,1,0) at exit1+0x22c > >> sigexit(d7216744,4,0,0,21fc000) at sigexit+0x76 > >> postsig(4,0,808f05d0,63,21de800) at postsig+0x28a > >> userret(d7216744) at userret+0x49 > >> alltraps(,,,,) at alltraps+0x2e > >> uvm_fault(0xd0bbb0a0, 0xd000, 0, 1) -> e > >> kernel: page fault trap, code=0 > >> Stopped at trap+0x18: movl0x2c(%esi),%edi > >>TIDPIDUID PRFLAGS PFLAGS CPU COMMAND > >> trap() at trap+0x18 > >> --- trap (number 32) --- > >> 0: > >> http://www.openbsd.org/ddb.html describes the minimum info required in > >> bug > >> reports. Insufficient info makes it difficult to find and fix bugs. > >> ddb> > >> > >> > >> OpenBSD 5.8-current (GENERIC) #1219: Thu Oct 8 07:55:22 MDT 2015 > >> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC > >> cpu0: Genuine Intel(R) processor 1.20GHz ("GenuineIntel" 686-class) 1.21 > >> GHz > >> cpu0: > >> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,PERF > >> real mem = 1072041984 (1022MB) > >> avail mem = 1038999552 (990MB) > >> mpath0 at root > >> scsibus0 at mpath0: 256 targets > >> mainbus0 at root > >> bios0 at mainbus0: date 07/06/09, BIOS32 rev. 0 @ 0xfa530, SMBIOS rev. > >> 2.2 @ > >> 0xf0800 (39 entries) > >> bios0: vendor Phoenix Technologies, LTD version "ANSA 3020 R01 > >> Jul,2,2009" date 07/06/2009 > >> acpi0 at bios0: rev 0 > >> acpi0: sleep states S0 S3 S4 S5 > >> acpi0: tables DSDT FACP MCFG APIC > >> acpi0: wakeup devices EPA0(S3) EPA1(S3) PEX0(S5) PEX1(S5) PEX2(S5) > >> PEX3(S5) > >> HUB0(S5) PCI0(S5) > >> acpitimer0 at acpi0: 3579545 Hz, 24 bits > >> acpimcfg0 at acpi0 addr 0xe000, bus 0-255 > >> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > >> cpu0 at mainbus0: apid 0 (boot processor) > >> mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges > >> cpu0: apic clock running at 133MHz > >> ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 40 pins > >> acpiprt0 at acpi0: bus 0 (PCI0) > >> acpiprt1 at acpi0: bus 2 (EPA1) > >> acpiprt2 at acpi0: bus -1 (BR10) > >> acpiprt3 at acpi0: bus -1 (BR11) > >> acpiprt4 at acpi0: bus -1 (BR12) > >> acpiprt5 at acpi0: bus -1 (BR13) > >> acpiprt6 at acpi0: bus -1 (BR14) > >> acpiprt7 at acpi0: bus 3 (P0P1) > >> acpiprt8 at acpi0: bus -1 (PEX0) > >> acpiprt9 at acpi0: bus -1 (PEX1) > >> acpiprt10 at acpi0: bus -1 (PEX2) > >> acpiprt11 at acpi0: bus -1 (PEX3) > >> acpiprt12 at acpi0: bus -1 (HUB0) > >> acpicpu0 at acpi0: C1(@1 halt!) > >> acpitz0 at acpi0: critical temperature is 75 degC > >> acpibtn0 at acpi0: PWRB > >> bios0: ROM list: 0xc8000/0x4000! 0xcc000/0x2200! 0xef000/0x1000! > >> pci0 at mainbus0 bus 0: configuration mode 1 (bios) > >> pchb0 at pci0 dev 0 function 0 "Intel EP80579 Host" rev 0x01 > >> "Intel EP80579 Memory" rev 0x01 at pci0 dev 0 function 1 not configured > >> "Intel EP80579 EDMA" rev 0x01 at pci0 dev 1 function 0 not configured > >> ppb0 at pci0 dev 2 function 0 "Intel EP80579 PCIE" rev 0x01: apic 2 int > >> 16 > >> pci1 at ppb0 bus 1 > >> em0 at pci1 dev 0 function 0 "Intel 82574L" rev 0x00: msi, address > >> 00:14:b7:00:61:63 > >> ppb1 at pci0 dev 3 function 0 "Intel EP80579 PCIE" rev 0x01: apic 2 int > >> 16 > >> pci2 at ppb1 bus 2 > >> ppb2 at pci0 dev 4 function 0 "Intel EP80579" rev 0x01 > >> pci3 at ppb2 bus 3 > >> em1 at pci3 dev 0 function 0 "Intel EP80579 LAN" rev 0x01: apic 2 int > >> 16, > >> address 00:14:b7:00:61:65 > >> em2 at pci3 dev 1 function 0 "Intel EP80579 LAN" rev 0x01: apic 2 int > >> 17, > >> address
Re: Private cloud hosting recommendations
On Fri, Oct 09, 2015 at 12:04:29PM -0300, Martín Ferco wrote: > Do you know or can recommend other private cloud providers? Take a look at https://www.digitalocean.com/. I've heard good things, and I'm about to set some stuff up there myself. The only BSD the officially support is FreeBSD, but I know that people have been putting OpenBSD there manually. [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
Re: Strange network issue during startup
On 7 October 2015 at 07:04, Alessandro DE LAURENZISwrote: > I'll try your patch asap. > Hi, Please drop the diff I've sent you and try current. The fix should be in the if_trunk.c revision 1.121. Regards, Mike > All the best > > -- > Alessandro DE LAURENZIS > [mailto:just22@gmail.com] > LinkedIn: http://it.linkedin.com/in/delaurenzis
Re: Strange network issue during startup
On 9 October 2015 at 19:15, Alessandro DE LAURENZISwrote: > Hi Mike, > > On Fri 09/10/2015 19:07, Mike Belopuhov wrote: >> Hi, >> >> Please drop the diff I've sent you and try current. >> The fix should be in the if_trunk.c revision 1.121. >> > > Just tried 9 Oct snapshot: problem solved! > > Thank you very much for your prompt reaction. > > Just out of my curiosity: was this the same problem in [0]? > > Cheers > > [0] http://marc.info/?l=openbsd-misc=144422539521881=2 > Yeah, this is the diff that I've committed. > -- > Alessandro DE LAURENZIS > [mailto:just22@gmail.com] > LinkedIn: http://it.linkedin.com/in/delaurenzis
Re: Strange network issue during startup
Hi Mike, On Fri 09/10/2015 19:07, Mike Belopuhov wrote: > Hi, > > Please drop the diff I've sent you and try current. > The fix should be in the if_trunk.c revision 1.121. > Just tried 9 Oct snapshot: problem solved! Thank you very much for your prompt reaction. Just out of my curiosity: was this the same problem in [0]? Cheers [0] http://marc.info/?l=openbsd-misc=144422539521881=2 -- Alessandro DE LAURENZIS [mailto:just22@gmail.com] LinkedIn: http://it.linkedin.com/in/delaurenzis
Re: Strange network issue during startup
Hi Mike, [...] > Is this from the /root/ifconfig.out? Trunk interface should not > have an IP address at this point. How does your /etc/hostname.trunk0 > look like right now? My bad, I pasted the wrong text; this is the output of "ifconfig -A" *before* dhclient call: [snip] lo0: flags=8049mtu 32768 priority: 0 groups: lo inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 inet 127.0.0.1 netmask 0xff00 em0: flags=8b43 mtu 1500 lladdr 00:21:86:94:34:8e priority: 0 trunk: trunkdev trunk0 media: Ethernet autoselect (none) status: no carrier iwn0: flags=8943 mtu 1500 lladdr 00:21:86:94:34:8e priority: 4 trunk: trunkdev trunk0 groups: wlan media: IEEE802.11 autoselect status: no network ieee80211: nwid atlantide-wifi wpakey 0xf96acbd7cd0c83a067230aa41acce73e4cf87cd1bd6d81ed4ec5570c10cef321 wpaprotos wpa1,wpa2 wpaakms psk wpaciphers tkip,ccmp wpagroupcipher tkip enc0: flags=0<> priority: 0 groups: enc status: active trunk0: flags=8802 mtu 1500 lladdr 00:21:86:94:34:8e priority: 0 trunk: trunkproto failover trunkport iwn0 active trunkport em0 master groups: trunk media: Ethernet autoselect status: active [snip] Just for the sake of completeness: [snip] ┌──[just22@poseidon]-[0]-[✓]-[~] └─› cat /etc/hostname.trunk0 trunkproto failover trunkport em0 trunkport iwn0 !/sbin/ifconfig -A >/root/ifconfig.out 2>&1 dhcp [snip] I'll try your patch asap. All the best -- Alessandro DE LAURENZIS [mailto:just22@gmail.com] LinkedIn: http://it.linkedin.com/in/delaurenzis
Re: Private cloud hosting recommendations
Thanks for all your input! I'm not particularly concerned about price -- if they are as expensive as AWS (paying around $150/mo per instance there), I'd be OK as well. If they are cheaper, the better, but I want quality and service as a priority. Also, ideally, it should be located in the US -- we would potentially like to build some kind of database cluster and datacenter proximity is a plus in that case. Thanks! On Fri, Oct 9, 2015 at 1:47 PM, Randy Westlundwrote: > On Fri, Oct 09, 2015 at 12:04:29PM -0300, MartÃn Ferco wrote: > > Do you know or can recommend other private cloud providers? > > Take a look at https://www.digitalocean.com/. I've heard good things, > and I'm about to set some stuff up there myself. The only BSD the > officially support is FreeBSD, but I know that people have been putting > OpenBSD there manually.
Re: Private cloud hosting recommendations
Fri, 09 Oct 2015 11:08:21 -0700, Mike Breggwrote: I've been using the VPS provider Vultr.com (https://www.vultr.com/) for a few months now, and have no complaints. They're KVM-based, and have datacenters in the US, Europe, Japan, and Australia. They allow you to install from a custom ISO, so OpenBSD works well. OpenBSD on VULTR customer here too, with a few points to add. 1) OpenBSD is not a supported OS, so even though it works pretty well, if you run into any weird network drop-out issues on a particular hosting node, in my experience they are somewhat quick to play the 'unsupported OS' card the and give up troubleshooting. Your best bet in these instances is to move the VPS to another datacenter. I've moved a snapshot of a VPS that was having network problems to another datacenter and the issue went away, go figure. 2) In the past year and a half of hosting, my VPSs have suffered approx 4-5 unplanned reboots. Typically this is when they have a problem with the host node and it has to be bounced. 3) VULTR is more accurately described as a VPS provider with cloud-like features, similar to Digital Ocean. I would not classify it a true 'cloud' infrastructure service like AWS. For something closer to AWS, you might consider something like dedify [1] or iwstack [2] [1] https://www.dedify.com/ [2] http://www.iwstack.com/
Re: Private cloud hosting recommendations
On 2015-10-09 09:04, Martín Ferco wrote: Hi misc, I'm looking for alternatives to host our OpenBSD web frontends off-site. Up until now we've been using AWS for contingecy, but as you may well know, they only support Linux and Windows instances. We already have a couple of OpenBSD frontends on-site, and getting all our frontends to be OpenBSD would be ideal (instead of using Linux as contingency in AWS). So I'm trying to find similar solutions to AWS, but with OpenBSD capabilities. So far the only I've found is rootbsd. I've looked at arpnetworks but they don't seem to offer private cloud hosting from what I've seen. Another importat thing for us is to have a private network that we can connect to our main site and AWS using a VPN. rootbsd does seem to offer this as well. Ideally, I'd like something that runs an ESXi Hypervisor, which is what we'be been using on-site with good results. rootbsd seems to offer a mix of Xen and KVM, but I don't have experience with those. KVM seems to work fine with OpenBSD from what I've read though. Do you know or can recommend other private cloud providers? rootbsd does seem to offer every thing we need, but I'm a bit concerned about them being, probably, a small sized company. I know they won't be AWS, but it would be reassuring if someone commented on them, especially if they have experience running a private cloud with them. I started to look at VMware vcloud air, but haven't heard from him yet, and was starting to take a look at virtustream -- they seem to offer ESXi hypervisors as well as VMware vloud air. Thanks! I've been using the VPS provider Vultr.com (https://www.vultr.com/) for a few months now, and have no complaints. They're KVM-based, and have datacenters in the US, Europe, Japan, and Australia. They allow you to install from a custom ISO, so OpenBSD works well. Regards, Mike
Re: Private cloud hosting recommendations
Mike Bregg wrote: > I've been using the VPS provider Vultr.com [...] I second Vultr, fwiw. Works a lot like DO, but better in a few ways. I got a Vultr account back in the day when DO didn't have support for any of the BSDs. Been running OpenBSD on Vultr ever since. BTW, Vultr never emailed me the root password (or other such nonsense), because as Mike said, you install the OS yourself. Can't complain about the price point either.
Re: Private cloud hosting recommendations
Vultr also with OpenBSD since 5.7 which makes it something like half a year with no problems whatsoever. On Oct 9, 2015 7:36 PM, "Rick Hanson"wrote: > Mike Bregg wrote: > > I've been using the VPS provider Vultr.com [...] > > I second Vultr, fwiw. Works a lot like DO, but better in a few ways. > I got a Vultr account back in the day when DO didn't have support for > any of the BSDs. Been running OpenBSD on Vultr ever since. BTW, > Vultr never emailed me the root password (or other such nonsense), > because as Mike said, you install the OS yourself. Can't complain > about the price point either.
Re: Private cloud hosting recommendations
Hi, I'm happily running OpenBSD on: https://www.mythic-beasts.com/ they have excellent technical support. Cheers Fred
Private cloud hosting recommendations
Hi misc, I'm looking for alternatives to host our OpenBSD web frontends off-site. Up until now we've been using AWS for contingecy, but as you may well know, they only support Linux and Windows instances. We already have a couple of OpenBSD frontends on-site, and getting all our frontends to be OpenBSD would be ideal (instead of using Linux as contingency in AWS). So I'm trying to find similar solutions to AWS, but with OpenBSD capabilities. So far the only I've found is rootbsd. I've looked at arpnetworks but they don't seem to offer private cloud hosting from what I've seen. Another importat thing for us is to have a private network that we can connect to our main site and AWS using a VPN. rootbsd does seem to offer this as well. Ideally, I'd like something that runs an ESXi Hypervisor, which is what we'be been using on-site with good results. rootbsd seems to offer a mix of Xen and KVM, but I don't have experience with those. KVM seems to work fine with OpenBSD from what I've read though. Do you know or can recommend other private cloud providers? rootbsd does seem to offer every thing we need, but I'm a bit concerned about them being, probably, a small sized company. I know they won't be AWS, but it would be reassuring if someone commented on them, especially if they have experience running a private cloud with them. I started to look at VMware vcloud air, but haven't heard from him yet, and was starting to take a look at virtustream -- they seem to offer ESXi hypervisors as well as VMware vloud air. Thanks!
Re: CD's arrived
On 2015-10-08 Thu 16:33, Aaron Poffenberger wrote: > On 10/08/15 16:13, ian kremlin wrote: > >Hello > > > >Syracuse, NY -- no CD, but poster has arrived. looks great! > > > >http://ce.gl/openbsd-5.8-poster.jpg > > > >ian > > > >On Wed, Oct 7, 2015 at 10:51 AM, M Wheeler <6f84c...@refn.co.uk> wrote: > >>CD's arrived today UK. Thanks again. > > > Bonus points for effective use of Symbolics keyboard, manual and panel! > Does it mean that the poster did arrive rather in a tube instead of a large flat envelope?
Re: softraid(4)/bioctl(8) vs. non-512-byte sectors disks
On Thu, Oct 08, 2015 at 08:42:14AM -0400, Kenneth R Westerback wrote: > ... It works fine, I'm exercising 4K sr crypto with rsync every night. Commit it pretty please :) The remaining bugs don't find themselves
Re: Private cloud hosting recommendations
I don't have a server recommendation. Just my 0.02: for rootbsd, the fact they might be too small do have its advantages in terms of exposure (who would spend too much energy trying to hack them?). And for rootbsd or any other option some backup policy would be recommended, right? (So even with the risk of rootbsd guys running off to Mexico with your $139.99 you would be safe). On Friday, 9 October 2015, MartÃn Fercowrote: > Hi misc, > > I'm looking for alternatives to host our OpenBSD web frontends off-site. Up > until now we've been using AWS for contingecy, but as you may well know, > they only support Linux and Windows instances. We already have a couple of > OpenBSD frontends on-site, and getting all our frontends to be OpenBSD > would be ideal (instead of using Linux as contingency in AWS). > > So I'm trying to find similar solutions to AWS, but with OpenBSD > capabilities. So far the only I've found is rootbsd. I've looked at > arpnetworks but they don't seem to offer private cloud hosting from what > I've seen. > > Another importat thing for us is to have a private network that we can > connect to our main site and AWS using a VPN. rootbsd does seem to offer > this as well. > > Ideally, I'd like something that runs an ESXi Hypervisor, which is what > we'be been using on-site with good results. rootbsd seems to offer a mix of > Xen and KVM, but I don't have experience with those. KVM seems to work fine > with OpenBSD from what I've read though. > > Do you know or can recommend other private cloud providers? rootbsd does > seem to offer every thing we need, but I'm a bit concerned about them > being, probably, a small sized company. I know they won't be AWS, but it > would be reassuring if someone commented on them, especially if they have > experience running a private cloud with them. I started to look at VMware > vcloud air, but haven't heard from him yet, and was starting to take a look > at virtustream -- they seem to offer ESXi hypervisors as well as VMware > vloud air. > > Thanks!
Re: Private cloud hosting recommendations
Check out https://www.advania.com/cloud/infrastructure-as-a-service/ (Icelandic). Murk On Fri, Oct 9, 2015 at 5:04 PM, MartÃn Fercowrote: > Hi misc, > > I'm looking for alternatives to host our OpenBSD web frontends off-site. Up > until now we've been using AWS for contingecy, but as you may well know, > they only support Linux and Windows instances. We already have a couple of > OpenBSD frontends on-site, and getting all our frontends to be OpenBSD > would be ideal (instead of using Linux as contingency in AWS). > > So I'm trying to find similar solutions to AWS, but with OpenBSD > capabilities. So far the only I've found is rootbsd. I've looked at > arpnetworks but they don't seem to offer private cloud hosting from what > I've seen. > > Another importat thing for us is to have a private network that we can > connect to our main site and AWS using a VPN. rootbsd does seem to offer > this as well. > > Ideally, I'd like something that runs an ESXi Hypervisor, which is what > we'be been using on-site with good results. rootbsd seems to offer a mix of > Xen and KVM, but I don't have experience with those. KVM seems to work fine > with OpenBSD from what I've read though. > > Do you know or can recommend other private cloud providers? rootbsd does > seem to offer every thing we need, but I'm a bit concerned about them > being, probably, a small sized company. I know they won't be AWS, but it > would be reassuring if someone commented on them, especially if they have > experience running a private cloud with them. I started to look at VMware > vcloud air, but haven't heard from him yet, and was starting to take a look > at virtustream -- they seem to offer ESXi hypervisors as well as VMware > vloud air. > > Thanks!