Re: ProLiant DL360 G3 - bge won't work
On 2009-12-11, at 10:43 AM, Peter Huncar wrote: Could you help me please with: I'm trying to install 4.6 on a ProLiant DL260 G3. The install from cd went just fine, but I discovered later that both integrated broadcom bge* do not work. Well, they accept IP and settings, but won't transmit a bit. Dhclient, tcpdump, ping - not a packet. I tried to change OS settings in Bios (Linux/Other) and MPS Table mode from 'auto' both to 'Full Table APIC' and 'Full Table Mapped'. I guess I didn't check all the possible combinations of APIC/OS :) Once I managed to crash to ddb while OS Setting was to Windows :) Nevertheless, they don't work neither with bsd nor bsd.mp kernel. Ran into this on Wednesday upgrading a DL360 G1 to a DL360 G3, it would find the bge0 and bge1 interface but neither would transmit. I ended up trying a suggestion from IRC to update to 4.6-current, which corrected the issue with the bge interfaces. -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: Odd CARP issue with 4.6
On 2009-11-25, at 6:08 PM, Bryan Irvine wrote: did you by chance upgrade your sysctl.conf? Make sure preempt is still turned on. -B I did upgrade sysctl.conf, but preempt is still turned on. Odd. -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: Odd CARP issue with 4.6
On 2009-11-25, at 6:23 PM, Henning Brauer wrote: check ifconfig -g carp on both Right now both are at: carp: carp demote count 0 However, I did check that before I rebooted the backup unit and the master was set to carp: carp demote count 1 At first I thought that maybe pfsync was keeping the master from reverting while it synced state, but even after 24 hours the master hadn't taken back over from the slave. -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: Odd CARP issue with 4.6
On 2009-11-26, at 10:40 AM, Marco Pfatschbacher wrote: It might help to set sysctl net.inet.carp.log=6 carp does logging about who demoted it: CARP_LOG(LOG_INFO, nil, (%s demoted group %s to %d, ifp-if_xname, ifgl-ifgl_group-ifg_group, *dm)); Thanks, have set that. Will check next time it happens and see if I can tell what's demoting it. -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Odd CARP issue with 4.6
I'm having a really odd issue, and not sure quite how best to explain it. As far as I know my setup was working fine with 4.5, and the failover itself still works without a hitch, it just doesn't seem to want to fail back anymore. If the master goes down (say for a reboot), CARP fails over to the secondary machine as normal, but when the master is back it doesn't fail back to it. If I force the carp interface down on the backup machine, it fails back over, but then as soon as I bring those interfaces back up, the BACKUP becomes master again. I find this strange since the BACKUP still has a much higher advskew. I end up rebooting the backup, which seems to put everything in its place. Very odd issue. Has anyone else encountered this? Master interface ifconfig: carp1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:02 priority: 0 carp: MASTER carpdev bnx0 vhid 2 advbase 1 advskew 0 groups: carp Backup interface ifconfig: carp1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:02 priority: 0 carp: BACKUP carpdev em0 vhid 2 advbase 1 advskew 100 groups: carp -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: HP DL360 Fan Control
I have seen the issue, we have 1 DL360 G3 server in particular where the fan stays at full throttle at all times. We've even gone so far as replacing the fan pack to try and resolve it, but the problem seems to be something more internal. We suspect the mother board. Other than that G3 though, we haven't had any problems with fans (regardless of OS) on the DL360s. On 2009-10-01, at 3:15 PM, Mauro Rezzonico wrote: Mikel Lindsaar wrote: HP DL360 G3 I have an HP DL360 G4 and it doesn't do that: it starts full throttle, but after 15-20 seconds it settles to just very noisy and stays like that... I did not had the chance to put the machine under heavy load (yet), but I suspect that is NOT the room getting warm, it's the machines making so much heat that the room warms up :-) -- Mauro Rezzonico ma...@ch23.org, Como, Italia Maybe this world is another planet's hell - H.Huxley -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Relayd
I've been experimenting some with using relayd to load balance incoming smtp, pop3 and imap and it seems to work wonderfully with relays, unfortunately I cannot use redirects since I need to direct to different server pools depending on the originating source IP. The only thing preventing me from deploying this is I need the connections to be transparent. OpenBSD 4.4 introduced a transparent key word, but for the life of me I cannot get this to work. If configured as outlined in the man page, relayd fails to start complaining about an interface missing from the configuration. If an interface is specified, relayd starts but connections time out immediately: relay maildelivery, session 4 (1 active), 0, 66.159.122.2 - 10.10.19.4:25, connect timeout When I trace the packets, I can see the connection being made to 10.10.19.4, and a reply issued, but the time out still happens, so I'm at a complete loss. Has anyone been able to get transparent relays configured? I'd appreciate any help anyone can provide. On another note. One thing that would be nice to see in relayd is the ability to specify a source ip or table in the redirect definition as that would eliminate the need for a relay for this configuration. Thanks. -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: Relayd
dev 19 function 0 Intel 5000 Reserved rev 0xb1 pchb6 at pci0 dev 21 function 0 Intel 5000 FBD rev 0xb1 pchb7 at pci0 dev 22 function 0 Intel 5000 FBD rev 0xb1 uhci0 at pci0 dev 29 function 0 Intel 6321ESB USB rev 0x09: apic 8 int 16 (irq 5) uhci1 at pci0 dev 29 function 1 Intel 6321ESB USB rev 0x09: apic 8 int 17 (irq 7) uhci2 at pci0 dev 29 function 2 Intel 6321ESB USB rev 0x09: apic 8 int 18 (irq 10) uhci3 at pci0 dev 29 function 3 Intel 6321ESB USB rev 0x09: apic 8 int 19 (irq 10) ehci0 at pci0 dev 29 function 7 Intel 6321ESB USB rev 0x09: apic 8 int 16 (irq 5) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb13 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xd9 pci14 at ppb13 bus 1 vga1 at pci14 dev 3 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) drm at vga1 unsupported Compaq iLO rev 0x03 at pci14 dev 4 function 0 not configured Compaq iLO rev 0x03 at pci14 dev 4 function 2 not configured uhci4 at pci14 dev 4 function 4 Hewlett-Packard USB rev 0x00: apic 8 int 22 (irq 10) Hewlett-Packard IPMI rev 0x00 at pci14 dev 4 function 6 not configured usb1 at uhci4: USB revision 1.0 uhub1 at usb1 Hewlett-Packard UHCI root hub rev 1.00/1.00 addr 1 pcib0 at pci0 dev 31 function 0 Intel 6321ESB LPC rev 0x09 pciide0 at pci0 dev 31 function 1 Intel 6321ESB IDE rev 0x09: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus1 at atapiscsi0: 2 targets, initiator 7 cd0 at scsibus1 targ 0 lun 0: HL-DT-ST, RW/DVD GCC-C10N, 2.00 ATAPI 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 disabled (no drives) usb2 at uhci0: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci1: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci2: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 usb5 at uhci3: USB revision 1.0 uhub5 at usb5 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at pcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo com1: probed fifo depth: 0 bytes pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 mtrr: Pentium Pro MTRR support uhidev0 at uhub1 port 1 configuration 1 interface 0 HP Virtual Keyboard rev 1.10/0.02 addr 2 uhidev0: iclass 3/1 ukbd0 at uhidev0: 8 modifier keys, 6 key codes, country code 33 wskbd1 at ukbd0 mux 1 wskbd1: connecting to wsdisplay0 uhidev1 at uhub1 port 1 configuration 1 interface 1 HP Virtual Keyboard rev 1.10/0.02 addr 2 uhidev1: iclass 3/1 ums0 at uhidev1: 3 buttons wsmouse0 at ums0 mux 0 uhub6 at uhub1 port 2 HP Virtual Hub rev 1.10/0.01 addr 3 softraid0 at root root on sd0a swap on sd0b dump on sd0b bnx1: address 00:1f:29:63:d5:1e brgphy0 at bnx1 phy 1: BCM5708C 10/100/1000baseT PHY, rev. 6 bnx0: address 00:1f:29:63:d5:18 brgphy1 at bnx0 phy 1: BCM5708C 10/100/1000baseT PHY, rev. 6 Thanks -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: de...@csolve.net
Re: Problem with relayctl - OBSD 4.4
On 2008-Nov-11, at 10:13 AM, Stuart Henderson wrote: I should probably have also mentioned to mark the point where relayctl reload is run.. Right before ^Chost check engine exiting When relayctl returns command failed. nothing appears in the debugging output. Derek
Re: Problem with relayctl - OBSD 4.4
Run relayd -dv, try and reload the config, check the output and paste it in mail. I get the same thing as well when trying to reload via relayctl, says command failed. I am still also unable to get transparent relaying working. I assume that though is more me missing something from my configuration (see my post subject Transparent Reverse Proxy with relayd for the config). Here's my output from relayd -dv = startup relay_privinit: adding relay pop3 protocol 1: name tcp_service flags: 0x0004 type: tcp relay_privinit: adding relay pop3s protocol 1: name tcp_service flags: 0x0004 type: tcp relay_privinit: adding relay imap protocol 1: name tcp_service flags: 0x0004 type: tcp relay_privinit: adding relay imaps protocol 1: name tcp_service flags: 0x0004 type: tcp relay_privinit: adding relay maildelivery protocol 1: name tcp_service flags: 0x0004 type: tcp relay_init: max open files 1024 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 adding 2 hosts from table pop3_servers:993 adding 2 hosts from table pop3_servers:25 relay_init: max open files 1024 relay_init: max open files 1024 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 adding 2 hosts from table pop3_servers:993 relay_init: max open files 1024 adding 2 hosts from table pop3_servers:25 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 relay_init: max open files 1024 adding 2 hosts from table pop3_servers:993 adding 2 hosts from table pop3_servers:25 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 adding 2 hosts from table pop3_servers:993 adding 2 hosts from table pop3_servers:25 hce_notify_done: 10.10.19.4 (tcp_host_up: connect successful) relay_launch: running relay pop3 relay_launch: running relay pop3 relay_launch: running relay pop3s relay_launch: running relay imap relay_launch: running relay imaps relay_launch: running relay maildelivery relay_launch: running relay pop3 relay_launch: running relay pop3s relay_launch: running relay imap relay_launch: running relay imaps relay_launch: running relay maildelivery relay_launch: running relay pop3 relay_launch: running relay pop3s relay_launch: running relay imap relay_launch: running relay imaps relay_launch: running relay maildelivery relay_init: max open files 1024 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 adding 2 hosts from table pop3_servers:993 adding 2 hosts from table pop3_servers:25 relay_launch: running relay pop3s host 10.10.19.4, check tcp (6ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.5 (tcp_host_up: connect successful) host 10.10.19.5, check tcp (6ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.4 (tcp_host_up: connect successful) host 10.10.19.4, check tcp (6ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.5 (tcp_host_up: connect successful) host 10.10.19.5, check tcp (6ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.4 (tcp_host_up: connect successful) host 10.10.19.4, check tcp (7ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.5 (tcp_host_up: connect successful) host 10.10.19.5, check tcp (7ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.4 (tcp_host_up: connect successful) host 10.10.19.4, check tcp (7ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.5 (tcp_host_up: connect successful) host 10.10.19.5, check tcp (7ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.4 (tcp_host_up: connect successful) host 10.10.19.4, check tcp (7ms), state unknown - up, availability 100.00% hce_notify_done: 10.10.19.5 (tcp_host_up: connect successful) host 10.10.19.5, check tcp (7ms), state unknown - up, availability 100.00% relay_init: max open files 1024 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:143 relay_init: max open files 1024 adding 2 hosts from table pop3_servers:110 adding 2 hosts from table pop3_servers:995 adding 2 hosts from table pop3_servers:993 adding 2 hosts from table pop3_servers:143 adding 2 hosts from table pop3_servers:993 relay_launch: running relay pop3 relay_launch: running relay pop3s relay_launch: running relay imap relay_launch: running relay imaps adding 2 hosts from table pop3_servers:25 relay_launch: running relay maildelivery adding 2 hosts from table pop3_servers:25 relay_launch: running relay imap adding 2 hosts from table pop3_servers:110 init_filter:
Transparent Reverse Proxy with relayd
I'm attempting to setup a reverse proxy using relayd using the
transparent forward to configuration (non-transparent works fine)
under OpenBSD 4.4.
My configuration is as follows:
===
#
# Macros
#
relayd_addr=127.0.0.1
elrond=10.10.19.4
celebrian=10.10.19.5
#
# Global Options
#
interval 10
timeout 200
prefork 10
log updates
#
# Each table will be mapped to a pf table.
#
table pop3_servers { $elrond $celebrian }
protocol tcp_service {
tcp { nodelay, socket buffer 65536 }
}
relay maildelivery {
listen on $relayd_addr port 2525
protocol tcp_service
transparent forward to pop3_servers port smtp check tcp
interface bnx1
}
===
Related PF configuration is:
===
ext_if=bnx0
elrond = 10.10.19.4
netguard = 66.159.122.2
pop3_servers = { $elrond }
rdr on $ext_if proto tcp from $netguard to 66.159.112.123 port smtp -
lo0 port 2525
pass in proto tcp from $netguard to $pop3_servers port smtp
pass in proto tcp from $netguard to lo0 port 2525
===
I'm unsure if I'm using the correct interface in the transparent
forward to line as it's not clear in the man page that an interface is
even required (though if left out it says missing interface).
When started, forwarding looks correct, but times out immediately:
relay maildelivery, session 4 (1 active), 0, 66.159.122.2 -
10.10.19.4:25, connect timeout
relay maildelivery, session 5 (1 active), 0, 66.159.122.2 -
10.10.19.4:25, connect timeout
relay maildelivery, session 6 (1 active), 0, 66.159.122.2 -
10.10.19.4:25, connect timeout
relay maildelivery, session 7 (1 active), 0, 66.159.122.2 -
10.10.19.4:25, connect timeout
If I monitor the interface on 10.10.19.4 as well as the outbound
interface on the firewall I can see the request go out to 10.10.19.4,
and the response from 10.10.19.4 return, but it still times out
immediately.
I'm sure I'm just missing something in my configuration, if anyone can
point me in the correct direction, I'd be much obliged.
Thank you.
--
Regards,
Derek Buttineau
Internet Systems Developer
Compu-SOLVE Internet Services
Compu-SOLVE Technologies, Inc
Phone: 705-725-1212 x255
E-Mail: [EMAIL PROTECTED]
Odd spamd-white update issues
Good Day, We have an OpenBSD 4.3 machine that is acting as a firewall for our scanning service and has spamd employed (which we've been using ever since hearing Bob talk about it at BSDCan 2005). Yesterday though, we had our first issue with it, for some reason about 4pm yesterday all of our entries in the spamd-white table disappeared? I suspected that it may have had something to do with the sync as I had spamd running with the -Y and -y flags, yet there is currently no other host on the network for it to sync with (though a redundant machine is in the works to be deployed very soon). When we uncovered the issue this morning, I removed the -Y and -y flags and restarted the machine and it is now working correctly again, however I'm a little puzzled as to the source of this problem as I've scoured our log files and do not see any errors or alerts that I can attribute to this situation. Any suggestions or advice would be greatly appreciated. Our spamd_flags were as follows (It is currently running without the - Y and -y): -h 'scanner.netguardsolutions.net' -n 'netGUARD: Mail Protection Service' -G 15:4:864 -Y em0 -y em0 -M 66.159.122.14 Thank you -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies, Inc Phone: 705-725-1212 x255 E-Mail: [EMAIL PROTECTED]
Re: ISC DHCPD Oddity
Okay, I've uncovered what is causing the problem, just not sure how to fix it (I've sent it off to the ISC dhcp list too, hopefully someone can figure it out :) ) The source of the problem seems to be the # of IPs assigned to fxp0 (currently 65). I removed about 40 of those, just to see if it would make any difference, and it did. After reducing the IPs, ISC dhcpd started without issue: Aug 31 13:37:36 smaug dhcpd: Internet Systems Consortium DHCP Server V3.0.2 Aug 31 13:37:36 smaug dhcpd: Copyright 2004 Internet Systems Consortium. Aug 31 13:37:36 smaug dhcpd: All rights reserved. Aug 31 13:37:36 smaug dhcpd: For info, please visit http://www.isc.org/sw/dhcp/ Aug 31 13:37:36 smaug dhcpd: Wrote 0 deleted host decls to leases file. Aug 31 13:37:36 smaug dhcpd: Wrote 0 new dynamic host decls to leases file. Aug 31 13:37:36 smaug dhcpd: Wrote 0 leases to leases file. Aug 31 13:37:36 smaug dhcpd: Listening on BPF/em0/00:02:a5:48:b4:ba/INTERNAL Aug 31 13:37:36 smaug dhcpd: Sending on BPF/em0/00:02:a5:48:b4:ba/INTERNAL Aug 31 13:37:36 smaug dhcpd: Listening on BPF/fxp1/00:50:8b:e0:7a:eb/DMZ Aug 31 13:37:36 smaug dhcpd: Sending on BPF/fxp1/00:50:8b:e0:7a:eb/DMZ Aug 31 13:37:36 smaug dhcpd: Sending on Socket/fallback/fallback-net My guess is that the number of IPs is causing the interface detection in ISC's DHCPD to break (though it doesn't spit out any errors to indicate this). I'll do some further testing tomorrow morning to see if I can determine at what threshold it breaks. In the meantime, I can work around the problem by not assigning the IPs to fxp0 until dhcpd has started. Derek On 8/31/05, Derek Buttineau [EMAIL PROTECTED] wrote: Just swapped drives from one Compaq DL360 to another DL360 and now whenever I try to run the ISC DHCPD, which was working perfectly fine on the other box, it complains that it can't find the interface. The only difference, network wise, between the two boxes is that the old one had interfaces fxp0, fxp1 and bge0 and the new one has fxp0, fxp1 and em0 (I have modified the configuration to reflect this) Everything else is working fine (PF, Networking, etc), except that I currently can't hand out dhcp leases. :) I've bundled dmesg, ifconfig -A, dhcpd.conf dhcpd.interfaces, hostname.em0, hostname.fxp0, hostname,fxp1 and ktrace.out here: http://users.csolve.net/~derek/stuff/dhcpdinfo.tar.gz http://users.csolve.net/%7Ederek/stuff/dhcpdinfo.tar.gz Any help or suggestions would be greatly appreciated. I'm assuming it's something simple I've missed. Thanks in advance. Derek
