Re: kernel/6043: panic: rtfree 2
Hi Claudio and Misc@, On Wed, 25 Feb 2009 03:12:09 +0700, Claudio Jeker clau...@openbsd.org wrote: On Tue, Feb 24, 2009 at 08:37:22AM +0700, Insan Praja SW wrote: On Tue, 24 Feb 2009 06:20:05 +0700, Claudio Jeker clau...@openbsd.org wrote: Could you please run with the following diff and report if you still hit the panics. It seems some drivers (maybe even em) fail to call the link state update function without the needed splsoftnet protection. Using splnet in rt_if_track may be to protective but we can reconsider that if the panic is gone. thanks Hi Claudio, I will test this diff today and I will get back to you with result. Thanks, I got other negative feedback (in other words the panic still happens). So as we're right before release the best thing is to turn the featrue of for now. So that we don't ship broken code in 4.5. Could you test this diff instead? Yeah I did.. and it works.. So it disabled rt_if_track? how 'bout sending half of the data to nirvana things on a multipath routing situation? is it affected? Thanks. -- insandotpraja(at)gmaildotcom
VLAN Priority/802.1p
Hi Misc@, I understand that we can have vlan priority on vlan interfaces. My question is, can OpenBSD process these 802.1p tags for CoS/QoS purposes? In PF we can mark/tag/process traffic by its DSCP code. Can we do something like this with VLAN Priority? Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: Segmentation fault (Core dumped) when Make Build
On Wed, 11 Feb 2009 15:59:23 +0700, Alexander Yurchenko
gra...@disorder.ru wrote:
do a binary update from the snapshot using bsd.rd first. then try to
make build.
Well of course, my usual step on upgrading my experiment boxes would be:
1. get latest source.
cd /usr/src
cvs -danon...@anoncvs1.ca.openbsd.org:/cvs -q up -Pd
2. compile new kernel
config GENERIC
../compile/GENERIC
make clean make depend make make install
3. Sometimes I rebooted the machine or straight to;
cd /usr/src
rm -rf /usr/obj* make obj cd /usr/src/etc
env DESTDIR=/ make distrib-dirs
cd /usr/src make build
Just like in the FAQ.
Thanks.
On Wed, Feb 11, 2009 at 02:09:15PM +0700, Insan Praja SW wrote:
Hi Guys,
When upgrading my OBSD 4.5-beta machine, I got
=== usr.sbin/bind
PATH=/bin:/usr/bin:/sbin:/usr/sbin CC=cc CFLAGS=-O2 -pipe
LDFLAGS= INSTALL_PROGRAM=install -c -s sh
/usr/src/usr.sbin/bind/configure --prefix=/usr --localstatedir=/var
--sysconfdir=/etc --disable-shared --disable-threads
--disable-openssl-version-check
Segmentation fault (core dumped)
*** Error code 139
Stop in /usr/src/usr.sbin/bind (line 70 of
/usr/src/usr.sbin/bind/Makefile.bsd-wrapper).
*** Error code 1
Stop in /usr/src/usr.sbin (line 48 of /usr/share/mk/bsd.subdir.mk).
*** Error code 1
Stop in /usr/src (line 48 of /usr/share/mk/bsd.subdir.mk).
*** Error code 1
Stop in /usr/src (line 73 of Makefile).
on line 70 /usr/src/usr.sbin/bind/Makefile.bsd-wrapper would be;
66: config.status:
67:PATH=/bin:/usr/bin:/sbin:/usr/sbin \
68:${XCFLAGS} \
69:INSTALL_PROGRAM=${INSTALL} ${INSTALL_COPY}
${INSTALL_STRIP} \
70:sh ${.CURDIR}/configure ${CONFIGURE_OPTS}
Any suggestions is much appreciated.
Thanks,
Insan
--
insandotpraja(at)gmaildotcom
--
insandotpraja(at)gmaildotcom
Re: Segmentation fault (Core dumped) when Make Build
On Wed, 11 Feb 2009 18:57:19 +0700, Nick Holland n...@holland-consulting.net wrote: Insan Praja SW wrote: On Wed, 11 Feb 2009 15:59:23 +0700, Alexander Yurchenko gra...@disorder.ru wrote: do a binary update from the snapshot using bsd.rd first. then try to make build. Well of course, my usual step on upgrading my experiment boxes would be: 1. get latest source. cd /usr/src cvs -danon...@anoncvs1.ca.openbsd.org:/cvs -q up -Pd 2. compile new kernel config GENERIC ../compile/GENERIC make clean make depend make make install 3. Sometimes I rebooted the machine or straight to; cd /usr/src rm -rf /usr/obj* make obj cd /usr/src/etc env DESTDIR=/ make distrib-dirs cd /usr/src make build Just like in the FAQ. That's not what the FAQ says...it says START FROM THE MOST RECENT SNAPSHOT. (5.3.2) Upgrading from source is NOT supported. Upgrading from source is NOT supported. Upgrading from source is NOT supported. Upgrading from source is NOT supported. Upgrading from source is NOT supported. Upgrading from source is NOT supported. Nick. True. Thanks. On Wed, Feb 11, 2009 at 02:09:15PM +0700, Insan Praja SW wrote: Hi Guys, When upgrading my OBSD 4.5-beta machine, I got ^ BZZZT. Try again. -- insandotpraja(at)gmaildotcom
Re: Segmentation fault (Core dumped) when Make Build
On Wed, 11 Feb 2009 23:29:31 +0700, Ingo Schwarze schwa...@usta.de wrote: Hi Insan, Insan Praja SW wroto on Wed, Feb 11, 2009 at 02:09:15PM +0700: When upgrading my OBSD 4.5-beta machine, I got === usr.sbin/bind PATH=/bin:/usr/bin:/sbin:/usr/sbin CC=cc CFLAGS=-O2 -pipe LDFLAGS= INSTALL_PROGRAM=install -c -s sh /usr/src/usr.sbin/bind/configure --prefix=/usr --localstatedir=/var --sysconfdir=/etc --disable-shared --disable-threads --disable-openssl-version-check Segmentation fault (core dumped) I bet you missed http://www.openbsd.org/cgi-bin/cvsweb/src/bin/ksh/c_ksh.c#rev1.33 To confirm, type $ /bin/ksh $ set -o posix $ echo and show me the output. To fix that, type $ cd /usr/src/bin/ksh $ cvs up -dP $ make clean $ make obj $ make depend $ make $ sudo make install and start over building bind. Nick is right, building from source is not supported, but that's no reason not to tell you. ;-) Sorry for the inconvenience, Ingo Thanks Ingo and people at m...@. Before asking anything to the list, I prepare for inputs. I'm subcribe to the list, I respect their stand point, love their jokes and enjoyed the flame wars :P. And you're right, just because building from the source is not supported, it doesn't mean I can't ask and people can't tell me. I'm just a nOOb and in love with -current :). Best Regards, Insan -- insandotpraja(at)gmaildotcom
Re: Segmentation fault (Core dumped) when Make Build
On Wed, 11 Feb 2009 23:29:31 +0700, Ingo Schwarze schwa...@usta.de wrote: Hi Insan, Insan Praja SW wroto on Wed, Feb 11, 2009 at 02:09:15PM +0700: When upgrading my OBSD 4.5-beta machine, I got === usr.sbin/bind PATH=/bin:/usr/bin:/sbin:/usr/sbin CC=cc CFLAGS=-O2 -pipe LDFLAGS= INSTALL_PROGRAM=install -c -s sh /usr/src/usr.sbin/bind/configure --prefix=/usr --localstatedir=/var --sysconfdir=/etc --disable-shared --disable-threads --disable-openssl-version-check Segmentation fault (core dumped) I bet you missed http://www.openbsd.org/cgi-bin/cvsweb/src/bin/ksh/c_ksh.c#rev1.33 To confirm, type $ /bin/ksh $ set -o posix $ echo and show me the output. $ /bin/ksh $ set -o posix $ echo Segmentation fault (core dumped) To fix that, type $ cd /usr/src/bin/ksh $ cvs up -dP $ make clean $ make obj $ make depend $ make $ sudo make install and start over building bind. $ sudo cvs -danon...@anoncvs1.ca.openbsd.org:/cvs up -dP Password: cvs server: Updating . cvs server: Updating tests Nick is right, building from source is not supported, but that's no reason not to tell you. ;-) Sorry for the inconvenience, Ingo --snip-- cd /usr/src/share/man exec make makedb /usr/libexec/makewhatis /usr/share/man And it works! Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: Openbsd 4.4 and openbgp current problems
On Tue, 10 Feb 2009 17:39:50 +0700, Esa Kuusisto esa.kuusi...@gmail.com wrote: Hi I have samekind of panic problems with two different openbgp routers. All I get panic: rtfree 2 before dump. I was searching if someone else have samekind of problem via google and you're only one. My only question is that did you get any solution for the problem? Best Regards -Esa Kuusisto Hi, I already send my PR, I haven't found any solution for this problem. On S3200 it panicked, on S3000AH it went freeze. Thanks, -- insandotpraja(at)gmaildotcom
Segmentation fault (Core dumped) when Make Build
Hi Guys,
When upgrading my OBSD 4.5-beta machine, I got
=== usr.sbin/bind
PATH=/bin:/usr/bin:/sbin:/usr/sbin CC=cc CFLAGS=-O2 -pipe
LDFLAGS= INSTALL_PROGRAM=install -c -s sh
/usr/src/usr.sbin/bind/configure --prefix=/usr --localstatedir=/var
--sysconfdir=/etc --disable-shared --disable-threads
--disable-openssl-version-check
Segmentation fault (core dumped)
*** Error code 139
Stop in /usr/src/usr.sbin/bind (line 70 of
/usr/src/usr.sbin/bind/Makefile.bsd-wrapper).
*** Error code 1
Stop in /usr/src/usr.sbin (line 48 of /usr/share/mk/bsd.subdir.mk).
*** Error code 1
Stop in /usr/src (line 48 of /usr/share/mk/bsd.subdir.mk).
*** Error code 1
Stop in /usr/src (line 73 of Makefile).
on line 70 /usr/src/usr.sbin/bind/Makefile.bsd-wrapper would be;
66: config.status:
67:PATH=/bin:/usr/bin:/sbin:/usr/sbin \
68:${XCFLAGS} \
69:INSTALL_PROGRAM=${INSTALL} ${INSTALL_COPY} ${INSTALL_STRIP} \
70:sh ${.CURDIR}/configure ${CONFIGURE_OPTS}
Any suggestions is much appreciated.
Thanks,
Insan
--
insandotpraja(at)gmaildotcom
Segmentation fault (Core dumped) when Make Build
Hi Misc, Forgot to include the dmesg; OpenBSD 4.5-beta (GENERIC) #61: Wed Feb 11 13:33:23 WIT 2009 r...@greenbridgevpn.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error dfixed_disk,invalid_time cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz (GenuineIntel 686-class) 3 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR real mem = 2143842304 (2044MB) avail mem = 206478 (1969MB) RTC BIOS diagnostic error dfixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @ 0x7fdfd000 (63 entries) bios0: vendor Intel Corporation version S3200X38.86B.00.00.0045.082820081329 date 08/28/2008 bios0: Intel Corporation S3210SH acpi0 at bios0: rev 2 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ DMAR acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1) PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 332MHz cpu at mainbus0: not configured ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 5 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (NPE1) acpiprt2 at acpi0: bus -1 (NPE6) acpiprt3 at acpi0: bus 3 (P32_) acpiprt4 at acpi0: bus 1 (PEX0) acpiprt5 at acpi0: bus -1 (PEX1) acpiprt6 at acpi0: bus -1 (PEX2) acpiprt7 at acpi0: bus -1 (PEX3) acpiprt8 at acpi0: bus 2 (PEX4) acpiprt9 at acpi0: bus -1 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2000 MHz acpibtn0 at acpi0: SLPB acpibtn1 at acpi0: PWRB bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000 ipmi at mainbus0 not configured pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 3200/3210 Host rev 0x00 em0 at pci0 dev 25 function 0 Intel ICH9 IGP AMT rev 0x02: apic 5 int 20 (irq 11), address 00:15:17:28:2a:d3 uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x02: apic 5 int 18 (irq 9) uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x02: apic 5 int 21 (irq 10) ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x02: apic 5 int 17 (irq 10) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb0 at pci0 dev 28 function 0 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci1 at ppb0 bus 1 em1 at pci1 dev 0 function 0 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 16 (irq 11), address 00:15:17:86:53:14 em2 at pci1 dev 0 function 1 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 17 (irq 10), address 00:15:17:86:53:15 ppb1 at pci0 dev 28 function 4 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci2 at ppb1 bus 2 vga1 at pci2 dev 0 function 0 Matrox MGA G200e (ServerEngines) rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci2 at pci0 dev 29 function 0 Intel 82801I USB rev 0x02: apic 5 int 23 (irq 11) uhci3 at pci0 dev 29 function 1 Intel 82801I USB rev 0x02: apic 5 int 19 (irq 11) uhci4 at pci0 dev 29 function 2 Intel 82801I USB rev 0x02: apic 5 int 18 (irq 9) ehci1 at pci0 dev 29 function 7 Intel 82801I USB rev 0x02: apic 5 int 23 (irq 11) usb1 at ehci1: USB revision 2.0 uhub1 at usb1 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb2 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0x92 pci3 at ppb2 bus 3 skc0 at pci3 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): apic 5 int 16 (irq 11) sk0 at skc0 port A: address 00:1c:f0:0f:4d:05 eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5 skc1 at pci3 dev 1 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): apic 5 int 17 (irq 10) sk1 at skc1 port A: address 00:1c:f0:d1:a3:5d eephy1 at sk1 phy 0: 88E1011 Gigabit PHY, rev. 5 em3 at pci3 dev 2 function 0 Intel PRO/1000MT (82541GI) rev 0x05: apic 5 int 18 (irq 9), address 00:15:17:28:2a:d1 ichpcib0 at pci0 dev 31 function 0 Intel 82801IR LPC rev 0x02: PM disabled pciide0 at pci0 dev 31 function 2 Intel 82801I SATA rev 0x02: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide0: using apic 5 int 21 (irq 10) for native-PCI interrupt wd0 at pciide0 channel 0 drive 0: MAXTOR STM380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801I SMBus rev 0x02: apic 5 int 18 (irq 9) iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 spdmem1 at iic0 addr 0x52: 1GB DDR2 SDRAM non-parity PC2-5300CL5 pciide1 at pci0 dev 31 function 5 Intel
Re: panic: rtfree 2
On Wed, 14 Jan 2009 06:11:56 +0700, Claudio Jeker cje...@diehard.n-r-g.com wrote: On Tue, Jan 13, 2009 at 01:43:09PM +0700, Insan Praja wrote: Hi Misc@, On Tue, Jan 13, 2009 at 6:32 AM, Claudio Jeker cje...@diehard.n-r-g.com wrote: On Tue, Jan 13, 2009 at 05:49:00AM +0700, Insan Praja SW wrote: Hi Misc@, So I tried to move the cable (and configs) to other interfaces. Unplugging the cable will reproduce the problem. So IMHO it must be something in bgpd or something in kernel that manages routes. Thanks, Could you please send me the output of netstat -Arn just before you produce the panic. Hopefully this gives me the hint what goes wrong. It's a lot of output (full routes), but I could cut some of the first output I would need the full output but I just saw your PR and there you mention multiple routing tables. Did you try without multiple tables? Is bgp writing to an alternate table? I see if I can reproduce it. Bgpd use rtable 0. I use multiple routing table to produce VRF/VPN-like network on my routers. I got rtable 1 and rtable 2. I haven't tested this with single table. A full netstat -Arn output would be a 62.5Mb files, a don't think it would pass the mailer. Here's a link http://www.4shared.com/file/80547753/5bb42570/netstat.html for downloading link. Thanks, Insan -- insandotpraja(at)gmaildotcom
panic: rtfree 2
Hi Misc@, recently installed a i386-current from january 11th 2009, on an intel s3210SH serverboard. I run pf, bgpd, snmpd and ntpd. When I accidentally unplugged em0, somehow it went panic and said panic: rtfree 2. I entered ddb and run a trace with the following result: ddb trace Debugger(d39d1c58,d2ab5300,4,e1bc0cfc,d39d1c00) at Debbugger+0x4 panic(d06f5e16,d39d1c78,d2ab5300,0,0) at panic+0x55 rtfree(e1bc0cfc,30,0,d2ab5300) at rtfree+0xbd route_output(d9898000,d9783c70,0,df75fd50,d0202dd5) at route_output+0x341 raw_usrreq(d9783c70,9,d9898000,0,0) at raw_usrreq+0xf2 route_usrreq(d9783c70,9,d9898000,0,0) at route_usrreq+0xe8 sosend(d9783c70,0,df75fea8,d9898000,0) at sosend+0x357 soo_write(d977f424,d977f440,df75fea8,d992c000) at soo_write+0x1c dofilewritev(d990ada0,6,d997f424,cfbecfc0,5) at dofilewritev+0xeb sys_writev(d990ada0,df75ff68,df75ff58,cfbecfc0,d990ada0) at sys_writev+0x47 syscall() at syscall+0x24e --- syscall (number 121) --- 0x74ba3d5 ddb I did run ps and notice some particular things (I'm too exhausted to retype everything from the picture): PID PPIDPGRPUID S FLAGS WAITCOMMAND 67906286628675 3 0x180 pollbgpd 73896286628675 2 0x100 bgpd *6286 1 62860 7 0 bgpd Of course, it's not happen if bgpd is not running and I consciusly ifconfig-ed em0 to down. But, if I keep bgpd running and ifconfig-ed em0 to down, nothing happen until I ifconfig-ed em0 to up, it went panic with the same messages. I hope this could helps all of us. Thanks a lot for everything, I hope I could help more. I also sendbug-ed the messages. Below is the dmesg. OpenBSD 4.4-current (GENERIC) #1: Sun Jan 11 23:23:00 WIT 2009 r...@greenbridge.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error dfixed_disk,invalid_time cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz (GenuineIntel 686-class) 3 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR real mem = 2143842304 (2044MB) avail mem = 2064748544 (1969MB) RTC BIOS diagnostic error dfixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @ 0x7fdfd000 (63 entries) bios0: vendor Intel Corporation version S3200X38.86B.00.00.0045.082820081329 date 08/28/2008 bios0: Intel Corporation S3210SH acpi0 at bios0: rev 2 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ DMAR acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1) PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4( S5) PEX5(S5) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 332MHz cpu at mainbus0: not configured ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 5 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (NPE1) acpiprt2 at acpi0: bus -1 (NPE6) acpiprt3 at acpi0: bus 3 (P32_) acpiprt4 at acpi0: bus 1 (PEX0) acpiprt5 at acpi0: bus -1 (PEX1) acpiprt6 at acpi0: bus -1 (PEX2) acpiprt7 at acpi0: bus -1 (PEX3) acpiprt8 at acpi0: bus 2 (PEX4) acpiprt9 at acpi0: bus -1 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2000 MHz acpibtn0 at acpi0: SLPB acpibtn1 at acpi0: PWRB bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000 ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 3200/3210 Host rev 0x00 em0 at pci0 dev 25 function 0 Intel ICH9 IGP AMT rev 0x02: apic 5 int 20 (irq 11), address 00:15:17:28:2a:d3 uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x02: apic 5 int 18 (irq 9) uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x02: apic 5 int 21 (irq 10) ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x02: apic 5 int 17 (irq 10) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb0 at pci0 dev 28 function 0 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci1 at ppb0 bus 1 em1 at pci1 dev 0 function 0 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 16 (irq 11), address 00:15:17:86:53:14 em2 at pci1 dev 0 function 1 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 17 (irq 10), address 00:15:17:86:53:15 ppb1 at pci0 dev 28 function 4 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci2 at ppb1 bus 2 vga1 at pci2 dev 0 function 0 Matrox MGA G200e (ServerEngines) rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci2 at pci0 dev 29 function 0 Intel
Re: panic: rtfree 2
Hi Misc@, So I tried to move the cable (and configs) to other interfaces. Unplugging the cable will reproduce the problem. So IMHO it must be something in bgpd or something in kernel that manages routes. Thanks, Insan Hi Misc@, recently installed a i386-current from january 11th 2009, on an intel s3210SH serverboard. I run pf, bgpd, snmpd and ntpd. When I accidentally unplugged em0, somehow it went panic and said panic: rtfree 2. I entered ddb and run a trace with the following result: ddb trace Debugger(d39d1c58,d2ab5300,4,e1bc0cfc,d39d1c00) at Debbugger+0x4 panic(d06f5e16,d39d1c78,d2ab5300,0,0) at panic+0x55 rtfree(e1bc0cfc,30,0,d2ab5300) at rtfree+0xbd route_output(d9898000,d9783c70,0,df75fd50,d0202dd5) at route_output+0x341 raw_usrreq(d9783c70,9,d9898000,0,0) at raw_usrreq+0xf2 route_usrreq(d9783c70,9,d9898000,0,0) at route_usrreq+0xe8 sosend(d9783c70,0,df75fea8,d9898000,0) at sosend+0x357 soo_write(d977f424,d977f440,df75fea8,d992c000) at soo_write+0x1c dofilewritev(d990ada0,6,d997f424,cfbecfc0,5) at dofilewritev+0xeb sys_writev(d990ada0,df75ff68,df75ff58,cfbecfc0,d990ada0) at sys_writev+0x47 syscall() at syscall+0x24e --- syscall (number 121) --- 0x74ba3d5 ddb I did run ps and notice some particular things (I'm too exhausted to retype everything from the picture): PID PPIDPGRPUID S FLAGS WAITCOMMAND 67906286628675 3 0x180 pollbgpd 73896286628675 2 0x100 bgpd *6286 1 62860 7 0 bgpd Of course, it's not happen if bgpd is not running and I consciusly ifconfig-ed em0 to down. But, if I keep bgpd running and ifconfig-ed em0 to down, nothing happen until I ifconfig-ed em0 to up, it went panic with the same messages. I hope this could helps all of us. Thanks a lot for everything, I hope I could help more. I also sendbug-ed the messages. Below is the dmesg. OpenBSD 4.4-current (GENERIC) #1: Sun Jan 11 23:23:00 WIT 2009 r...@greenbridge.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error dfixed_disk,invalid_time cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz (GenuineIntel 686-class) 3 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR real mem = 2143842304 (2044MB) avail mem = 2064748544 (1969MB) RTC BIOS diagnostic error dfixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @ 0x7fdfd000 (63 entries) bios0: vendor Intel Corporation version S3200X38.86B.00.00.0045.082820081329 date 08/28/2008 bios0: Intel Corporation S3210SH acpi0 at bios0: rev 2 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ DMAR acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1) PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4( S5) PEX5(S5) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 332MHz cpu at mainbus0: not configured ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 5 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (NPE1) acpiprt2 at acpi0: bus -1 (NPE6) acpiprt3 at acpi0: bus 3 (P32_) acpiprt4 at acpi0: bus 1 (PEX0) acpiprt5 at acpi0: bus -1 (PEX1) acpiprt6 at acpi0: bus -1 (PEX2) acpiprt7 at acpi0: bus -1 (PEX3) acpiprt8 at acpi0: bus 2 (PEX4) acpiprt9 at acpi0: bus -1 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2000 MHz acpibtn0 at acpi0: SLPB acpibtn1 at acpi0: PWRB bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000 ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 3200/3210 Host rev 0x00 em0 at pci0 dev 25 function 0 Intel ICH9 IGP AMT rev 0x02: apic 5 int 20 (irq 11), address 00:15:17:28:2a:d3 uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x02: apic 5 int 18 (irq 9) uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x02: apic 5 int 21 (irq 10) ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x02: apic 5 int 17 (irq 10) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb0 at pci0 dev 28 function 0 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci1 at ppb0 bus 1 em1 at pci1 dev 0 function 0 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 16 (irq 11), address 00:15:17:86:53:14 em2 at pci1 dev 0 function 1 Intel PRO/1000 PT (82571EB) rev 0x06: apic 5 int 17 (irq 10), address 00:15:17:86:53:15 ppb1 at pci0 dev 28 function 4 Intel 82801I PCIE rev 0x02: apic 5 int 17 (irq 11) pci2 at ppb1 bus 2 vga1 at pci2 dev 0
Re: Changing IRQ setting from console/userland
On Tue, 06 Jan 2009 18:07:12 +0700, Stuart Henderson s...@spacehopper.org wrote: On 2009-01-06, Insan Praja SW insan.pr...@gmail.com wrote: On Mon, 05 Jan 2009 23:53:01 +0700, Philip Guenther guent...@gmail.com wrote: On Mon, Jan 5, 2009 at 12:48 AM, Insan Praja SW insan.pr...@gmail.com wrote: ... I always got a; ping: sendto: No buffer space available ping: wrote 202.abc.de.fgh 64 chars, ret=-1 To quote a message on this list from Claudio Jeker: I think I mentionened this already a few times but I'll do it again. sendto: No buffer space available means an ENOBUF error was returned. On modern systems ENOBUF is almost only generated by the interfaces and their queues (e.g. if you enable a too restrictive altq limit). So if you have altq enabled I would look at the pfctl -sq -vv output. I do have restrictive altq limit, using upperlimit, since this client should not be over 22Mbps. At first, I put it at child queue, now I move them to parent queue (interface). It began to show some noise reduction. When the queue is full, you get this error. On the interface SNMP statistic, it's still below 22Mbps. Weird. Maybe because it's burstyness? A quick examination of the if_sk code shows that many of the ENOBUFS return cases also write something to the dmesg/syslog. Does dmesg show any messages after the 'root on' line? No, nothing on dmesg. sk0 shares the same irq as uhci, which is nothing attached to them. Our plan is to disable/change setting for usb config from BIOS. But We really need to gather more info on this. Any hints and suggestion will be appreciated. PCI, unlike ISA, works just fine with shared interrupts. Do you have a specific reason to suspect the source of the problem is the sharing of interrupts? Actually this suspicion came from an old thread on a milis, which I gather from google. AFAIK, sk devices don't have interrupt mitigation, unlike em devices. http://www.mail-archive.com/misc@openbsd.org/msg05854.html I got to admit, I was wrong about these cards capabilities. I'm going to install INTEL EXPI9402PT, dual ports PCI-express NIC with Intel. 82572GI Gigabit Controller just to see where the problem is. Anyone knows if this one support interrupt mitigation? Best Regards, Insan -- insandotpraja(at)gmaildotcom
Changing IRQ setting from console/userland
Hi Misc@, is there anything on man (8) how to set irq allocation for certain devices like NICs? I tried apropos but I can't find userland application on base to change this. Thanks, Insan, -- insandotpraja(at)gmaildotcom
Re: Changing IRQ setting from console/userland
On Mon, 05 Jan 2009 15:29:01 +0700, Otto Moerbeek o...@drijf.net wrote: On Mon, Jan 05, 2009 at 03:03:47PM +0700, Insan Praja SW wrote: Hi Misc@, is there anything on man (8) how to set irq allocation for certain devices like NICs? I tried apropos but I can't find userland application on base to change this. Thanks, In general allocating IRQs is a kernel thing and not something you want to tweak. What problem are you trying to solve? -Otto I always got a; ping: sendto: No buffer space available ping: wrote 202.abc.de.fgh 64 chars, ret=-1 which is on sk0 and I notice; ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:25:0a:9d uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 ste0 at pci5 dev 4 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:84 ste1 at pci5 dev 5 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:85 ste2 at pci5 dev 6 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:86 ste3 at pci5 dev 7 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:87 radeondrm0 at vga1: irq 11 em1 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:25:0a:9e pciide1: using irq 10 for native-PCI interrupt ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0: using irq 1 for kbd slot fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:25:0a:9d uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 ste0 at pci5 dev 4 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:84 ste1 at pci5 dev 5 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:85 ste2 at pci5 dev 6 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:86 ste3 at pci5 dev 7 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:87 radeondrm0 at vga1: irq 11 em1 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:25:0a:9e pciide1: using irq 10 for native-PCI interrupt ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0: using irq 1 for kbd slot fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 sk0 shares the same irq as uhci, which is nothing attached to them. Our plan is to disable/change setting for usb config from BIOS. But We really need to gather more info on this. Any hints and suggestion will be appreciated. Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: Changing IRQ setting from console/userland
On Mon, 05 Jan 2009 15:29:01 +0700, Otto Moerbeek o...@drijf.net wrote: On Mon, Jan 05, 2009 at 03:03:47PM +0700, Insan Praja SW wrote: Hi Misc@, is there anything on man (8) how to set irq allocation for certain devices like NICs? I tried apropos but I can't find userland application on base to change this. Thanks, In general allocating IRQs is a kernel thing and not something you want to tweak. What problem are you trying to solve? -Otto The dmesg: OpenBSD 4.4-current (GENERIC) #55: Thu Dec 25 00:00:31 WIT 2008 r...@greenservicerouter.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error efixed_disk,invalid_time cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,TM2,CNXT-ID,CX16,xTPR real mem = 2142744576 (2043MB) avail mem = 2063761408 (1968MB) RTC BIOS diagnostic error efixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x7fbe4000 (43 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0051.091720081311 date 09/17/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT HPET MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL( S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1000 0xca000/0x1000 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:25:0a:9d Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1b:11:10:07:26 eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5 ppb4 at pci4 dev 1 function 0 Intel S21152BB PCI-PCI rev 0x00 pci5 at ppb4 bus 5 ste0 at pci5 dev 4 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:84 ukphy0 at ste0 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste1 at pci5 dev 5 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:85 ukphy1 at ste1 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste2 at pci5 dev 6 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:86 ukphy2 at ste2 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste3 at pci5 dev 7 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:87 ukphy3 at ste3 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1: irq 11 drm0 at radeondrm0 em1 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:25:0a:9e ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configur ed to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt
Re: Changing IRQ setting from console/userland
On Mon, 05 Jan 2009 23:53:01 +0700, Philip Guenther guent...@gmail.com wrote: On Mon, Jan 5, 2009 at 12:48 AM, Insan Praja SW insan.pr...@gmail.com wrote: ... I always got a; ping: sendto: No buffer space available ping: wrote 202.abc.de.fgh 64 chars, ret=-1 To quote a message on this list from Claudio Jeker: I think I mentionened this already a few times but I'll do it again. sendto: No buffer space available means an ENOBUF error was returned. On modern systems ENOBUF is almost only generated by the interfaces and their queues (e.g. if you enable a too restrictive altq limit). So if you have altq enabled I would look at the pfctl -sq -vv output. I do have restrictive altq limit, using upperlimit, since this client should not be over 22Mbps. At first, I put it at child queue, now I move them to parent queue (interface). It began to show some noise reduction. A quick examination of the if_sk code shows that many of the ENOBUFS return cases also write something to the dmesg/syslog. Does dmesg show any messages after the 'root on' line? No, nothing on dmesg. sk0 shares the same irq as uhci, which is nothing attached to them. Our plan is to disable/change setting for usb config from BIOS. But We really need to gather more info on this. Any hints and suggestion will be appreciated. PCI, unlike ISA, works just fine with shared interrupts. Do you have a specific reason to suspect the source of the problem is the sharing of interrupts? Actually this suspicion came from an old thread on a milis, which I gather from google. AFAIK, sk devices don't have interrupt mitigation, unlike em devices. Philip Guenther Thanks, Insan -- insandotpraja(at)gmaildotcom
OpenBSD 4.4-current Panic when adjacent Switch is rebooted
Hi misc@, on recent kernel, my OpenBSD Bridge/Router seems to get panic when its adjacent switch is rebooted. The switch is Cisco 3550-12T. I need to change it's MTU which required the ciscoz reloaded. Cisco bridge protocol is spanning-tree mode rapid-pvst The OBSD machine it self is acting as BGP router, PF enabled, and bridge. Any inputs would be appreciated. panic: rtfree 2 Stopped at Debugger+0x4: leave RUN AT LEAST 'trace' AND 'ps' AND INCLUDE OUTPUT WHEN REPORTING THIS PANIC! DO NOT EVEN BOTHER REPORTING THIS WITHOUT INCLUDING THAT INFORMATION! ddbPID PPID PGRPUID S FLAGS WAIT COMMAND 29700 1 29700 0 3 0x4082 ttyin getty 9888 1 9888 0 3 0x4080 ttyin getty 17609 1 17609 0 3 0x40180 selectsendmail 7221 1 1 0 3 0x4080 ttyopngetty 3370 1 3370 0 3 0x4082 ttyin getty 29197 1 29197 0 3 0x4082 ttyin getty 4362 1 4362 0 3 0x4082 ttyin getty 13554 1 13554 0 3 0x4082 ttyin getty 10632 1 10632 0 30x80 selectcron 22677 1 22677 32767 3 0x180 nanosleep expiretable 18268 1 18268 0 30x80 selectsshd 22611 1 22611 0 3 0x180 selectinetd 31938 15025 15025 75 3 0x180 poll bgpd 12368 15025 15025 75 2 0x100bgpd *15025 1 15025 0 7 0bgpd 8440 31901 31901 91 3 0x180 kqreadsnmpd 31901 1 31901 0 30x80 kqreadsnmpd 14442 29981 4836 83 3 0x180 poll ntpd 29981 4836 4836 83 3 0x180 poll ntpd 4836 1 4836 0 30x80 poll ntpd 12379 17834 17834 74 3 0x180 bpf pflogd 17834 1 17834 0 30x80 netio pflogd 26460 15000 15000 73 3 0x180 poll syslogd 15000 1 15000 0 30x88 netio syslogd 18 0 0 0 30x100200 bored crypto 17 0 0 0 30x100200 aiodoned aiodoned 16 0 0 0 30x100200 syncerupdate 15 0 0 0 30x100200 cleaner cleaner 14 0 0 0 30x100200 reaperreaper 13 0 0 0 30x100200 pgdaemon pagedaemon 12 0 0 0 30x100200 pftm pfpurge 11 0 0 0 30x100200 usbevtusb4 10 0 0 0 30x100200 usbevtusb3 9 0 0 0 30x100200 usbevtusb2 8 0 0 0 30x100200 usbevtusb1 7 0 0 0 30x100200 usbtskusbtask 6 0 0 0 30x100200 usbevtusb0 5 0 0 0 30x100200 acpi_idle acpi0 4 0 0 0 30x100200 bored syswq 3 0 0 0 30x100200idle0 2 0 0 0 30x100200 kmalloc kmthread 1 0 1 0 3 0x4080 wait init 0 -1 0 0 3 0x80200 scheduler swapper ddb Debugger(d25ce158,d1ac3300,4,ddb0a828,d25ce100) at Debugger+0x4 panic(d06eac16,d25ce178,d1ac3300,0,0) at panic+0x55 rtfree(ddb0a828,30,0,d1ac3300) at rtfree+0xbd route_output(dde38d00,d77c2e18,0,dd211d50,d0202235) at route_output+0x341 raw_usrreq(d77c2e18,9,dde38d00,0,0) at raw_usrreq+0xf2 route_usrreq(d77c2e18,9,dde38d00,0,0) at route_usrreq+0xe8 sosend(d77c2e18,0,dd211ea8,dde38d00,0) at sosend+0x357 soo_write(d77be4d4,d77be4f0,dd211ea8,d7963000) at soo_write+0x1c dofilewritev(d789c98c,6,d77be4d4,cfbfb680,4) at dofilewritev+0xeb sys_writev(d789c98c,dd211f68,dd211f58,cfbfb680,d789c98c) at sys_writev+0x47 syscall() at syscall+0x24e --- syscall (number 121) --- 0xd9703d1: OpenBSD 4.4-current (GENERIC) #52: Thu Dec 18 22:46:20 WIT 2008 r...@border-lf.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069002752 (1019MB) avail mem = 1025409024 (977MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x3fbe4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0048.042920081306 date 04/29/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ
Re: PANIC on latest source
On Tue, 02 Dec 2008 11:17:42 +0700, David Gwynne [EMAIL PROTECTED] wrote: Hi, Here the dmesg attach after compiling the source. It works just fine but I can't change em(4) MTU over 1600. $ sudo ifconfig em0 mtu 1514 ifconfig: SIOCSIFMTU: Invalid argument $ sudo ifconfig re0 mtu 1600 Thanks, Insan OpenBSD 4.4-current (GENERIC) #0: Wed Dec 3 01:22:28 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error 9fixed_disk cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 2142744576 (2043MB) avail mem = 2063687680 (1968MB) RTC BIOS diagnostic error 9fixed_disk mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x7fbe4000 (43 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0051.091720081311 date 09/17/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT HPET MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL( S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:39:1c:bc Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 re0 at pci4 dev 0 function 0 Realtek 8169 rev 0x10: RTL8169S (0x0400), irq 11, address 00:13:f7:55:00:b7 rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 0 fxp0 at pci4 dev 1 function 0 Intel 8255x rev 0x08, i82559: irq 11, address 00:02:55:64:99:a8 inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 4 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1 drm0 at radeondrm0 em1 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:39:1c:bd ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configur ed to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 spdmem1 at iic0 addr 0x52: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at
Re: PANIC on latest source
On Tue, 02 Dec 2008 11:17:42 +0700, David Gwynne [EMAIL PROTECTED] wrote:
hi,
can you please try this diff and see if it solves your panics?
Hi David and Misc@,
I already use the rev1.199 source code which back out the 1.197 source
code. But I'm going to give it a try on a non-production machine with
identical h/w.
Thanks,
Index: if_em.c
===
RCS file: /cvs/src/sys/dev/pci/if_em.c,v
retrieving revision 1.199
diff -u -p -r1.199 if_em.c
--- if_em.c 29 Nov 2008 10:23:29 - 1.199
+++ if_em.c 2 Dec 2008 02:36:08 -
@@ -31,7 +31,7 @@ POSSIBILITY OF SUCH DAMAGE.
***/
-/* $OpenBSD: if_em.c,v 1.199 2008/11/29 10:23:29 sthen Exp $ */
+/* $OpenBSD: if_em.c,v 1.197 2008/11/26 00:14:48 dlg Exp $ */
/* $FreeBSD: if_em.c,v 1.46 2004/09/29 18:28:28 mlaier Exp $ */
#include dev/pci/if_em.h
@@ -164,6 +164,12 @@ void em_update_stats_counters(struct em_
void em_txeof(struct em_softc *);
int em_allocate_receive_structures(struct em_softc *);
int em_allocate_transmit_structures(struct em_softc *);
+#ifdef __STRICT_ALIGNMENT
+void em_realign(struct em_softc *, struct mbuf *, u_int16_t *);
+#else
+#define em_realign(a, b, c) /* a, b, c */
+#endif
+int em_rxfill(struct em_softc *);
void em_rxeof(struct em_softc *, int);
void em_receive_checksum(struct em_softc *, struct em_rx_desc *,
struct mbuf *);
@@ -798,6 +804,11 @@ em_intr(void *arg)
if (ifp-if_flags IFF_RUNNING) {
em_rxeof(sc, -1);
+ if (em_rxfill(sc)) {
+ /* Advance the Rx Queue #0 Tail Pointer. */
+ E1000_WRITE_REG(sc-hw, RDT,
+ sc-last_rx_desc_filled);
+ }
em_txeof(sc);
}
@@ -1448,15 +1459,15 @@ em_stop(void *arg)
struct em_softc *sc = arg;
ifp = sc-interface_data.ac_if;
+ /* Tell the stack that the interface is no longer active */
+ ifp-if_flags = ~(IFF_RUNNING | IFF_OACTIVE);
+
INIT_DEBUGOUT(em_stop: begin);
em_disable_intr(sc);
em_reset_hw(sc-hw);
timeout_del(sc-timer_handle);
timeout_del(sc-tx_fifo_timer_handle);
- /* Tell the stack that the interface is no longer active */
- ifp-if_flags = ~(IFF_RUNNING | IFF_OACTIVE);
-
em_free_transmit_structures(sc);
em_free_receive_structures(sc);
}
@@ -2287,51 +2298,54 @@ int
em_get_buf(struct em_softc *sc, int i)
{
struct mbuf*m;
- bus_dmamap_tmap;
- struct em_buffer *rx_buffer;
+ struct em_buffer *pkt;
+ struct em_rx_desc *desc;
int error;
+ pkt = sc-rx_buffer_area[i];
+ desc = sc-rx_desc_base[i];
+
+ if (pkt-m_head != NULL) {
+ printf(%s: em_get_buf: slot %d already has an mbuf\n,
+ sc-sc_dv.dv_xname, i);
+ return (ENOBUFS);
+ }
+
MGETHDR(m, M_DONTWAIT, MT_DATA);
if (m == NULL) {
sc-mbuf_alloc_failed++;
return (ENOBUFS);
}
- MCLGET(m, M_DONTWAIT);
+ MCLGETI(m, M_DONTWAIT, sc-interface_data.ac_if, MCLBYTES);
if ((m-m_flags M_EXT) == 0) {
m_freem(m);
sc-mbuf_cluster_failed++;
return (ENOBUFS);
}
m-m_len = m-m_pkthdr.len = MCLBYTES;
-
if (sc-hw.max_frame_size = (MCLBYTES - ETHER_ALIGN))
m_adj(m, ETHER_ALIGN);
- /*
-* Using memory from the mbuf cluster pool, invoke the
-* bus_dma machinery to arrange the memory mapping.
-*/
- error = bus_dmamap_load_mbuf(sc-rxtag, sc-rx_sparemap,
- m, BUS_DMA_NOWAIT);
+ error = bus_dmamap_load_mbuf(sc-rxtag, pkt-map, m, BUS_DMA_NOWAIT);
if (error) {
m_freem(m);
return (error);
}
- rx_buffer = sc-rx_buffer_area[i];
- if (rx_buffer-m_head != NULL)
- bus_dmamap_unload(sc-rxtag, rx_buffer-map);
+ bus_dmamap_sync(sc-rxtag, pkt-map, 0, pkt-map-dm_mapsize,
+ BUS_DMASYNC_PREREAD);
+ pkt-m_head = m;
- map = rx_buffer-map;
- rx_buffer-map = sc-rx_sparemap;
- sc-rx_sparemap = map;
+ bus_dmamap_sync(sc-rxdma.dma_tag, sc-rxdma.dma_map,
+ sizeof(*desc) * i, sizeof(*desc), BUS_DMASYNC_POSTWRITE);
- bus_dmamap_sync(sc-rxtag, rx_buffer-map, 0,
- rx_buffer-map-dm_mapsize, BUS_DMASYNC_PREREAD);
+ bzero(desc, sizeof(*desc));
+ desc-buffer_addr = htole64(pkt-map-dm_segs[0].ds_addr);
- rx_buffer-m_head = m;
+ bus_dmamap_sync(sc-rxdma.dma_tag, sc-rxdma.dma_map,
+ sizeof(*desc) * i, sizeof(*desc), BUS_DMASYNC_PREWRITE);
- sc-rx_desc_base[i].buffer_addr =
htole64(rx_buffer-map-dm_segs[0].ds_addr);
+
Re: PANIC on latest source
Hi Misc@ and Stuart,
On Sat, 29 Nov 2008 17:06:59 +0700, Stuart Henderson [EMAIL PROTECTED]
wrote:
In gmane.os.openbsd.misc, you wrote:
If there's any diffs for the driver?
this backs out the commit which will have caused the problems
you saw and should restore it to working behaviour.
please can you give us details about what the machine was doing
when it crashed please? just booted, or running for a while?
if you can test, does it still happen if the network cable is
disconnected?
The machine was rebooting, after intiatiating /etc/hostname.em* scripts,
which contains,
/etc/hostname.em0 -- onboard NIC
up
/etc/hostname.em1 -- PCI card NIC
up
media 100baseTX mediaopt full-duplex
/etc/hostname.em2 -- onboard NIC
mtu 1600
up
and it hangs. Happens even when I disconnected the cables. I had to
disabled it from bios then it stop complaining.
Hope this helps,
Best Regards,
Insan
Index: if_em.c
===
RCS file: /cvs/src/sys/dev/pci/if_em.c,v
retrieving revision 1.198
diff -u -p -r1.198 if_em.c
--- if_em.c 28 Nov 2008 02:44:17 - 1.198
+++ if_em.c 29 Nov 2008 10:01:18 -
@@ -164,12 +164,6 @@ void em_update_stats_counters(struct em_
void em_txeof(struct em_softc *);
int em_allocate_receive_structures(struct em_softc *);
int em_allocate_transmit_structures(struct em_softc *);
-#ifdef __STRICT_ALIGNMENT
-void em_realign(struct em_softc *, struct mbuf *, u_int16_t *);
-#else
-#define em_realign(a, b, c) /* a, b, c */
-#endif
-void em_rxfill(struct em_softc *);
void em_rxeof(struct em_softc *, int);
void em_receive_checksum(struct em_softc *, struct em_rx_desc *,
struct mbuf *);
@@ -804,7 +798,6 @@ em_intr(void *arg)
if (ifp-if_flags IFF_RUNNING) {
em_rxeof(sc, -1);
- em_rxfill(sc);
em_txeof(sc);
}
@@ -1455,15 +1448,15 @@ em_stop(void *arg)
struct em_softc *sc = arg;
ifp = sc-interface_data.ac_if;
- /* Tell the stack that the interface is no longer active */
- ifp-if_flags = ~(IFF_RUNNING | IFF_OACTIVE);
-
INIT_DEBUGOUT(em_stop: begin);
em_disable_intr(sc);
em_reset_hw(sc-hw);
timeout_del(sc-timer_handle);
timeout_del(sc-tx_fifo_timer_handle);
+ /* Tell the stack that the interface is no longer active */
+ ifp-if_flags = ~(IFF_RUNNING | IFF_OACTIVE);
+
em_free_transmit_structures(sc);
em_free_receive_structures(sc);
}
@@ -2294,54 +2287,51 @@ int
em_get_buf(struct em_softc *sc, int i)
{
struct mbuf*m;
- struct em_buffer *pkt;
- struct em_rx_desc *desc;
+ bus_dmamap_tmap;
+ struct em_buffer *rx_buffer;
int error;
- pkt = sc-rx_buffer_area[i];
- desc = sc-rx_desc_base[i];
-
- if (pkt-m_head != NULL) {
- printf(%s: em_get_buf: slot %d already has an mbuf\n,
- sc-sc_dv.dv_xname, i);
- return (ENOBUFS);
- }
-
MGETHDR(m, M_DONTWAIT, MT_DATA);
if (m == NULL) {
sc-mbuf_alloc_failed++;
return (ENOBUFS);
}
- MCLGETI(m, M_DONTWAIT, sc-interface_data.ac_if, MCLBYTES);
+ MCLGET(m, M_DONTWAIT);
if ((m-m_flags M_EXT) == 0) {
m_freem(m);
sc-mbuf_cluster_failed++;
return (ENOBUFS);
}
m-m_len = m-m_pkthdr.len = MCLBYTES;
+
if (sc-hw.max_frame_size = (MCLBYTES - ETHER_ALIGN))
m_adj(m, ETHER_ALIGN);
- error = bus_dmamap_load_mbuf(sc-rxtag, pkt-map, m, BUS_DMA_NOWAIT);
+ /*
+* Using memory from the mbuf cluster pool, invoke the
+* bus_dma machinery to arrange the memory mapping.
+*/
+ error = bus_dmamap_load_mbuf(sc-rxtag, sc-rx_sparemap,
+ m, BUS_DMA_NOWAIT);
if (error) {
m_freem(m);
return (error);
}
- bus_dmamap_sync(sc-rxtag, pkt-map, 0, pkt-map-dm_mapsize,
- BUS_DMASYNC_PREREAD);
- pkt-m_head = m;
+ rx_buffer = sc-rx_buffer_area[i];
+ if (rx_buffer-m_head != NULL)
+ bus_dmamap_unload(sc-rxtag, rx_buffer-map);
- bus_dmamap_sync(sc-rxdma.dma_tag, sc-rxdma.dma_map,
- sizeof(*desc) * i, sizeof(*desc), BUS_DMASYNC_POSTWRITE);
+ map = rx_buffer-map;
+ rx_buffer-map = sc-rx_sparemap;
+ sc-rx_sparemap = map;
- bzero(desc, sizeof(*desc));
- desc-buffer_addr = htole64(pkt-map-dm_segs[0].ds_addr);
+ bus_dmamap_sync(sc-rxtag, rx_buffer-map, 0,
+ rx_buffer-map-dm_mapsize, BUS_DMASYNC_PREREAD);
- bus_dmamap_sync(sc-rxdma.dma_tag, sc-rxdma.dma_map,
- sizeof(*desc) * i, sizeof(*desc), BUS_DMASYNC_PREWRITE);
+ rx_buffer-m_head = m;
- sc-rx_ndescs++;
+ sc-rx_desc_base[i].buffer_addr =
PANIC on 28 Nov 08 Kernel Source
Hi Misc@, Still getting panic on 28 kernel, the same message. It's an intel S3000AH mainboard with 2 onboard intel em nics and 1 pci em nic. Browsing through CVSWeb, I can see that in em.c rev. 1.196 there are some whitespace fixes in em_rxeof. From dmesg, it seem that the panic related to this. Here's dmesg: OpenBSD 4.4-current (GENERIC) #49: Fri Nov 28 15:41:27 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069002752 (1019MB) avail mem = 1025413120 (977MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x3fbe4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0048.042920081306 date 04/29/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1b:11:10:07:f5 eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1 drm0 at radeondrm0 em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 npx0
Re: PANIC on latest source
On Sat, 29 Nov 2008 02:38:33 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-11-27, Insan Praja SW [EMAIL PROTECTED] wrote: em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 It may be a complete red herring, but can you try disconnecting these to see if it only affects one of them? I would start with the 82573E (I would guess it may be onboard, if so there's probably somewhere in BIOS you can disable it). I see what I can do.. but disable one of these nics, I dont think I can't afford that. It's a router and I need that interface. thanks, -- insandotpraja(at)gmaildotcom
Re: PANIC on latest source
Hi, On Sat, 29 Nov 2008 02:38:33 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-11-27, Insan Praja SW [EMAIL PROTECTED] wrote: em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 It may be a complete red herring, but can you try disconnecting these to see if it only affects one of them? I would start with the 82573E (I would guess it may be onboard, if so there's probably somewhere in BIOS you can disable it). I see what I can do.. but disable one of these nics, I dont think I can't afford that. It's a router and I need that interface. So I disabled those onboard NICs and, it stop panicking. so I guess this bug only happening when you got onboard em (82573E chips)? If there's any diffs for the driver? :D thanks, -- insandotpraja(at)gmaildotcom
PANIC on latest source
Hi Misc@, I'm compiling a 27 November source tree, kernel and userland. Just as it finished booting, it went panic. I got 25 November kernel and userland which works just fine. Thanks. Here it comes, OpenBSD 4.4-current (GENERIC) #48: Thu Nov 27 16:20:26 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069002752 (1019MB) avail mem = 1025359872 (977MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x3fbe4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0048.042920081306 date 04/29/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1b:11:10:07:f5 eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1 drm0 at radeondrm0 em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 biomask fded
OpenBSD Remote Access Server
Hi Misc@, In a few days I'm going to start new RAS project, and I'd like to use OBSD as ppp/pppoe server. Has anyone ever done this before? I'm looking to manage ppp clients access and bandwidth using radius server, but I had limited experiences with ppp server and radius. If anyone willing to share their experiences, any enlignment and shed of light, would be much appreciated. Warm Regards, Insan -- insandotpraja(at)gmaildotcom
Re: Record for total number of rigs running OpenBSD
On Fri, 17 Oct 2008 23:42:55 +0700, Vivek Ayer [EMAIL PROTECTED] wrote: Hi guys, Just wanted to let you folks know that my lab, due to my insistence, is now running OpenBSD on 5 rigs: 2 CARP/pfsync firewalls 1 DNS Server 2 CARP/pfsync/load-sharing web servers (sparc64) I'm sure there's people out there that have more rigs running it. I'd just like to know. If things go smoothly with these, I'll definitely pitch in money for the 4.5 release (put 4.3 to the test first). Cheers from Berkeley, the birthplace of BSD, Vivek Hi guys, I got: 1 DNS Server + web server 1 DNS Server + mail server + web server 5 BGP Speaker + Bandwidth Manager -- 4.4-Current 1 Office Gateway Coming up, 1 Bridge/Switch and VPN concentrator. Cheers from Indonesia, -- insandotpraja(at)gmaildotcom
Re: Vlan Tag on Vlan Tag (l2tunneling)
On Fri, 22 Aug 2008 02:34:12 +0700, Reyk Floeter [EMAIL PROTECTED] wrote:
Hi Reyk,
I just update my source from anoncvs1.ca.openbsd.org and I got conflict on
sys/net/if_vlan.c, sys/net/if_bridge.c and sys/net/if_ethersubr.c
and yes, a couple months ago I use your QinQ patch on my machines. I
really like to try to solve this on my own, but currently there is no
software engineer around to help me.
I understand if you suggested me to follow the original code, and I really
appreciate if you can help me to adjust the source code. from cvsweb, the
later changes due to;
* Allow ether_input() and vlan_input() to handle incoming packets
where the tag is stored in the mbuf header.
* Make bridge(4) handle interfaces with and without hardware tag
support and forward packets inbetween.
by Claudio Jeker.
Below are the conflicted lines;
/usr/src/sys/net/if_vlan.c
if_vlan.c
if ((p-if_capabilities IFCAP_VLAN_HWTAGGING)
(ifv-ifv_type == ETHERTYPE_VLAN)) {
m-m_pkthdr.rcvif = ifp;
m-m_flags |= M_PROTO1;
===
if (p-if_capabilities IFCAP_VLAN_HWTAGGING) {
m-m_pkthdr.ether_vtag = ifv-ifv_tag;
m-m_flags |= M_VLANTAG;
1.77
if_vlan.c
tagh = etype == ETHERTYPE_QINQ ? svlan_tagh : vlan_tagh;
tag = EVL_VLANOFTAG(ntohs(*mtod(m, u_int16_t *)));
LIST_FOREACH(ifv, tagh[TAG_HASH(tag)], ifv_list) {
if (m-m_pkthdr.rcvif == ifv-ifv_p tag == ifv-ifv_tag
etype == ifv-ifv_type)
===
LIST_FOREACH(ifv, vlan_tagh[TAG_HASH(tag)], ifv_list) {
if (m-m_pkthdr.rcvif == ifv-ifv_p tag == ifv-ifv_tag)
1.77
/usr/src/sys/net/if_bridge.c
if_bridge.c
if ((etype == ETHERTYPE_VLAN || etype == ETHERTYPE_QINQ)
(ifp-if_capabilities IFCAP_VLAN_MTU)
((m-m_pkthdr.len - sizeof(struct ether_vlan_header)) =
ifp-if_mtu)) {
s = splnet();
bridge_ifenqueue(sc, ifp, m);
splx(s);
return;
===
#if NVLAN 0
if ((m-m_flags M_VLANTAG) || etype == ETHERTYPE_VLAN) {
int len = m-m_pkthdr.len;
if (m-m_flags M_VLANTAG)
len += ETHER_VLAN_ENCAP_LEN;
if ((ifp-if_capabilities IFCAP_VLAN_MTU)
(len - sizeof(struct ether_vlan_header) =
ifp-if_mtu)) {
s = splnet();
bridge_ifenqueue(sc, ifp, m);
splx(s);
return;
}
goto dropit;
1.173
/usr/src/sys/net/if_ethersubr.c
if_ethersubr.c
if ((etype == ETHERTYPE_VLAN || etype == ETHERTYPE_QINQ)
(vlan_input(eh, m, etype) == 0))
===
if (((m-m_flags M_VLANTAG) || etype == ETHERTYPE_VLAN)
(vlan_input(eh, m) == 0))
1.127
if_ethersubr.c
if (etype == ETHERTYPE_VLAN || etype == ETHERTYPE_QINQ) {
===
if ((m-m_flags M_VLANTAG) || etype == ETHERTYPE_VLAN) {
1.127
Best Regards,
Insan Praja SW
On Thu, Aug 21, 2008 at 04:05:50PM +0200, Claudio Jeker wrote:
no point in just doing that.
a button to change the ether type would make sense.
this is not trivial because it would require a change in the Rx path
where it is currently matching the ethertype in ether_input() before
calling vlan_input(). do you want to call vlan_input() for every
other packet or do a configured type lookup all the time? and what if
the user specifies an ethernet type that is conflicting with something
else? i think it should really only be 0x8100 or 0x88a8.
If we stack vlan interfaces I don't see a real need for such a button.
This could be figured out either at configuration time or on runtime.
E.g. just check if the ethertype is 0x8100 and add the next vlan tag as
0x88a8. This would also allow to use a bridge for qinq setups. Because
of
this I think doing it on runtime is the best.
here is another approach defining QinQ-compliant interfaces as a new
cloner type; so you can stack 0x88a8 devices as you wish and it
doesn't need a new button in ifconfig. it also uses a dedicated vlan
tag hash for Service VLANs to avoid tag/Id conflicts.
# ifconfig em0 up
# ifconfig svlan100 vlandev em0
# ifconfig vlan200 vlandev svlan100 192.168.2.100
reyk
Index: share/man/man4/vlan.4
===
RCS file: /cvs/src/share/man/man4/vlan.4,v
retrieving revision 1.31
diff -u -p -r1.31 vlan.4
--- share/man/man4/vlan.4 26 Jun 2008 05:42:07 - 1.31
+++ share/man/man4/vlan.4 21 Aug 2008 19:18:42 -
@@ -31,8 +31,9 @@
.Dt VLAN 4
.Os
.Sh NAME
-.Nm vlan
-.Nd IEEE 802.1Q encapsulation/decapsulation pseudo-device
+.Nm vlan ,
+.Nm svlan
+.Nd IEEE 802.1Q/1AD encapsulation/decapsulation pseudo-devices
.Sh SYNOPSIS
MPE(4) functionality
Hi misc@, Working on current here, trying to create mpe but all I can get is; $ sudo ifconfig mpe0 create ifconfig: SIOCIFCREATE: Invalid argument I guess its not enabled yet. I'm asking just to make sure my box is ok and nothing else. Thanks, -- insandotpraja(at)gmaildotcom
Re: route-to doesnot work for me - what am i doing wrong
On Tue, 14 Oct 2008 14:33:19 +0700, Siju George [EMAIL PROTECTED]
wrote:
Hi Siju,
I think there are several things you need to understand more about pf
quick option.
If you don't use quick option on rules, then it will be last matching rule
applied, but if you you use quick option, the first matching rule will be
applied, the rest will be ignored. So, if you use quick option the filter
order would be;
rule 1 # very detail
rule 2 # pretty much detail
rule 3 # detail
rule 4 # not detail
something like;
pass in quick on $int_if inet proto tcp from net_example1 to internet
pass in quick on $int_if inet from net_example1 to internet
pass in quick on $int_if from net_example1 to any
pass in quick on $int_if
if you don't use quick then it would be;
rule 1 # not detail
rule 2 # detail
rule 3 # pretty much detail
rule 4 # very detail
something like;
pass in on $int_if
pass in on $int_if from net_example1 to any
pass in on $int_if from net_example1 to internet
pass in on $int_if inet from net_example1 to internet
pass in on $int_if inet proto tcp from net_example to internet
HTH,
Insan
Hi,
I have firewall
sk0 - LAN Interface
rl1 - Primary internet connection
rl2 - secondary Internet connection
I have a line in pf.conf
pass in quick on $int_if route-to ( $ext_if2 $ext_ifgw ) from
hifxchn2 to any keep state
to route requests from hosts in hifxchn2 through the rl2 internet
connection but it does not seem to work.
the full pf.conf is below
===
##NETWORK INTERFACES
#
int_if=sk0#HiFX LAN Interface - Connected to Main
Swithches - using 172.16.0.0/12 Range.
ext_if=rl1#Dataone Connection - rl2 interface
Connected to the Dataone Router.
ext_if2=rl2
ext_ifgw=122.166.40.1
proxy=122.166.40.36
#Private IP Address Range Specified by RFC 1918.
#
priv_nets={ 127.0.0.0/8, 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 }
#Computers in HiFX LAN that are permitted to bypass squid to make HTTP
and HTTPS connections directly to the Internet
#
table bypass-squid-users persist file
/etc/pf-tables/bypass-squid-users
#Websites to which bypassing SQUID is allowed.
#
table bypass-squid-sites persist file
/etc/pf-tables/bypass-squid-sites
table lanspl persist file /etc/pf-tables/lanspl
table adm persist file /etc/pf-tables/adms
table vtcservers persist file /etc/pf-tables/vtcservers
table bannedIPs persist file /etc/pf-tables/bannedIPs
table authpf_users persist
table hifxchn2 persist file /etc/pf-tables/hifxchn2
#Traffic Normalization - Required for pppoe connection.
#
scrub on $ext_if all no-df random-id fragment reassemble
###Network Address Translation and Port Redirection
###The First Matching rule wins here for any packet and no further
nat or rdr rules are checked.
nat-anchor authpf/*
rdr-anchor authpf/*
binat-anchor authpf/*
nat pass on $ext_if from adm to any - ($ext_if)
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
rdr pass on $int_if proto tcp from $int_if:network to any port 21 -
127.0.0.1 port 8021
# redirect to beergas website
rdr pass on $ext_if inet proto tcp from any to any port 80 -
172.16.4.12 port 80
rdr pass on $ext_if inet proto tcp from any to any port 443 -
172.16.4.12 port 443
###
#
nat on $ext_if from bypass-squid-users to any - ($ext_if)
#NAT connections to specified websites.
nat on $ext_if from any to bypass-squid-sites port { 80, 443 } -
($ext_if)
nat on $ext_if from any to bypass-squid-sites port { 80, 443 } -
($ext_if2)
#Block NAT for other hosts to port 80 and 443 on the Internet.
#They should all go via SQUID CACHE PROXY
#
no nat on $ext_if from any to any port { 80, 443 }
no nat on $ext_if2 from any to any port { 80, 443 }
#Allow NAT for rest of the Computers to Internet - port 80 and 443 is
already blocked for these hosts by the rule above.
#
nat on $ext_if from $int_if:network to any - ($ext_if)
nat on $ext_if2 from $int_if:network to any - ($ext_if2)
#The SQUID CACHE PROXY Listens on localhost interface port 8080 for
security reasons.
#PROXY configuration for computers in the HIFX LAN Machine in the IP
Address of $int_if and port 8080
#Hence all Traffic comming to $int_if port 8080 should be redirected
to SQUID running on localhost:8080
#
no rdr on $int_if from any to 70.86.222.30
rdr on $int_if proto tcp from any to any port 8080 - 127.0.0.1 port 8080
###Filter Rules.
###The last matching rule wins here for packets except when the quick
word is used in which case Further rules are not processed.
#Starting with a Deny all Traffic Policy. Later rules open up the
firewall for required traffic.
block all
pass in quick on $ext_if inet proto tcp from any to any port ssh keep
state
#Blocking RFC1918 Traffic.
block in log quick on $ext_if from $priv_nets to any
block out log quick on $ext_if from any to $priv_nets
block out log quick on $ext_if from any to bannedIPs
#Allow all traffic on the localhost interface.
pass quick on lo0 all
BGPd *CN Flags not showing
Hi Misc, Got this interfaces on my router, $ ifconfig em em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:15:17:49:04:0d description: ON_PORT_28 media: Ethernet autoselect (100baseTX full-duplex) status: active inet6 fe80::215:17ff:fe49:40d%em0 prefixlen 64 scopeid 0x1 em1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1600 lladdr 00:07:e9:0f:44:e3 description: ON_PORT_30 media: Ethernet autoselect (1000baseT full-duplex,rxpause) status: active inet 202.149.67.123 netmask 0xfff8 broadcast 202.149.67.127 inet6 fe80::207:e9ff:fe0f:44e3%em1 prefixlen 64 scopeid 0x3 em2: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:15:17:49:04:0e description: BACK_IF.ISAT.BDG media: Ethernet autoselect (100baseTX full-duplex) status: active inet6 fe80::215:17ff:fe49:40e%em2 prefixlen 64 scopeid 0x4 inet 202.90.194.14 netmask 0xfffc broadcast 202.90.194.15 look at this But BGPd said, $ bgpctl sh fib next flags: * = valid, B = BGP, C = Connected, S = Static N = BGP Nexthop reachable via this route r = reject route, b = blackhole route flags destination gateway *BN 121.52.128.0/24 202.149.67.121 *BN 121.52.128.112/30202.90.194.3 *BN 121.52.128.136/30202.90.194.5 *CN 202.90.194.0/29 link#8 *BN 202.90.194.8/30 202.90.194.5 *BN 202.90.194.16/30 202.90.194.3 *BN 202.90.194.96/27 202.90.194.5 *CN 202.149.67.120/29link#3 *SN 202.149.94.234/32202.149.67.121 *BN 202.149.95.0/24 202.149.67.121 *BN 202.149.95.172/30202.90.194.5 *BN 202.149.95.220/30202.90.194.5 No flags *CN on network 202.90.194.12/30. Anyone can help? Thanks, Insan, -- insandotpraja(at)gmaildotcom
Re: BGPd *CN Flags not showing
On Thu, 25 Sep 2008 19:07:54 +0700, Henning Brauer [EMAIL PROTECTED]
wrote:
* Claudio Jeker [EMAIL PROTECTED] [2008-09-25 11:15]:
$ bgpctl sh fib next
flags: * = valid, B = BGP, C = Connected, S = Static
N = BGP Nexthop reachable via this route
r = reject route, b = blackhole route
flags destination gateway
*BN 121.52.128.0/24 202.149.67.121
*BN 121.52.128.112/30202.90.194.3
*BN 121.52.128.136/30202.90.194.5
*CN 202.90.194.0/29 link#8
*BN 202.90.194.8/30 202.90.194.5
*BN 202.90.194.16/30 202.90.194.3
*BN 202.90.194.96/27 202.90.194.5
*CN 202.149.67.120/29link#3
*SN 202.149.94.234/32202.149.67.121
*BN 202.149.95.0/24 202.149.67.121
*BN 202.149.95.172/30202.90.194.5
*BN 202.149.95.220/30202.90.194.5
No flags *CN on network 202.90.194.12/30.
Anyone can help?
Did you configure the interface after starting bgpd?
If this is the case I think I know where the problem is.
no, he simply doesn't have a route with nexthop within
202.90.194.12/30, thus it does not show up in 'show nexthop'.
Hi Henning, Claudio and Misc@,
I have these;
$ bgpctl sh rib |more
flags: * = Valid, = Selected, I = via IBGP, A = Announced
origin: i = IGP, e = EGP, ? = Incomplete
flags destination gateway lpref med aspath origin
*3.0.0.0/8 202.149.94.234 500 0 17826 4788 9304 80 i
I*3.0.0.0/8 202.90.194.13 100 0 17826 4788 9304 80 i
and on bgpd.conf;
jktcore =202.90.194.13
neighbor $jktcore {
remote-as 38776
announceall
announcecapabilities yes
softreconfigin yes
softreconfigout yes
descr JKT-CORE01
route-reflector
set {localpref 100 nexthop 202.90.194.13}
}
on the filter;
allow from $jktcore inet prefixlen 8 - 30 set nexthop 202.90.194.13
and,
$ bgpctl sh next
Nexthop State
202.149.95.221 valid
202.149.95.173 valid
121.52.128.137 valid
121.52.128.113 valid
202.90.194.110 valid
202.90.194.103 valid
202.90.194.102 valid
202.90.194.100 valid
202.149.95.45valid
202.90.194.17valid
202.90.194.14valid
202.90.194.13valid
202.90.194.9 valid
202.90.194.5 valid vlan6 UP, Ethernet, active, 100 MBit/s
202.90.194.4 valid vlan6 UP, Ethernet, active, 100 MBit/s
202.90.194.3 valid vlan6 UP, Ethernet, active, 100 MBit/s
202.90.194.2 valid vlan6 UP, Ethernet, active, 100 MBit/s
202.149.94.234 valid em1 UP, Ethernet, active, 1000 MBit/s
and,
Interface Nexthop state Flags Link state
pflog0 ok UP unknown
vlan6 ok UP Ethernet, active, 100 MBit/s
vlan111ok UP Ethernet, active, 100 MBit/s
lo0ok UP unknown
enc0 invalid unknown
em2ok UP Ethernet, active, 100 MBit/s
em1ok UP Ethernet, active, 1000 MBit/s
sk0ok UP Ethernet, active, 100 MBit/s
em0ok UP Ethernet, active, 100 MBit/s
$ ifconfig em2
em2: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:49:04:0e
description: BACK_IF.ISAT.BDG
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::215:17ff:fe49:40e%em2 prefixlen 64 scopeid 0x4
inet 202.90.194.14 netmask 0xfffc broadcast 202.90.194.15
Last boot dmesg, taken from /var/run/dmesg.boot
OpenBSD 4.4-current (GENERIC) #38: Sun Sep 14 13:34:34 WIT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
RTC BIOS diagnostic error ffixed_disk,invalid_time
cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
real mem = 1069604864 (1020MB)
avail mem = 1025802240 (978MB)
RTC BIOS diagnostic error ffixed_disk,invalid_time
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @
0x3fbe4000 (42 entries)
bios0: vendor Intel Corporation version
S3000.86B.02.00.0048.042920081306 date 04/29/2008
bios0: Intel S3000AH
acpi0 at bios0: rev 0
acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT
HEST BERT ERST EINJ
acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4)
UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(
S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 4
route label vs pftable
Hi Misc@, Right now I'm using bgpd to labeled my internet routes, so I can use it with pf to split bandwidth allocation on single interface to two distinct network, the internet and regional exchange, and using this way I only forward/allow routeable IP addresses supplied from bgpd. Other than labeling the prefixes learn from bgpd, I also put this prefixes to pftable(s) in order to see the counters, and maybe parse them for network monitoring purposes. I have also use pftable to do this kind of thing, but my curiosity is simple, which is faster on filtering rules, using route labels or pftables. I mostly prefer to use pftable since I can see the rule in pftop/systat screen. I'd love to hear if anyone here had any experiences comparing this two. Thanks, -- insandotpraja(at)gmaildotcom
Sloppy States [WAS: Re: Anyone can't access bsdly.net like I did? (and some other sites)]
On Tue, 16 Sep 2008 12:01:58 +0700, Constantine A. Murenin [EMAIL PROTECTED] wrote: 2008/9/16 Insan Praja SW [EMAIL PROTECTED]: On Tue, 16 Sep 2008 04:27:00 +0700, Peter N. M. Hansteen [EMAIL PROTECTED] wrote: Insan Praja SW [EMAIL PROTECTED] writes: My company recently bought 202[dot]90[dot]194[dot]0/23 IPs, and since we start using this IPs, I can't access www.bsdly.net and several others site on the net. Thanks for reporting this. I hope it's a temporary routing problem that will just disappear soon. By way of debugging, traceroute from here seems to try to take a scenic route to your subnet before ending up disallowed: [EMAIL PROTECTED]:~$ traceroute -I 202.90.194.1 traceroute to 202.90.194.1 (202.90.194.1), 64 hops max, 60 byte packets 1 10.168.103.1 (10.168.103.1) 17.277 ms 0.960 ms 1.41 ms 2 213-187-179-197.dd.nextgentel.com (213.187.179.197) 19.26 ms 98.506 ms 99.858 ms 3 1.80-202-103.nextgentel.com (80.202.103.1) 15.629 ms 15.913 ms 15.874 ms 4 217-13-1-194.dd.nextgentel.com (217.13.1.194) 32.901 ms 23.91 ms 22.110 ms 5 80-202-2-74.dd.nextgentel.com (80.202.2.74) 22.41 ms 30.594 ms 22.997 ms 6 * * * 7 oso-b2-link.telia.net (213.248.92.57) 39.839 ms 32.912 ms 49.572 ms 8 kbn-bb2-link.telia.net (80.91.250.117) 42.493 ms 47.849 ms 30.725 ms 9 hbg-bb2-pos5-0-0.telia.net (213.248.65.125) 42.64 ms 34.820 ms 52.735 ms 10 ffm-bb2-pos7-0-0.telia.net (213.248.65.121) 44.386 ms ffm-bb2-link.telia.net (80.91.248.85) 54.624 ms ffm-bb2-pos7-0-0.telia.net (213.248.65.121) 51.565 ms 11 ffm-b3-link.telia.net (80.91.249.141) 49.492 ms 53.717 ms 45.759 ms 12 france-telecom-119877-ffm-b3.telia.net (213.248.77.206) 55.374 ms 46.38 ms 56.170 ms 13 * * * 14 * * * 15 * * * 16 202.188.139.165 (202.188.139.165) 360.863 ms 343.342 ms 343.545 ms 17 219.93.174.81 (219.93.174.81) 344.32 ms 361.180 ms 344.423 ms 18 58.27.124.57 (58.27.124.57) 337.910 ms 339.586 ms 337.497 ms 19 58.27.113.4 (58.27.113.4) 353.673 ms 353.621 ms 353.515 ms 20 219.94.12.141 (219.94.12.141) 364.484 ms 471.982 ms 354.163 ms 21 210.187.143.1 (210.187.143.1) 344.819 ms 343.707 ms 343.652 ms 22 202.188.224.118 (202.188.224.118) 353.726 ms 359.527 ms 354.379 ms 23 brf-backbone02-ether0-0.tm.net.my (202.188.0.8) 339.18 ms 337.942 ms 337.610 ms 24 58.26.88.6 (58.26.88.6) 636.253 ms 379.711 ms 381.87 ms 25 * * * 26 host67-123.cust.sat.net.id (202.149.67.123) 390.556 ms 382.394 ms 385.217 ms 27 * * * 28 * * * 29 * host67-123.cust.sat.net.id (202.149.67.123) 429.645 ms !H 394.636 ms !H A traceroute from your end would likely be useful at this point. bsdly.net unfortunately is not alone in our local /24, and it wouldn't surprise me overmuch if a we-blacklist-/24s-and-/16s-because-we-can operation is part of the problem. If it doesn't blow over automagically, I likely need to spend some time on this. Thanks, Peter Hi Peter, $ traceroute www.bsdly.net traceroute to www.bsdly.net (213.187.179.198), 64 hops max, 40 byte packets 1 core1-router (202.90.194.2) 3.408 ms 0.896 ms 2.939 ms 2 202.149.95.69 (202.149.95.69) 6.388 ms 7.522 ms 6.905 ms 3 bb-1.nx.satata.net (202.149.94.232) 5.890 ms 7.859 ms 7.434 ms 4 58.26.88.5 (58.26.88.5) 38.867 ms 35.405 ms 33.918 ms 5 219.93.151.211 (219.93.151.211) 33.849 ms 219.93.151.227 (219.93.151.227)35.520 ms 219.93.151.211 (219.93.151.211) 35.670 ms 6 if-7-3.mcore4.LAA-LosAngeles.as6453.net (216.6.85.37) 227.272 ms 226.752 m s 224.802 ms 7 Vlan77.icore1.LAA-LosAngeles.as6453.net (216.6.85.46) 224.232 ms 232.287 m s 233.779 ms 8 las-bb1-pos2-3-3.telia.net (213.248.94.49) 280.720 ms 274.574 ms 257.230 ms 9 nyk-bb1-link.telia.net (80.91.252.226) 318.744 ms 318.127 ms 318.268 ms 10 kbn-bb1-pos1-3-0.telia.net (213.248.64.21) 340.139 ms 339.660 ms 339.716 ms 11 oso-b2-link.telia.net (80.91.254.234) 333.682 ms 334.749 ms 333.725 ms 12 * nextgentel-ic-118934-oso-b3.c.telia.net (80.239.193.94) 338.705 ms 338.5 ms 13 217-13-1-193.dd.nextgentel.com (217.13.1.193) 349.121 ms 348.724 ms 348.225 ms 14 213-187-179-197.dd.nextgentel.com (213.187.179.197) 451.616 ms 399.687 ms 400.194 ms 15 skapet.bsdly.net (213.187.179.198) 363.203 ms 362.121 ms 363.217 ms I got 2 upstreams, when I start prepending my ASNumber to my one of my upstream, I can magically access www.bsdly.net :D, even without prepending, in/out to your net is only using 1 upstream. So, it must be something on the other side. All my routers are openbsd 4.4-current, armed with BGPd and PF enabled. This may got something todo with stateful nature of PF, which I'm I think you might find PF's 'sloppy' states
Re: Anyone can't access bsdly.net like I did? (and some other sites)
On Tue, 16 Sep 2008 04:27:00 +0700, Peter N. M. Hansteen [EMAIL PROTECTED] wrote: Insan Praja SW [EMAIL PROTECTED] writes: My company recently bought 202[dot]90[dot]194[dot]0/23 IPs, and since we start using this IPs, I can't access www.bsdly.net and several others site on the net. Thanks for reporting this. I hope it's a temporary routing problem that will just disappear soon. By way of debugging, traceroute from here seems to try to take a scenic route to your subnet before ending up disallowed: [EMAIL PROTECTED]:~$ traceroute -I 202.90.194.1 traceroute to 202.90.194.1 (202.90.194.1), 64 hops max, 60 byte packets 1 10.168.103.1 (10.168.103.1) 17.277 ms 0.960 ms 1.41 ms 2 213-187-179-197.dd.nextgentel.com (213.187.179.197) 19.26 ms 98.506 ms 99.858 ms 3 1.80-202-103.nextgentel.com (80.202.103.1) 15.629 ms 15.913 ms 15.874 ms 4 217-13-1-194.dd.nextgentel.com (217.13.1.194) 32.901 ms 23.91 ms 22.110 ms 5 80-202-2-74.dd.nextgentel.com (80.202.2.74) 22.41 ms 30.594 ms 22.997 ms 6 * * * 7 oso-b2-link.telia.net (213.248.92.57) 39.839 ms 32.912 ms 49.572 ms 8 kbn-bb2-link.telia.net (80.91.250.117) 42.493 ms 47.849 ms 30.725 ms 9 hbg-bb2-pos5-0-0.telia.net (213.248.65.125) 42.64 ms 34.820 ms 52.735 ms 10 ffm-bb2-pos7-0-0.telia.net (213.248.65.121) 44.386 ms ffm-bb2-link.telia.net (80.91.248.85) 54.624 ms ffm-bb2-pos7-0-0.telia.net (213.248.65.121) 51.565 ms 11 ffm-b3-link.telia.net (80.91.249.141) 49.492 ms 53.717 ms 45.759 ms 12 france-telecom-119877-ffm-b3.telia.net (213.248.77.206) 55.374 ms 46.38 ms 56.170 ms 13 * * * 14 * * * 15 * * * 16 202.188.139.165 (202.188.139.165) 360.863 ms 343.342 ms 343.545 ms 17 219.93.174.81 (219.93.174.81) 344.32 ms 361.180 ms 344.423 ms 18 58.27.124.57 (58.27.124.57) 337.910 ms 339.586 ms 337.497 ms 19 58.27.113.4 (58.27.113.4) 353.673 ms 353.621 ms 353.515 ms 20 219.94.12.141 (219.94.12.141) 364.484 ms 471.982 ms 354.163 ms 21 210.187.143.1 (210.187.143.1) 344.819 ms 343.707 ms 343.652 ms 22 202.188.224.118 (202.188.224.118) 353.726 ms 359.527 ms 354.379 ms 23 brf-backbone02-ether0-0.tm.net.my (202.188.0.8) 339.18 ms 337.942 ms 337.610 ms 24 58.26.88.6 (58.26.88.6) 636.253 ms 379.711 ms 381.87 ms 25 * * * 26 host67-123.cust.sat.net.id (202.149.67.123) 390.556 ms 382.394 ms 385.217 ms 27 * * * 28 * * * 29 * host67-123.cust.sat.net.id (202.149.67.123) 429.645 ms !H 394.636 ms !H A traceroute from your end would likely be useful at this point. bsdly.net unfortunately is not alone in our local /24, and it wouldn't surprise me overmuch if a we-blacklist-/24s-and-/16s-because-we-can operation is part of the problem. If it doesn't blow over automagically, I likely need to spend some time on this. Thanks, Peter Hi Peter, $ traceroute www.bsdly.net traceroute to www.bsdly.net (213.187.179.198), 64 hops max, 40 byte packets 1 core1-router (202.90.194.2) 3.408 ms 0.896 ms 2.939 ms 2 202.149.95.69 (202.149.95.69) 6.388 ms 7.522 ms 6.905 ms 3 bb-1.nx.satata.net (202.149.94.232) 5.890 ms 7.859 ms 7.434 ms 4 58.26.88.5 (58.26.88.5) 38.867 ms 35.405 ms 33.918 ms 5 219.93.151.211 (219.93.151.211) 33.849 ms 219.93.151.227 (219.93.151.227)35.520 ms 219.93.151.211 (219.93.151.211) 35.670 ms 6 if-7-3.mcore4.LAA-LosAngeles.as6453.net (216.6.85.37) 227.272 ms 226.752 m s 224.802 ms 7 Vlan77.icore1.LAA-LosAngeles.as6453.net (216.6.85.46) 224.232 ms 232.287 m s 233.779 ms 8 las-bb1-pos2-3-3.telia.net (213.248.94.49) 280.720 ms 274.574 ms 257.230 ms 9 nyk-bb1-link.telia.net (80.91.252.226) 318.744 ms 318.127 ms 318.268 ms 10 kbn-bb1-pos1-3-0.telia.net (213.248.64.21) 340.139 ms 339.660 ms 339.716 ms 11 oso-b2-link.telia.net (80.91.254.234) 333.682 ms 334.749 ms 333.725 ms 12 * nextgentel-ic-118934-oso-b3.c.telia.net (80.239.193.94) 338.705 ms 338.5 ms 13 217-13-1-193.dd.nextgentel.com (217.13.1.193) 349.121 ms 348.724 ms 348.225 ms 14 213-187-179-197.dd.nextgentel.com (213.187.179.197) 451.616 ms 399.687 ms 400.194 ms 15 skapet.bsdly.net (213.187.179.198) 363.203 ms 362.121 ms 363.217 ms I got 2 upstreams, when I start prepending my ASNumber to my one of my upstream, I can magically access www.bsdly.net :D, even without prepending, in/out to your net is only using 1 upstream. So, it must be something on the other side. All my routers are openbsd 4.4-current, armed with BGPd and PF enabled. This may got something todo with stateful nature of PF, which I'm trying to manage :D Thanks, Insan -- insandotpraja(at)gmaildotcom
Trouble with Tables
Hi Misc@,
I find out after adding a tables in /etc/pf.conf eg, table peace_net
counters const {192.168.0.0/24} and do a pfctl -f /etc/pf.conf, and
tried to see the contents pfctl -t peace_net -vTshow replies with
pfctl: Table does not exist. Is there something wrong with my setup or
something has changed?
Thanks,
Insan
--
insandotpraja(at)gmaildotcom
Re: Trouble with Tables
On Tue, 16 Sep 2008 16:57:20 +0700, Raimo Niskanen
[EMAIL PROTECTED] wrote:
On Tue, Sep 16, 2008 at 04:20:11PM +0700, Insan Praja SW wrote:
Hi Misc@,
I find out after adding a tables in /etc/pf.conf eg, table peace_net
counters const {192.168.0.0/24} and do a pfctl -f /etc/pf.conf, and
tried to see the contents pfctl -t peace_net -vTshow replies with
pfctl: Table does not exist. Is there something wrong with my setup or
something has changed?
man pf.conf:
persist The persist flag forces the kernel to keep the table even
when
no rules refer to it. If the flag is not set, the kernel
will
automatically remove the table when the last rule
referring to
it is flushed.
Do you have a filter rule refering to your table?
Thanks,
Insan
--
insandotpraja(at)gmaildotcom
I forgot to include the dmesg:
OpenBSD 4.4-current (GENERIC) #1: Thu Sep 11 15:05:40 WIT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
RTC BIOS diagnostic error ffixed_disk,invalid_time
cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
real mem = 1069604864 (1020MB)
avail mem = 1025806336 (978MB)
RTC BIOS diagnostic error ffixed_disk,invalid_time
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @
0x3fbe4000 (42 entries)
bios0: vendor Intel Corporation version
S3000.86B.02.00.0048.042920081306 date 04/29/2008
bios0: Intel S3000AH
acpi0 at bios0: rev 0
acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT
HEST BERT ERST EINJ
acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4)
UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(
S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 4 (P32_)
acpiprt2 at acpi0: bus 1 (PEX0)
acpiprt3 at acpi0: bus -1 (PEX1)
acpiprt4 at acpi0: bus -1 (PEX2)
acpiprt5 at acpi0: bus -1 (PEX3)
acpiprt6 at acpi0: bus 2 (PEX4)
acpiprt7 at acpi0: bus 3 (PEX5)
acpicpu0 at acpi0: FVS, 3000, 2400 MHz
acpibtn0 at acpi0: SLPB
bios0: ROM list: 0xc/0x9000 0xc9000/0x1800
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00
ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9
pci1 at ppb0 bus 1
ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9
pci2 at ppb1 bus 2
ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11
pci3 at ppb2 bus 3
em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9,
address 00:15:17:49:03:b3
Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured
Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured
uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11
uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10
uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11
uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11
ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11
ehci0: timed out waiting for BIOS
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1
pci4 at ppb3 bus 4
skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon
Lite (0x9): irq 11
sk0 at skc0 port A: address 00:1b:11:10:07:f5
eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5
em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq
11, address 00:07:e9:0f:44:e3
vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9,
address 00:15:17:49:03:b4
ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM
disabled
pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA,
channel 0 configured to compatibility, channel 1 configur
ed to compatibility
pciide0: channel 0 disabled (no drives)
pciide0: channel 1 disabled (no drives)
pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA,
channel 0 configured to native-PCI, channel 1 configured
to native-PCI
pciide1: using irq 10 for native-PCI interrupt
wd0 at pciide1 channel 0 drive 0: ST3160211AS
wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors
wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5
ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10
iic0 at ichiic0
adt0 at iic0 addr 0x2e: sch5027 rev 0x69
spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5
usb1 at uhci0: USB revision 1.0
uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1
usb2 at uhci1: USB revision 1.0
uhub2 at usb2 Intel UHCI
Anyone can't access bsdly.net like I did? (and some other sites)
Hi Misc@, My company recently bought 202[dot]90[dot]194[dot]0/23 IPs, and since we start using this IPs, I can't access www.bsdly.net and several others site on the net. When check through robtex.com, a company in India seem to still include these IPs into their RADB database. I can't email them, browse their sites, maybe because of antispoof things. We asked our upstream to include this IPs to their radb accounts, but it seem nothing to changes, as we check to robtex.com, these IPs still originated as AS9829 route-object. But hey, I can still browse www.openbsd.org I really appreciate if anyone in the list could help me getting these IPs to be correctly accepted to browse the internet. Best Regards, Insan -- insandotpraja(at)gmaildotcom
Re: BGPD question
On Fri, 12 Sep 2008 19:48:04 +0700, Jens Kassel [EMAIL PROTECTED] wrote: Hello, I want to create BGP speaker that can give different next-hop address for same prefix dependent on the BGP peer. E.g. for the prefix 10.20.30.40/32 a want to tell peer1 to use next-hop 10.0.0.1 and tell peer2 to use next-hop 10.0.0.2. Would this be possible when using BGPD without code modification? Regards, Jens Most likely using match and set :D e.g match from any to $bgp_peer1 inet prefix 10.20.30.40/32 set nexthop 10.0.0.1 match from any to $bgp_peer2 inet prefix 10.20.30.40/32 set nexthop 10.0.0.2 Good luck, -- insandotpraja(at)gmaildotcom
Re: [BUGS or FEATURE] Ifconfig
On Tue, 09 Sep 2008 22:15:39 +0700, Jason Dixon [EMAIL PROTECTED] wrote: On Tue, Sep 09, 2008 at 10:15:16AM -0400, Jason Dixon wrote: I can confirm this on a kernel I bought last night for testing Henning's Obviously I meant built. Although I've already put my pre-order in, maybe that counts? ;) Hi Misc@, Just to confirm On 10 sept 2008 kernel the problem was fix. Thanks, Insan -- insandotpraja(at)gmaildotcom
[BUGS or FEATURE] Ifconfig
Hi Misc@, upgrading my kernel via cvs to i386 4.4-current sept 7th, I can't use ifconfig [group]. Something like ifconfig vlan or ifconfig em will show something like ifconfig: SIOCGIFFLAGS: Device not configured. Not happening to September 6th kernel. Thanks, -- insandotpraja(at)gmaildotcom OpenBSD 4.4-current (GENERIC) #43: Sun Sep 7 14:28:19 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069604864 (1020MB) avail mem = 1025806336 (978MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x3fbe4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0048.042920081306 date 04/29/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL( S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1b:11:10:07:f5 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:e3 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configur ed to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 em1 at pci4 dev 1 function 0 Intel PRO/1000MT
Re: Vlan Tag on Vlan Tag (l2tunneling)
On Fri, 22 Aug 2008 02:34:12 +0700, Reyk Floeter [EMAIL PROTECTED] wrote: On Thu, Aug 21, 2008 at 04:05:50PM +0200, Claudio Jeker wrote: no point in just doing that. a button to change the ether type would make sense. this is not trivial because it would require a change in the Rx path where it is currently matching the ethertype in ether_input() before calling vlan_input(). do you want to call vlan_input() for every other packet or do a configured type lookup all the time? and what if the user specifies an ethernet type that is conflicting with something else? i think it should really only be 0x8100 or 0x88a8. If we stack vlan interfaces I don't see a real need for such a button. This could be figured out either at configuration time or on runtime. E.g. just check if the ethertype is 0x8100 and add the next vlan tag as 0x88a8. This would also allow to use a bridge for qinq setups. Because of this I think doing it on runtime is the best. here is another approach defining QinQ-compliant interfaces as a new cloner type; so you can stack 0x88a8 devices as you wish and it doesn't need a new button in ifconfig. it also uses a dedicated vlan tag hash for Service VLANs to avoid tag/Id conflicts. # ifconfig em0 up # ifconfig svlan100 vlandev em0 # ifconfig vlan200 vlandev svlan100 192.168.2.100 reyk Index: share/man/man4/vlan.4 === RCS file: /cvs/src/share/man/man4/vlan.4,v retrieving revision 1.31 diff -u -p -r1.31 vlan.4 --- share/man/man4/vlan.4 26 Jun 2008 05:42:07 - 1.31 +++ share/man/man4/vlan.4 21 Aug 2008 19:18:42 - @@ -31,8 +31,9 @@ .Dt VLAN 4 .Os .Sh NAME -.Nm vlan -.Nd IEEE 802.1Q encapsulation/decapsulation pseudo-device +.Nm vlan , +.Nm svlan +.Nd IEEE 802.1Q/1AD encapsulation/decapsulation pseudo-devices .Sh SYNOPSIS .Cd pseudo-device vlan .Sh DESCRIPTION @@ -40,6 +41,10 @@ The .Nm Ethernet interface allows construction of virtual LANs when used in conjunction with IEEE 802.1Q-compliant Ethernet devices. +The +.Ic svlan +Ethernet interface allows contruction of IEEE 802.1AD-compliant +provider bridges. .Pp A .Nm @@ -83,6 +88,24 @@ option for more information. Following the vlan header is the actual ether type for the frame and length information. .Pp +An +.Ic svlan +interface is normally used for QinQ in 802.1AD-compliant provider bridges to +stack other +.Nm +interfaces on top of it. +It can be created using the +.Ic ifconfig svlan Ns Ar N Ic create +command or by setting up a +.Xr hostname.if 5 +configuration file for +.Xr netstart 8 . +The configuration is identical to the +.Nm +interface, the only differences are that it uses a different Ethernet +type (0x88a8) and an independent VLAN Id space on the parent +interface. +.Pp .Nm interfaces support the following unique .Xr ioctl 2 Ns s : @@ -104,7 +127,10 @@ interfaces use the following interface c The parent interface can handle full sized frames, plus the size of the vlan tag. .It IFCAP_VLAN_HWTAGGING -The parent interface will participate in the tagging of frames. +The parent interface will participate in the tagging of frames +(This is not supported by +.Ic svlan +interfaces). .El .Sh DIAGNOSTICS .Bl -diag @@ -150,6 +176,10 @@ and .Rs .%T IEEE 802.1Q standard .%O http://standards.ieee.org/getieee802/802.1.html +.Re +.Rs +.%T IEEE 802.1AD standard +.%O Provider Bridges, QinQ .Re .Sh AUTHORS Originally [EMAIL PROTECTED] Index: sys/net/ethertypes.h === RCS file: /cvs/src/sys/net/ethertypes.h,v retrieving revision 1.9 diff -u -p -r1.9 ethertypes.h --- sys/net/ethertypes.h5 May 2008 13:40:17 - 1.9 +++ sys/net/ethertypes.h21 Aug 2008 19:18:42 - @@ -300,6 +300,7 @@ #defineETHERTYPE_LANPROBE 0x /* HP LanProbe test? */ #defineETHERTYPE_PAE 0x888E /* 802.1X Port Access Entity */ #defineETHERTYPE_AOE 0x88A2 /* ATA over Ethernet */ +#defineETHERTYPE_QINQ 0x88A8 /* 802.1ad VLAN stacking */ #defineETHERTYPE_LLDP 0x88CC /* Link Layer Discovery Protocol */ #defineETHERTYPE_LOOPBACK 0x9000 /* Loopback */ #defineETHERTYPE_LBACK ETHERTYPE_LOOPBACK /* DEC MOP loopback */ Index: sys/net/if_bridge.c === RCS file: /cvs/src/sys/net/if_bridge.c,v retrieving revision 1.170 diff -u -p -r1.170 if_bridge.c --- sys/net/if_bridge.c 14 Jun 2008 21:46:22 - 1.170 +++ sys/net/if_bridge.c 21 Aug 2008 19:18:42 - @@ -2601,7 +2601,7 @@ bridge_fragment(struct bridge_softc *sc, goto dropit; #else etype = ntohs(eh-ether_type); - if (etype == ETHERTYPE_VLAN + if ((etype == ETHERTYPE_VLAN || etype == ETHERTYPE_QINQ) (ifp-if_capabilities IFCAP_VLAN_MTU) ((m-m_pkthdr.len -
Re: Vlan Tag on Vlan Tag (l2tunneling)
On Fri, 22 Aug 2008 01:31:00 +0700, Reyk Floeter [EMAIL PROTECTED] wrote: hi, On Thu, Aug 21, 2008 at 04:48:02PM +0200, Henning Brauer wrote: * Claudio Jeker [EMAIL PROTECTED] [2008-08-21 16:11]: If we stack vlan interfaces I don't see a real need for such a button. switch vendors don't agree on the ethertype. it is configurable on all of them, and the defaults are different between vendors. as in: button needed. for example, you can easilly change the default tag-type from 0x88a8 to old-style 0x8100 on hp switches, but it is a global setting: - on the switch: ProCurve Switch 5406zl(config)# qinq mixedvlan tag-type 0x8100 - or - ProCurve Switch 5406zl(config)# qinq svlan tag-type 0x8100 ... ProCurve Switch 5406zl(config)# interface a1-a2 unknown-vlans disable ProCurve Switch 5406zl(config)# svlan 100 tagged a1,a2 - on the OpenBSD hosts: a# ifconfig em0 up a# ifconfig vlan100 vlandev em0 a# ifconfig vlan200 vlandev vlan100 192.168.200.1 b# ifconfig em0 up b# ifconfig vlan100 vlandev em0 b# ifconfig vlan200 vlandev vlan100 192.168.200.2 b# ping 192.168.200.1 reyk Geez Guys, This is beyond expectation, as an openbsd user, I'am blown over since now, my so called router/switch is a metro switch.. geez.. I patching now, and let's see what happens. Thanks, Insan -- insandotpraja(at)gmaildotcom
Vlan Tag on Vlan Tag (l2tunneling)
Hi Misc@, I Currently busting my a** to setup cizcoz catalyst 3550 to do dot1q tunneling over EoMPLS network. Its seem the only way to do it is to use this 3*50 Catalysts. But I'm curious, if I created a vlan interface over vlan interface on OBSD(ie, create a vlan interface over a phy_if, say vlan2 vlan id 2 and then create another vlan_if say vlan4 vlan id 4 over vlan2) does it make it compatible with sicko l2tunneling/dot1q-tunneling?. I wish I had a spare ports on my obsd machine so I can try this out. Thanks, -- insandotpraja(at)gmaildotcom
Re: [OOT] Can't browse http://www.xs4all.nl/~wpd/symon/ and http://www.benzedrine.cx/pfstat.html
On Thu, 14 Aug 2008 09:38:52 +0700, Steve Shockley [EMAIL PROTECTED] wrote: Insan Praja SW wrote: (20x.x0.1x4.0/23). Obfuscation doesn't help much when your IP address is in the headers... Shame on me :P -- insandotpraja(at)gmaildotcom
[OOT] Can't browse http://www.xs4all.nl/~wpd/symon/ and http://www.benzedrine.cx/pfstat.html
Hi Misc@, Did anyone had difficulities accessing/browsing this sites? I'm trying to get a hold on symon, syweb dan pfstat, but I can't seem to access/browse from my network (20x.x0.1x4.0/23). Sorry for the noise, Thanks, Insan -- insandotpraja(at)gmaildotcom
pfr_update_stats: assertion failed
Dear misc@, After repeatedly got the pfr_update_stats: assertion failed, and the network become slow, I set pfctl debug level to loud, and this is what I get: Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 192.168.0.32:1538 10.10.10.119:22 [lo=4133565811 high=4133583331 win=64240 modulator=2098386937 wscale=3] [lo=960581845 high=961094873 win=17520 modulator=3043605647 wscale=0] 4:4 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.164:1433 [lo=746192897 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.164:1433 [lo=746192897 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.164:1433 [lo=746192897 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.164:1433 [lo=746192897 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.226:1433 [lo=1663107072 high=1663107074 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.163:1433 [lo=496173056 high=496173058 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.162:1433 [lo=1098252288 high=1098252290 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.194.164:1433 203.171.234.184:6000 [lo=746192896 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.164:1433 [lo=746192897 high=746192898 win=16384 modulator=0] [lo=0 high=16384 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.194.168:1433 203.171.234.184:6000 [lo=2128150528 high=2128150530 win=16384 modulator=0] [lo=1081107883 high=1081124267 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.194.168:1433 [lo=2128150528 high=2128150530 win=16384 modulator=0] [lo=1081107883 high=1081124267 win=1 modulator=0] 10:10 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.195.9:1433 [lo=130809856 high=130809858 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.195.9:1433 203.171.234.184:6000 [lo=130809856 high=130809858 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.195.0:1433 [lo=1018232832 high=1018232834 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.195.0:1433 203.171.234.184:6000 [lo=1018232832 high=1018232834 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.195.1:1433 [lo=279838720 high=279838722 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.195.1:1433 203.171.234.184:6000 [lo=279838720 high=279838722 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.195.6:1433 [lo=953614336 high=953614338 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP out wire: 202.90.195.6:1433 203.171.234.184:6000 [lo=953614336 high=953614338 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39 GreenServiceRouter /bsd: pf: wire key attach failed on all: TCP in wire: 203.171.234.184:6000 202.90.195.13:1433 [lo=1339228160 high=1339228162 win=16384 modulator=0] [lo=0 high=1 win=1 modulator=0] 2:0 Aug 5 02:01:39
pfr_update_stats: assertion failed and Network Slowness on Recent i386 snapshot
Hi Misc@, Recently just update the kernel on my i386 routers, and, eventually got Aug 2 19:20:00 GreenServiceRouter /bsd: pfr_update_stats: assertion failed on the console screen and /var/log/messages. I use pf and bgpd heavily. So this might because my pf setting, which is ok before or, some updates on the kernel and userland that does not match my config. So here is the dmesg, and thanks, OpenBSD 4.4-beta (GENERIC) #22: Sat Aug 2 00:46:29 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error efixed_disk,invalid_time cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,TM2,CNXT-ID,CX16,xTPR real mem = 2143395840 (2044MB) avail mem = 2064338944 (1968MB) RTC BIOS diagnostic error efixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/13/07, SMBIOS rev. 2.4 @ 0x7fbe4000 (43 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0048.042920081306 date 04/29/2008 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT SLIC FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT HEST BERT ERST EINJ acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL( S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1000 0xca000/0x1000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:25:0a:9d Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1b:11:10:07:26 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 ppb4 at pci4 dev 1 function 0 Intel S21152BB PCI-PCI rev 0x00 pci5 at ppb4 bus 5 ste0 at pci5 dev 4 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:84 ukphy0 at ste0 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste1 at pci5 dev 5 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:85 ukphy1 at ste1 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste2 at pci5 dev 6 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:86 ukphy2 at ste2 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 ste3 at pci5 dev 7 function 0 D-Link Systems 550TX rev 0x15: irq 11, address 00:0d:88:68:53:87 ukphy3 at ste3 phy 1: Generic IEEE 802.3u media interface, rev. 0: OUI 0x0090c3, model 0x0004 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em1 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:25:0a:9e ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3
Setting Alternative Upstream using BGPd
Hi Misc@, Right now I'm simulating transit network using bgpd. So, I'd like to ask a few question. Right now my network acting as a transit network. I got three routers, one is facing to the customer and two are facing to a different upstreams. Probably just like this: --- - | Rtr A |__ | RTR D |_| RTR F | | AS 1 | | | AS 3 | | AS 4 | - | |---| -- - |_| rtr C |___| | | AS 3 | | - | |---| -- - | RTR B |__| | RTR E |_| RTR G | | AS 2 || AS 3 | | AS 5 | --- - RTR A and B are customer routers, router C, D and E are my routers and router F and G are upstream routers. How can I make traffic from router A goes to router B and traffic from router B went to router E, other than using multi-routing tables and pf rtable directive and route-to?, just plain bgp with all its attributes.. Any help, hints and clue appreciated, Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: PF DiffServ
On Tue, 15 Jul 2008 13:39:57 +0700, Claer [EMAIL PROTECTED] wrote: On Tue, Jul 15 2008 at 32:01, Insan Praja SW wrote: Hi Misc@, I was wondering if I could use pf to read and write DSCP code to packets, maybe using scrub or altq? If there is a way to do it using Puffy, maybe I could try it on my box. Thanks, Hello, Actually, 4.3 can read DSCP but not write it. Write support was commited last month (http://marc.info/?l=openbsd-cvsm=121014159632272w=2) so you can certainly test this functionnality with a snapshot. Claer Geezz... cruel and sick OS.. On to it.. Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: tcpdump -X
On Tue, 15 Jul 2008 21:49:46 +0700, GVG GVG [EMAIL PROTECTED] wrote: It stand for Maximum Transmit Unit. On Tue, Jul 15, 2008 at 3:54 PM, David Hill [EMAIL PROTECTED] wrote: On Tue, Jul 15, 2008 at 03:42:58PM +0200, GVG GVG wrote: Dear list, was going through the OpenBSD tcpdump version and couldn't identify anything like the '-A' flag in order to capture full web sites etc. Tried optin '-X' but didn't work! Should I use '-s snaplen' but what snaplen value do I have to define. Tried few combinations with no success! Thanks for your help George Use the size of your MTU, which can be found my using ifconfig. -- David Hill Thanks for your prompt reply. Just out of curiosity what's this 'MTU' stands for? Thanks George -- insandotpraja(at)gmaildotcom
PF DiffServ
Hi Misc@, I was wondering if I could use pf to read and write DSCP code to packets, maybe using scrub or altq? If there is a way to do it using Puffy, maybe I could try it on my box. Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: 23 June AMD64 Snapshots Kernel Panic
On Tue, 08 Jul 2008 21:59:43 +0700, David Krause [EMAIL PROTECTED] wrote: Hi Misc@, Currently I am on AMD64 4.4-beta, and yes.. I got the latest source from July 7, and yes, it is been a stable machine for about a day, no complains or anything. Thanks all, Insan * Insan Praja SW [EMAIL PROTECTED] [080625 08:54]: Hi Misc@, This is a recent panic I got on OpenBSD 4.3-current (GENERIC.MP) #8: Wed Jun 25 09:55:34 WIT 2008 . The source is updated to this morning Wed Jun 25 09:55:34 WIT. This is what panicking: Can you please try updating to the latest source (make sure you get pf.c 1.607) or try the very latest snapshot? My systems are finally stable now. I had been getting various panics and hangs, including the one that you saw. David -- insandotpraja(at)gmaildotcom
Can't get KERN_NCHSTATS: Cannot allocate memory
Hi Misc@, on latest OpenBSD 4.4-beta (GENERIC.MP) #18: Mon Jul 7 08:40:47 WIT 2008 AMD64 machine, while lookin' to my new favorite tool systat, on the first page, I got the Can't get KERN_NCHSTATS: Cannot allocate memory. I wonder what happen, it's a 1GB Memory machine, on 4 juli snapshot, it doesn't complain. As usual, here is the dmesg. OpenBSD 4.4-beta (GENERIC.MP) #18: Mon Jul 7 08:40:47 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 1051168768 (1002MB) avail mem = 1020350464 (973MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x3f6ee000 (78 entries) bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00 R1.10.2151.A1 date 05/08/2006 bios0: FUJITSU SIEMENS D2151-A1 acpi0 at bios0: rev 2 acpi0: tables DSDT FACP ASF! SSDT MCFG HPET APIC BOOT acpi0: wakeup devices PEXA(S4) PEXB(S4) PEXC(S4) PEXD(S4) PEXE(S4) USB1(S4) USB2(S4) USB3(S4) USB4(S4) USB5(S4) PCIH(S4) KEYB( S4) PS2M(S4) COM1(S1) COM2(S1) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.43 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 1MB 64b/line 8-way L2 cache cpu0: apic clock running at 133MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.18 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu1: 1MB 64b/line 8-way L2 cache ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEXA) acpiprt2 at acpi0: bus 3 (PEXB) acpiprt3 at acpi0: bus 5 (PEXC) acpiprt4 at acpi0: bus 7 (PEXD) acpiprt5 at acpi0: bus 9 (PEXE) acpiprt6 at acpi0: bus 11 (PCIH) acpicpu0 at acpi0: FVS, 2667, 1862 MHz acpicpu1 at acpi0: FVS, 2667, 1862 MHz acpibtn0 at acpi0: PWRB pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x02 vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) agp0 at vga1: aperture at 0xe000, size 0x1000 azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 18 (irq 9) azalia0: codec[s]: Realtek ALC260 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 17 (irq 11) pci1 at ppb0 bus 3 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01: apic 2 int 16 (irq 11) pci2 at ppb1 bus 5 bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1 (0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79 :df brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18 (irq 9) pci3 at ppb2 bus 7 ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01: apic 2 int 19 (irq 9) pci4 at ppb3 bus 9 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 22 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 21 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 20 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb4 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci5 at ppb4 bus 11 em0 at pci5 dev 5 function 0 Intel PRO/1000MT (82540EM) rev 0x02: apic 2 int 22 (irq 10), address 00:07:e9:0f:44:37 rl0 at pci5 dev 7 function 0 D-Link Systems 530TX+ rev 0x10: apic 2 int 21 (irq 5), address 00:11:95:63:48:63 rlphy0 at rl0 phy 0: RTL internal PHY pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01 pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to com patibility wd0 at pciide0 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets, initiator 7 cd0 at scsibus0 targ 0 lun 0: TSSTcorp, DVD-ROM SH-D162D, SB00 ATAPI 5/cdrom removable cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: apic 2 int 19 (irq 9) iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 512MB DDR2 SDRAM non-parity PC2-5300CL5 spdmem1 at iic0 addr 0x52: 512MB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0
Re: Can't get KERN_NCHSTATS: Cannot allocate memory
On Mon, 07 Jul 2008 21:32:08 +0700, Artur Grabowski [EMAIL PROTECTED] wrote: Yup, I just build ke userland and it turns out you're right :D Thanks, Insan Your userland is out of sync with the kernel. That's bad, mmkay? //art Insan Praja SW [EMAIL PROTECTED] writes: Hi Misc@, on latest OpenBSD 4.4-beta (GENERIC.MP) #18: Mon Jul 7 08:40:47 WIT 2008 AMD64 machine, while lookin' to my new favorite tool systat, on the first page, I got the Can't get KERN_NCHSTATS: Cannot allocate memory. I wonder what happen, it's a 1GB Memory machine, on 4 juli snapshot, it doesn't complain. As usual, here is the dmesg. OpenBSD 4.4-beta (GENERIC.MP) #18: Mon Jul 7 08:40:47 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 1051168768 (1002MB) avail mem = 1020350464 (973MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x3f6ee000 (78 entries) bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00 R1.10.2151.A1 date 05/08/2006 bios0: FUJITSU SIEMENS D2151-A1 acpi0 at bios0: rev 2 acpi0: tables DSDT FACP ASF! SSDT MCFG HPET APIC BOOT acpi0: wakeup devices PEXA(S4) PEXB(S4) PEXC(S4) PEXD(S4) PEXE(S4) USB1(S4) USB2(S4) USB3(S4) USB4(S4) USB5(S4) PCIH(S4) KEYB( S4) PS2M(S4) COM1(S1) COM2(S1) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.43 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 1MB 64b/line 8-way L2 cache cpu0: apic clock running at 133MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.18 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu1: 1MB 64b/line 8-way L2 cache ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEXA) acpiprt2 at acpi0: bus 3 (PEXB) acpiprt3 at acpi0: bus 5 (PEXC) acpiprt4 at acpi0: bus 7 (PEXD) acpiprt5 at acpi0: bus 9 (PEXE) acpiprt6 at acpi0: bus 11 (PCIH) acpicpu0 at acpi0: FVS, 2667, 1862 MHz acpicpu1 at acpi0: FVS, 2667, 1862 MHz acpibtn0 at acpi0: PWRB pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x02 vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) agp0 at vga1: aperture at 0xe000, size 0x1000 azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 18 (irq 9) azalia0: codec[s]: Realtek ALC260 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 17 (irq 11) pci1 at ppb0 bus 3 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01: apic 2 int 16 (irq 11) pci2 at ppb1 bus 5 bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1 (0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79 :df brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18 (irq 9) pci3 at ppb2 bus 7 ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01: apic 2 int 19 (irq 9) pci4 at ppb3 bus 9 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 22 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 21 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 20 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb4 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci5 at ppb4 bus 11 em0 at pci5 dev 5 function 0 Intel PRO/1000MT (82540EM) rev 0x02: apic 2 int 22 (irq 10), address 00:07:e9:0f:44:37 rl0 at pci5 dev 7 function 0 D-Link Systems 530TX+ rev 0x10: apic 2 int 21 (irq 5), address 00:11:95:63:48:63 rlphy0 at rl0 phy 0: RTL internal PHY pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01 pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to com patibility wd0 at pciide0 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets, initiator 7 cd0 at scsibus0 targ 0 lun 0: TSSTcorp, DVD-ROM SH-D162D, SB00 ATAPI 5/cdrom removable cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel
Re: 23 June AMD64 Snapshots Kernel Panic
On Wed, 25 Jun 2008 20:47:50 +0700, Insan Praja SW [EMAIL PROTECTED]
wrote:
Sorry, the title should be 25 June AMD64 Snapshots Kernel Panic
Thanks,
Insan
Hi Misc@,
This is a recent panic I got on OpenBSD 4.3-current (GENERIC.MP) #8:
Wed Jun 25 09:55:34 WIT 2008 . The source is updated to this morning
Wed Jun 25 09:55:34 WIT.
This is what panicking:
kernel: page fault trap, code=0
stopped at pf_state_tree_RB_INSERT_COLOR+0x63: movq 0x28 (%rdx),%rax
ddb{0} trace
pf_state_tree_RB_INSERT_COLOR() at pf_state_tree_RB_INSERT_COLOR+0x63
pf_state_tree_RB_INSERT() at pf_state_tree_RB_INSERT+0x75
pf_state_key_insert() at pf_state_key_insert+0x27
pf_state_insert() at pf_test_rule+0x42
pf_test_rule() at pf_test_rule+0x1948
pf_test_rule() at pf_test_rule+0x4d8
pf_test() at pf_test+0x944
ipv4_input() at ipv4_input+0x153
ipintr() at ipintr+0x6d
Xsoftnet() at Xsoftnet+0x4a
interrupt ---
end trace frame 0x0, count: -10
0:
ddb{0}
and this is the kernel panic before I update:
uvm_fault(0x 80b7b0e0, 0x0, 0, 1) - e
kernel : page fault trap, code=0
Stopped at pf_state_tree_RB_REMOVE_COLOR + 0x1C0: cmpl $0x1,0x40(%rsi)
ddb {0} trace
pf_state_tree_RB_REMOVE_COLOR() at pf_state_tree_RB_REMOVE_COLOR+0x1c0
pf_state_tree_RB_REMOVE() at pf_state_tree_RB_REMOVE+0x4d
pf_state_tree_key_detach() at pf_state_key_detech+0x9d
pf_state_state() at pf_detach_state_key_detach+0x9d
pf_purge_expired_states() at pf_purge_expired_state+0x9d
pf_purge_thread() at pf_purge_thread+0x53
end trace frame : 0x0, counnt: -6
ddb {0}
Its all PF, right? damn.. I love PF.. I mean.. really love pf.. and
BGPd, of course :D
Thanks and Best Regards,
Insan
--
insandotpraja(at)gmaildotcom
23 June AMD64 Snapshots Kernel Panic
Hi Misc@,
This is a recent panic I got on OpenBSD 4.3-current (GENERIC.MP) #8: Wed
Jun 25 09:55:34 WIT 2008 . The source is updated to this morning Wed Jun
25 09:55:34 WIT.
This is what panicking:
kernel: page fault trap, code=0
stopped at pf_state_tree_RB_INSERT_COLOR+0x63: movq 0x28 (%rdx),%rax
ddb{0} trace
pf_state_tree_RB_INSERT_COLOR() at pf_state_tree_RB_INSERT_COLOR+0x63
pf_state_tree_RB_INSERT() at pf_state_tree_RB_INSERT+0x75
pf_state_key_insert() at pf_state_key_insert+0x27
pf_state_insert() at pf_test_rule+0x42
pf_test_rule() at pf_test_rule+0x1948
pf_test_rule() at pf_test_rule+0x4d8
pf_test() at pf_test+0x944
ipv4_input() at ipv4_input+0x153
ipintr() at ipintr+0x6d
Xsoftnet() at Xsoftnet+0x4a
interrupt ---
end trace frame 0x0, count: -10
0:
ddb{0}
and this is the kernel panic before I update:
uvm_fault(0x 80b7b0e0, 0x0, 0, 1) - e
kernel : page fault trap, code=0
Stopped at pf_state_tree_RB_REMOVE_COLOR + 0x1C0: cmpl $0x1,0x40(%rsi)
ddb {0} trace
pf_state_tree_RB_REMOVE_COLOR() at pf_state_tree_RB_REMOVE_COLOR+0x1c0
pf_state_tree_RB_REMOVE() at pf_state_tree_RB_REMOVE+0x4d
pf_state_tree_key_detach() at pf_state_key_detech+0x9d
pf_state_state() at pf_detach_state_key_detach+0x9d
pf_purge_expired_states() at pf_purge_expired_state+0x9d
pf_purge_thread() at pf_purge_thread+0x53
end trace frame : 0x0, counnt: -6
ddb {0}
Its all PF, right? damn.. I love PF.. I mean.. really love pf.. and BGPd,
of course :D
Thanks and Best Regards,
Insan
--
insandotpraja(at)gmaildotcom
OpenBSD 4.3-current (GENERIC.MP) #8: Wed Jun 25 09:55:34 WIT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 2124914688 (2026MB)
avail mem = 2063269888 (1967MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x7f6ee000 (78 entries)
bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00
R1.10.2151.A1 date 05/08/2006
bios0: FUJITSU SIEMENS D2151-A1
acpi0 at bios0: rev 2
acpi0: tables DSDT FACP ASF! SSDT MCFG HPET APIC BOOT
acpi0: wakeup devices PEXA(S4) PEXB(S4) PEXC(S4) PEXD(S4) PEXE(S4)
USB1(S4) USB2(S4) USB3(S4) USB4(S4) USB5(S4) PCIH(S4) KEYB(
S4) PS2M(S4) COM1(S1) COM2(S1)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.42 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu0: 1MB 64b/line 8-way L2 cache
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.07 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu1: 1MB 64b/line 8-way L2 cache
ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PEXA)
acpiprt2 at acpi0: bus 3 (PEXB)
acpiprt3 at acpi0: bus 5 (PEXC)
acpiprt4 at acpi0: bus 7 (PEXD)
acpiprt5 at acpi0: bus 9 (PEXE)
acpiprt6 at acpi0: bus 11 (PCIH)
acpicpu0 at acpi0: FVS, 2667, 1862 MHz
acpicpu1 at acpi0: FVS, 2667, 1862 MHz
acpibtn0 at acpi0: PWRB
pci0 at mainbus0 bus 0: configuration mode 1
pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x02
vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
agp0 at vga1: aperture at 0xe000, size 0x1000
azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic
2 int 18 (irq 9)
azalia0: codec[s]: Realtek ALC260
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int
17 (irq 11)
pci1 at ppb0 bus 3
ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01: apic 2 int
16 (irq 11)
pci2 at ppb1 bus 5
bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1
(0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79
:df
brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int
18 (irq 9)
pci3 at ppb2 bus 7
ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01: apic 2 int
19 (irq 9)
pci4 at ppb3 bus 9
uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int
23 (irq 11)
uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int
22 (irq 10)
uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int
21 (irq 5)
uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int
20 (irq 9)
ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int
23 (irq 11)
ehci0: timed out waiting for BIOS
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb4 at pci0 dev 30
Intel S3000AH i386 4.3-current 23 June Snapshot cannot fork try again
Hi, I got two machine on June 23rd snapshots, which slowly decrease its free memory till it drops dead. Actually, this happens since maybe 3 latest snapshots during last week till now. When it did, even when I currently ssh-ing to the machine, and execute a command such uname -a or anything, it replies cannot fork try again or, via console internal resource failure. So, Here is dmesg: OpenBSD 4.3-current (GENERIC) #4: Mon Jun 23 17:05:42 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069670400 (1020MB) avail mem = 1026125824 (978MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 07/11/06, SMBIOS rev. 2.4 @ 0x3fbf4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0044.071120071047 date 07/11/2007 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:04:0d Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 skc0 at pci4 dev 0 function 0 D-Link Systems DGE-530T B1 rev 0x11, Yukon Lite (0x9): irq 11 sk0 at skc0 port A: address 00:1c:f0:11:6c:d4 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 em1 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em2 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:04:0e ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 1 scsibus0 at atapiscsi0: 2 targets, initiator 7 cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVD-ROM GDR-H30N, 1.00 ATAPI 5/cdrom removable cd0(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0
Kernel Panic on AMD64 24 June snapshot
Hi Misc@,
I currently caught a kernel panic that says:
uvm_fault(0x 80b7b0e0, 0x0, 0, 1) - e
kernel : page fault trap, code=0
Stopped at pf_state_tree_RB_REMOVE_COLOR + 0x1C0: cmpl $0x1,0x40(%rsi)
ddb {0} trace
pf_state_tree_RB_REMOVE_COLOR() at pf_state_tree_RB_REMOVE_COLOR+0x1c0
pf_state_tree_RB_REMOVE() at pf_state_tree_RB_REMOVE+0x4d
pf_state_tree_key_detach() at pf_state_key_detech+0x9d
pf_state_state() at pf_detach_state_key_detach+0x9d
pf_purge_expired_states() at pf_purge_expired_state+0x9d
pf_purge_thread() at pf_purge_thread+0x53
end trace frame : 0x0, counnt: -6
ddb {0}
and this is the dmesg:
OpenBSD 4.3-current (GENERIC.MP) #7: Tue Jun 24 20:27:50 WIT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 2124914688 (2026MB)
avail mem = 2063269888 (1967MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x7f6ee000 (78 entries)
bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00
R1.10.2151.A1 date 05/08/2006
bios0: FUJITSU SIEMENS D2151-A1
acpi0 at bios0: rev 2
acpi0: tables DSDT FACP ASF! SSDT MCFG HPET APIC BOOT
acpi0: wakeup devices PEXA(S4) PEXB(S4) PEXC(S4) PEXD(S4) PEXE(S4)
USB1(S4) USB2(S4) USB3(S4) USB4(S4) USB5(S4) PCIH(S4) KEYB(
S4) PS2M(S4) COM1(S1) COM2(S1)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.51 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu0: 1MB 64b/line 8-way L2 cache
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.07 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S
SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu1: 1MB 64b/line 8-way L2 cache
ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PEXA)
acpiprt2 at acpi0: bus 3 (PEXB)
acpiprt3 at acpi0: bus 5 (PEXC)
acpiprt4 at acpi0: bus 7 (PEXD)
acpiprt5 at acpi0: bus 9 (PEXE)
acpiprt6 at acpi0: bus 11 (PCIH)
acpicpu0 at acpi0: FVS, 2667, 1862 MHz
acpicpu1 at acpi0: FVS, 2667, 1862 MHz
acpibtn0 at acpi0: PWRB
pci0 at mainbus0 bus 0: configuration mode 1
pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x02
vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
agp0 at vga1: aperture at 0xe000, size 0x1000
azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic
2 int 18 (irq 9)
azalia0: codec[s]: Realtek ALC260
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int
17 (irq 11)
pci1 at ppb0 bus 3
ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01: apic 2 int
16 (irq 11)
pci2 at ppb1 bus 5
bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1
(0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79
:df
brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int
18 (irq 9)
pci3 at ppb2 bus 7
ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01: apic 2 int
19 (irq 9)
pci4 at ppb3 bus 9
uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int
23 (irq 11)
uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int
22 (irq 10)
uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int
21 (irq 5)
uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int
20 (irq 9)
ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int
23 (irq 11)
ehci0: timed out waiting for BIOS
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb4 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1
pci5 at ppb4 bus 11
em0 at pci5 dev 5 function 0 Intel PRO/1000MT (82540EM) rev 0x02: apic 2
int 22 (irq 10), address 00:07:e9:0f:44:37
rl0 at pci5 dev 7 function 0 D-Link Systems 530TX+ rev 0x10: apic 2 int
21 (irq 5), address 00:11:95:63:48:63
rlphy0 at rl0 phy 0: RTL internal PHY
pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01
pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 wired to com
patibility
wd0 at pciide0 channel 0 drive 0: ST3160211AS
wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 1
scsibus0 at atapiscsi0: 2 targets, initiator 7
cd0 at scsibus0 targ 0 lun 0: TSSTcorp, DVD-ROM SH-D162D, SB00 ATAPI
5/cdrom removable
cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode
Re: Kernel Panic on AMD64 24 June snapshot
On Tue, 24 Jun 2008 23:55:47 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: In gmane.os.openbsd.misc, you wrote: Stopped at pf_state_tree_RB_REMOVE_COLOR + 0x1C0: cmpl $0x1,0x40(%rsi) OpenBSD 4.3-current (GENERIC.MP) #7: Tue Jun 24 20:27:50 WIT 2008 We can't tell which files are in your build. If sys/net/pf_ioctl.c is between 1.203-1.207, you need to update to 1.208. If it's already at 1.208 please post back on the misc@ thread with that information. Hi Stuart and Misc@, Well, it obviously says: $OpenBSD: pf_ioctl.c,v 1.208 2008/06/22 13:01:33 mcbride Exp $ */ on the /usr/src/sys/net/pf_ioctl.c Thanks, Insan -- insandotpraja(at)gmaildotcom
BGPD on 4.3-current Internal Resources Error?
Hi Misc@, Right now I got several machines on 4.3-current, one of them are BGP router. So, on June 20th 2008 snapshot, I got some error like this, Jun 21 00:49:49 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 00:50:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 00:52:00 core1 bgpd[3564]: neighbor 60.253.112.2 (jalawave): session_connect socket: No buffer space available Jun 21 00:52:00 core1 bgpd[3564]: neighbor d.e.f.5 (radnet): session_connect socket: No buffer space available Jun 21 00:54:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 00:54:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 00:56:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 00:56:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 00:58:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 00:58:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:00:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:00:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:01:59 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:01:59 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:04:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:04:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:06:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:06:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:08:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:08:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:10:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:10:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:12:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:12:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:14:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:14:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:16:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:16:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:18:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:18:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Jun 21 01:20:00 core1 bgpd[3564]: neighbor d.e.f.2 (jalawave): session_connect socket: No buffer space available Jun 21 01:20:00 core1 bgpd[3564]: neighbor a.b.c.5 (radnet): session_connect socket: No buffer space available Some time, the machines hang, when I tried to do something on it, it always replies cannot fork bla bla or, if I tried to log on via console, it said, internal resource failure. So here is dmesg, I hope this could be a good input for Obsd devs. Thanks, -- insandotpraja(at)gmaildotcom OpenBSD 4.3-current (GENERIC) #2: Fri Jun 20 13:42:39 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069670400 (1020MB) avail mem = 1026125824 (978MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 07/11/06, SMBIOS rev. 2.4 @ 0x3fbf4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0044.071120071047 date 07/11/2007 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1)
Re: CARP and network weirdness
On Wed, 18 Jun 2008 04:15:52 +0700, Renaud Allard [EMAIL PROTECTED] wrote: Hello, I have two servers running OpenBSD 4.3-stable amd64, both sharing one IP using CARP with load balancing using ip-stealth. (using balancing ip without stealth just doesn't work at all and overloads the network) # cat /etc/hostname.carp0 inet 206.251.244.96 255.255.255.0 NONE pass strongpass carpdev rl0 carpnodes 194:100,196:0 balancing ip-stealth # sysctl net.inet.carp net.inet.carp.allow=1 net.inet.carp.preempt=1 net.inet.carp.log=0 The firewall in front of my hosts is OpenBSD too, but I don't have control over it. If I do a tcptraceroute on port 443 to my CARP ip, I get at the end something like that: 10 em0.bfw01.m5hosting.com (206.251.227.243) 174.808 ms 4295141.428 ms 175.341 ms 11 frodo.llorien.org (206.251.244.96) [open] 179.551 ms servplex.us (206.251.255.77) 175.481 ms !p frodo.llorien.org (206.251.244.96) 4294967295665.658 ms with obviously impossible times and one packet going elsewhere on another range. But if I destroy the CARP interface and use a real one by issuing ifconfig rl0 inet alias 206.251.244.96/24 everything works great. It also works if I do not use balancing, using plain: inet 206.251.244.96 255.255.255.0 NONE pass strongpass carpdev rl0 vhid 194 So it seems CARP balancing is part of the issue as it works with real MAC or no balancing, but I fail to understand what could cause such behavior. No one is using the same VHIDs as me, and there is no duplicate MAC. Any explanation is welcome. [demime 1.01d removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Hi, Just sharing my experience with carp and bgp (sorry for hijacking this thread :D ) I have problem with carp ip balancing, too.. Its working, actually.. but somehow, when downloading via this carp+bgp routers (twins and identical actually) they could only pass data about 500kbps, but uploading serves up to 50Mbps (on 100Mbit/s links). This is the exact behaviour when there some nexthop misconfiguration on the facing router. So, right now I don't do any balancing yet, just plain old bgp redundancy, which, very much more complex than having carp [sigh..]. Thanks, -- insandotpraja(at)gmaildotcom
iBGP and eBGP and AS Filter
Hi Misc@,
Right now i'm playin' with bgpd filter setup. I've successfully create an
ebgp between another obsd4.3-current and ibgp between a fbsd/zebra.
I understand on most ibgp implementation (ciscoz/quagga), prefixes from
ebgp peer are more preferred than ibgp. But that isn't happening here.
Say,
|--quagga/linux-|
| as65020 |
| |
| |ebgp---|4.3current|-ebgp|
| | || as65024 | |
fbsd/zebra ibgp--- 4.3-current carp1 ibgp carp0 |
as65021| as65021 || | |
|ebgp---|4.3current|-ebgp|
as65024
fbsd/zebra as65021 have the same peer/prefix feeder(as65020) as
as65024/4.3-current. But 4.3current/as65021 prefer prefixes from
fbsd/zebra as the paths are sorter, I think..
So I create a filter:
deny from {IP_address_fbsd/zebra} AS 65020
But it still receive valid prefixes from fbsd/zebra. I appriciate if
someone could help me/hints me on howto prefer prefixes from
as65024(ebgp-peers) than ibgp peers without changing the setting on
fbsd/zebra.
Thanks,
--
insandotpraja(at)gmaildotcom
dhcpd-sync not in /etc/services
Hi Misc@, Just update the kernel and userland from openbsd.de, and got the following message.. myNiceMachine# dhcpd rl0 dhcpd: Can't find service dhcpd-sync in /etc/services Anybody can point me where to go? Best Regards and Thanks, -- insandotpraja(at)gmaildotcom
Re: dhcpd-sync not in /etc/services
On Thu, 22 May 2008 03:07:40 +0700, Kenneth R Westerback [EMAIL PROTECTED] wrote: all righty... On Thu, May 22, 2008 at 02:42:10AM +0700, Insan Praja SW wrote: Hi Misc@, Just update the kernel and userland from openbsd.de, and got the following message.. myNiceMachine# dhcpd rl0 dhcpd: Can't find service dhcpd-sync in /etc/services Anybody can point me where to go? Best Regards and Thanks, -- insandotpraja(at)gmaildotcom Update your /etc/services from -current sources or a snapshot. Ken -- insandotpraja(at)gmaildotcom
Re: dhcpd-sync not in /etc/services
On Thu, 22 May 2008 03:16:56 +0700, Chris Kuethe [EMAIL PROTECTED] wrote: sysmerge.. shiny... me likey.. Thanks Chris and Misc@ Insan I'd say read the error a couple of times. DHCPD can't find the definition of dhcpd-sync in /etc/services. To see if there's a newer version of this file, you can check cvsweb (http://www.openbsd.org/cgi-bin/cvsweb/src/etc/services) and patch it in yourself or use the shiny new sysmerge.sh to merge it from a snapshot tarball... On Wed, May 21, 2008 at 12:42 PM, Insan Praja SW [EMAIL PROTECTED] wrote: Hi Misc@, Just update the kernel and userland from openbsd.de, and got the following message.. myNiceMachine# dhcpd rl0 dhcpd: Can't find service dhcpd-sync in /etc/services Anybody can point me where to go? Best Regards and Thanks, -- insandotpraja(at)gmaildotcom -- insandotpraja(at)gmaildotcom
Re: [rn_walktree+0x3f] Panic During BGP+CARP Fail-Over
On Tue, 20 May 2008 01:17:52 +0700, ropers [EMAIL PROTECTED] wrote:
Well,
There is a project called bogon list and de-bogon list. We continue
monitor these un-allocated IP's to make sure that nothing from this bogons
gettin to the net.
Or it just me being paranoid...
http://www.cymru.com/Documents/bogon-list.html
Thanks,
Insan,
2008/5/19 Insan Praja SW [EMAIL PROTECTED]:
pf.conf
---
table bogon const {192.168.0.0/16, 172.16.0.0/12, 0.0.0.0/7,
2.0.0.0/8,
5.0.0.0/8, 7.0.0.0/8, 23.0.0.0/8, 27.0.0.0/8, 31.0.0.0/8, 36.0.0.0/7,
39.0.0.0/8, 42.0.0.0/8, 49.0.0.0/8, 50.0.0.0/8, 94.0.0.0/7,
100.0.0.0/6, 104.0.0.0/5,
112.0.0.0/6, 169.254.0.0/16, 173.0.0.0/8, 174.0.0.0/7, 176.0.0.0/5,
184.0.0.0/6}
This may be a bit of a n00bish question, but what makes all of these
networks bogus?
I can understand why private networks are bogus, but I don't
understand why you consider most of the other aforementioned nets
bogus.
Thanks and regards,
--ropers
--
insandotpraja(at)gmaildotcom
Re: [rn_walktree+0x3f] Panic During BGP+CARP Fail-Over
On Mon, 19 May 2008 18:36:07 +0700, Claudio Jeker [EMAIL PROTECTED] wrote: On Mon, May 19, 2008 at 09:01:59AM +0700, Insan Praja SW wrote: Hi Misc@, While working/experimenting with bgpd + carp and storing the prefix learn by bgpd to a pftable, the carp peer hang when the other peer is rebooted. Works ok before storing this prefixes to pftable. Both router are identical. So here is the config file on each router, dmesg and of course, the ddb and trace, rn_delete: Orphaned Mask 0xd1d48c60 at 0x0 rn_delete: couldn't find our annotation pfr_unroute_kentry: delete failed. rn_delete: Orphaned Mask 0xd1d48780 at 0x0 uvm_fault(0xd7b3e814, 0x0, 0, 1) - e kernel: page fault trap, code=0 Stopped at rn_walktree+0x3f: cmpw$0,0x8(%eax) ddb rn_walktree(d1b50480,d030fde0,de864b08,d0311f1b) at rn_walktree+0x3f pfr_mark_addrs(de848000,,1000,d1d9a000) at pfr_mark_addrs+0x33 pfr_del_addrs(d1d9a000,84ec4000,400,d1d9a43c,1000,d0352da4,50,) at pfr_del_addrs+0x364 pfioctl(4900,c44c,d1d9a000,3,d7836818) at pfioctl+0x3a6b spec_ioctl(de864d68,d777f354,de864d60,d036f7db,40) at spec_ioctl+0x3f spec_vnoperate(de864d68,d777f354,de864d90,d0371d17,d0796cd0) at spec_vnoperate+0x16 VOP_IOCTL(d7acbccc,c44c,d1d9a000,3,d7b49000,d7836818,de864e38,d1cfa800) at VOP_IOCTL+0x40 vn_ioctl(d7b2bdc0,c44c,d1d9a000,d7836818,d07aede0) at vn_ioctl+0xa7 sys_ioctl(d7836818,de864f68,de864f58,5,d7836818) at sys_ioctl+0x125 syscall() at syscall+0x24e --- syscall (number 54) --- 0xe36eabd: OpenBSD 4.3-current (GENERIC) #3: Thu May 8 03:46:09 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC Please retry with a more -current kernel. I guess this is already fixed in rev. 1.23 of radix.c from 9 May. Hi Claudio and Misc, I update it, and it got work!.. just wonderful... Thanks, -- insandotpraja(at)gmaildotcom DMESG: OpenBSD 4.3 (GENERIC) #5: Mon May 19 14:25:30 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error ffixed_disk,invalid_time cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 1069670400 (1020MB) avail mem = 1026265088 (978MB) RTC BIOS diagnostic error ffixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 07/11/06, SMBIOS rev. 2.4 @ 0x3fbf4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0044.071120071047 date 07/11/2007 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL( S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 0xca800/0x1800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:49:03:b3 Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 em1 at pci4 dev 0 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac em2 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:e3 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em3 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:49:03:b4 ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31
Re: Multicasting on OpenBSD
On Mon, 19 May 2008 00:18:49 +0700, Clint Pachl [EMAIL PROTECTED] wrote: Hi Misc@, I did man-it, yes I already know that OBSD got mrouted, mroute dan DVRMPD. I'm just curious about it, cause I read Claudio Jeker's presentation on obsd as routing platform that says there will be: - mpls - l2tp - mac-in-mac - bgp/vpn/vrf which is all breakthrough in free-functional-secure os but nobody touches PIM-SM/SSM. I'm not fussing about it, just curious.. Cause dvrmpd/mrouted kinda.. emm.. outdated? just my Rp2.00 Thanks, Insan Insan Praja SW wrote: Hi Misc@, Just wondering around, is there any multicasting technology (PIM-SM, PIM-SSM etc) currently developed or implemented in OpenBSD?. Since working with this unbelievable OS (especially with routing/filtering/forwarding) I wish to know more about it. Right now I managed to use OBSD4.3-current to BGP routing (redundant/loadbalance with carp), storing the prefix to pftable, set the rtlabel, labeling rules with pf, multiple routing table, tagging rules, just unbelievable awesome. Best of luck to the guys working such a nice OS. Thanks, $ apropos multicast (did people forget about the manpages?) -- insandotpraja(at)gmaildotcom
[rn_walktree+0x3f] Panic During BGP+CARP Fail-Over
Hi Misc@,
While working/experimenting with bgpd + carp and storing the prefix learn
by bgpd to a pftable, the carp peer hang when the other peer is rebooted.
Works ok before storing this prefixes to pftable. Both router are
identical.
So here is the config file on each router, dmesg and of course, the ddb
and trace,
Core1
||
|-- GWprefix feeder
||
Core2
Core1
pf.conf
---
in_if=em0
ext_if=em1
pfsync_if=em2
set skip on lo
set limit {states 3, frags 15000}
scrub in all
table bgpd persist
table bgp_blocked persist
table bogon const {192.168.0.0/16, 172.16.0.0/12, 0.0.0.0/7, 2.0.0.0/8,
5.0.0.
0/8, 7.0.0.0/8, 23.0.0.0/8, 27.0.0.0/8, 31.0.0.0/8, 36.0.0.0/7,
39.0.0.0/8, 42.0
.0.0/8, 49.0.0.0/8, 50.0.0.0/8, 94.0.0.0/7, 100.0.0.0/6, 104.0.0.0/5,
112.0.0.0/
6, 169.254.0.0/16, 173.0.0.0/8, 174.0.0.0/7, 176.0.0.0/5, 184.0.0.0/6}
#allow all loopback interface to communicate
pass quick on lo0 all
#allow pfsync traffic in real interface not virtual interface
pass quick on $pfsync_if proto pfsync keep state
#allow CARP traffic
pass quick on {$in_if, $ext_if} proto carp keep state
#allow CARP traffic
pass quick on {$in_if, $ext_if} proto carp keep state
#allow icmp traffic
pass in quick on {$in_if, $ext_if, $pfsync_if} inet proto icmp from any to
any k
eep state
#pass in quick on $ext_if inet proto icmp from any to any keep state
#allow ssh access
pass in quick on {$in_if, $ext_if, $pfsync_if} proto tcp from any to any
port 22
keep state
pass in quick on {$in_if, $ext_if, $pfsync_if} from bgpd to any keep
state tag
ALLOW
pass out quick on {$in_if, $ext_if, $pfsync_if} tagged ALLOW
block in quick on {$in_if, $ext_if, $pfsync_if} from bgp_blocked to any
tag BL
OK
block out quick on {$in_if, $ext_if, $pfsync_if} tagged BLOK
block in quick on {$in_if, $ext_if, $pfsync_if} from bogon to any tag
BLOCKED
block out quick on {$in_if, $ext_if, $pfsync_if} tagged BLOCKED
bgpd.conf
-
#macros
peer1=202.149.93.241
peer2=10.10.10.5
# global configuration
AS 65022
router-id 10.10.10.3
holdtime 180
holdtime min 3
listen on 127.0.0.1
listen on 10.10.10.3
fib-update yes
nexthop qualify via bgp
log updates
network 202.149.93.176/28
neighbor $peer1 {
remote-as 65021
descr office-gtw
announceall
announce capabilities yes
demote carp
softreconfigin yes
softreconfigout yes
}
neighbor $peer2 {
remote-as 65022
descr core2-exp
announceall
announce capabilities yes
softreconfigin yes
softreconfigout yes
tcp md5sig password lalerijo
set pftable bgpd
}
deny from any
allow from any inet prefixlen 8 - 24
allow from {$peer1 $peer2} inet prefixlen 8 - 30
allow to {$peer1 $peer2} prefix 202.149.93.176/28 prefixlen 8 - 30
# do not accept a default route
deny from any prefix 0.0.0.0/0
# filter bogus networks
deny from any prefix 10.0.0.0/8 prefixlen = 8
deny from any prefix 172.16.0.0/12 prefixlen = 12
deny from any prefix 192.168.0.0/16 prefixlen = 16
deny from any prefix 169.254.0.0/16 prefixlen = 16
deny from any prefix 192.0.2.0/24 prefixlen = 24
deny from any prefix 224.0.0.0/4 prefixlen = 4
deny from any prefix 240.0.0.0/4 prefixlen = 4
Core2
pf.conf
in_if=em0
ext_if=em1
pfsync_if=vlan111
set skip on lo
set limit {states 3, frags 15000}
scrub in all
table bgpd persist
table bgp_blocked persist
table bogon const {192.168.0.0/16, 172.16.0.0/12, 0.0.0.0/7, 2.0.0.0/8,
5.0.0.
0/8, 7.0.0.0/8, 23.0.0.0/8, 27.0.0.0/8, 31.0.0.0/8, 36.0.0.0/7,
39.0.0.0/8, 42.0
.0.0/8, 9.0.0.0/8, 50.0.0.0/8, 94.0.0.0/7,100.0.0.0/6,104.0.0.0/5,
112.0.0.0/6,
169.254.0.0/16, 173.0.0.0/8, 174.0.0.0/7,176.0.0.0/5,184.0.0.0/6}
#allow all loopback interface to communicate
pass quick on lo0 all
pass all
#allow pfsync traffic in real interface not virtual interface
pass quick on $pfsync_if proto pfsync keep state
#allow CARP traffic
pass quick on {$in_if, $ext_if} proto carp keep state
#allow CARP traffic
pass quick on {$in_if, $ext_if} proto carp keep state
#allow icmp traffic
pass in quick on {$in_if, $ext_if, $pfsync_if} inet proto icmp from any to
any k
eep state
#pass in quick on $ext_if inet proto icmp from any to any keep state
#allow ssh access
pass in quick on {$in_if, $ext_if, $pfsync_if} proto tcp from any to any
port 22
keep state
pass in quick on {$in_if, $ext_if, $pfsync_if} from bgpd to any keep
state tag
ALLOW
pass out quick on {$in_if, $ext_if, $pfsync_if} tagged ALLOW
block in quick on {$in_if, $ext_if, $pfsync_if} from bgp_blocked to any
tag BL
OK
block out quick on {$in_if, $ext_if, $pfsync_if} tagged BLOK
block in quick on {$in_if, $ext_if, $pfsync_if} from bogon to any tag
BLOCKED
block out quick on {$in_if, $ext_if, $pfsync_if} tagged BLOCKED
bgpd.conf
-
#macros
peer1=202.149.93.241
peer2=10.10.10.3
# global configuration
AS 65022
router-id 10.10.10.5
Re: Multicasting on OpenBSD
On Mon, 19 May 2008 02:50:33 +0700, Claudio Jeker [EMAIL PROTECTED] wrote: On Mon, May 19, 2008 at 12:36:25AM +0700, Insan Praja SW wrote: On Mon, 19 May 2008 00:18:49 +0700, Clint Pachl [EMAIL PROTECTED] wrote: Hi Misc@, I did man-it, yes I already know that OBSD got mrouted, mroute dan DVRMPD. I'm just curious about it, cause I read Claudio Jeker's presentation on obsd as routing platform that says there will be: - mpls - l2tp - mac-in-mac - bgp/vpn/vrf which is all breakthrough in free-functional-secure os but nobody touches PIM-SM/SSM. I'm not fussing about it, just curious.. Cause dvrmpd/mrouted kinda.. emm.. outdated? just my Rp2.00 Thanks, Maybe that's because working on mpls, ospf6d and vrf at the same time is already way to much for a bit of sparetime hacking. PIM-SM/SSM are beyond complex. It will not happen anytime soon unless some new developers are interested in this and start working on multicast routing. Yap, I truly understand. Made me wanna return to college and push more effort on C :D Good Luck Claudio, Best Regards, -- insandotpraja(at)gmaildotcom
Multicasting on OpenBSD
Hi Misc@, Just wondering around, is there any multicasting technology (PIM-SM, PIM-SSM etc) currently developed or implemented in OpenBSD?. Since working with this unbelievable OS (especially with routing/filtering/forwarding) I wish to know more about it. Right now I managed to use OBSD4.3-current to BGP routing (redundant/loadbalance with carp), storing the prefix to pftable, set the rtlabel, labeling rules with pf, multiple routing table, tagging rules, just unbelievable awesome. Best of luck to the guys working such a nice OS. Thanks, -- insandotpraja(at)gmaildotcom
Re: re(4) Devices Cannot do VLANs?
On Tue, 13 May 2008 03:36:16 +0700, Brad [EMAIL PROTECTED] wrote: Try out the attached patch which has already been commited to -current which fixes the hardware VLAN tagging. Get back to me with the results and I can get this commited to the 4.3/4.2 -stable branches. Hi Brad, I just applied the patch you send me, and it works. Right now I'm able to ssh, sftp, browsing through vlan interface. Thanks, Insan -- insandotpraja(at)gmaildotcom # netstat -ni NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls lo0 33168 Link 21369 021369 0 0 lo0 33168 127/8 127.0.0.121369 021369 0 0 lo0 33168 ::1/128 ::1 21369 021369 0 0 lo0 33168 fe80::%lo0/ fe80::1%lo0 21369 021369 0 0 fxp01500 Link 00:04:ac:56:97:a2 135570 0 157110 0 0 fxp01500 fe80::%fxp0 fe80::204:acff:fe 135570 0 157110 0 0 fxp11500 Link 00:08:c7:aa:ee:0c0 00 0 0 fxp11500 fe80::%fxp1 fe80::208:c7ff:fe0 00 0 0 re0 1500 Link 00:1a:4d:6f:b4:52 683967 0 351625 0 0 re0 1500 fe80::%re0/ fe80::21a:4dff:fe 683967 0 351625 0 0 enc0* 1536 Link 0 00 0 0 pfsync0 1460 Link 0 00 0 0 pflog0 33168 Link 0 00 0 0 vlan111 1500 Link 00:1a:4d:6f:b4:52 1959 0 2327 0 0 vlan111 1500 fe80::%vlan fe80::21a:4dff:fe 1959 0 2327 0 0 vlan111 1500 10.10.10/24 10.10.10.108 1959 0 2327 0 0 vlan2 1500 Link 00:1a:4d:6f:b4:52 681924 0 349251 0 0 vlan2 1500 fe80::%vlan fe80::21a:4ghi:kl 681924 0 349251 0 0 vlan2 1500 abc.def.gh/ abc.def.ghi.jkl 681924 0 349251 0 0
re(4) Devices Cannot do VLANs?
Hi Misc@, Since I got an Gigabyte motherboard, and installed 4.2-Stable and now 4.3-Stable, I cannot get re(4) (Dlink H/W) working with VLANs. When I use VLAN on them, I can ping it, but when I tried to ssh or other services, it wont work. We use 100mbps link on it. So, maybe anyone on the Misc@ have the same problem and maybe there are solution to this. Thanks in advance, Kind Regards, -- insandotpraja(at)gmaildotcom OpenBSD 4.3 (GENERIC.MP) #1582: Wed Mar 12 11:16:45 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 1064890368 (1015MB) avail mem = 1022169088 (974MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xf0100 (33 entries) bios0: vendor Award Software International, Inc. version F2 date 04/25/2007 bios0: Gigabyte Technology Co., Ltd. 945GCM-S2 acpi0 at bios0: rev 0 acpi0: tables DSDT FACP HPET MCFG APIC acpi0: wakeup devices PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5) HUB0(S5) UAR1(S1) UAR2(S1) USB0(S1) USB1(S1) USB2( S1) USB3(S1) USBE(S1) AZAL(S5) PCI0(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2679.87 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 1MB 64b/line 8-way L2 cache cpu0: apic clock running at 133MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2679.55 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu1: 1MB 64b/line 8-way L2 cache ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 2 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEX0) acpiprt2 at acpi0: bus -1 (PEX1) acpiprt3 at acpi0: bus -1 (PEX2) acpiprt4 at acpi0: bus -1 (PEX3) acpiprt5 at acpi0: bus -1 (PEX4) acpiprt6 at acpi0: bus -1 (PEX5) acpiprt7 at acpi0: bus 1 (HUB0) acpicpu0 at acpi0 acpicpu1 at acpi0 acpibtn0 at acpi0: PWRB pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x02 agp0 at pchb0: aperture at 0xc000, size 0x1000 vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 16 (irq 5) azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 16 (irq 5) azalia0: codec[s]: Realtek/0x0888 audio0 at azalia0 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 9) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19 (irq 11) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 18 (irq 6) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 16 (irq 5) ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 9) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb0 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci1 at ppb0 bus 1 fxp0 at pci1 dev 0 function 0 Intel 8255x rev 0x02, i82557: apic 2 int 20 (irq 12), address 00:04:ac:56:97:a2 inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 0 ukphy0 at fxp0 phy 2: Generic IEEE 802.3u media interface, rev. 3: OUI 0x28a5c0, model 0x0008 fxp1 at pci1 dev 1 function 0 Intel 8255x rev 0x05, i82558: apic 2 int 19 (irq 11), address 00:08:c7:aa:ee:0c inphy1 at fxp1 phy 1: i82555 10/100 PHY, rev. 0 re0 at pci1 dev 5 function 0 Realtek 8169SC rev 0x10: RTL8169/8110SCd (0x1800), apic 2 int 21 (irq 10), address 00:1a:4d:6f: b4:52 rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 2 pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01 pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to com patibility wd0 at pciide0 channel 0 drive 0: ST380215AS wd0: 16-sector PIO, LBA48, 76318MB, 156299375 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: apic 2 int 19 (irq 11) iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at pcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo pckbc0 at
Re: re(4) Devices Cannot do VLANs?
On Mon, 12 May 2008 16:37:38 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-05-12, Insan Praja SW [EMAIL PROTECTED] wrote: Since I got an Gigabyte motherboard, and installed 4.2-Stable and now 4.3-Stable, I cannot get re(4) (Dlink H/W) working with VLANs. When I use VLAN on them, I can ping it, but when I tried to ssh or other services, it wont work. We use 100mbps link on it. Your message isn't absolutely clear, do you mean that the same NIC worked on some other motherboard, or is it a new NIC and new motherboard? re0 at pci1 dev 5 function 0 Realtek 8169SC rev 0x10: RTL8169/8110SCd (0x1800), apic 2 int 21 (irq 10), address 00:1a:4d:6f:b4:52 rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 2 There's a known problem with multicast on this particular revision of nic (and also RTL8169/8110SB 0x1000) with, as far as I can make out, all but the newest version of the vendor's driver (carp, ipv6 and ospf use multicast), that shouldn't affect vlan, but maybe there is some other problem people haven't noticed before. The 0x1800 is used on Jetway J7F2 The 0x1000 is used on the Thecus N2100 The vendor driver for these NICs is a great example of why we want full programming data sheets and lists of errata, not just open source drivers filled with hundreds of magic numbers. Hi Stuart and Misc@, This is a onboard interfaces, actually. Well maybe I can recreate the tcpdump I made between this machine to others or reverse. and for the record, when not using vlan on it, it works just ok. Thanks, Insan -- insandotpraja(at)gmaildotcom
Re: 1U IBM or Dell server for firewall
On Wed, 07 May 2008 21:03:18 +0700, smartTERRA NOC [EMAIL PROTECTED] wrote: An IBM x3250 looks like this on dmesg: OpenBSD 4.3-current (GENERIC.MP) #0: Thu Mar 13 05:46:13 WIT 2008 As discussed on this ML a MP enable kernel is not a good choice for a performant firewall solution... Falk Agreed, but this is a web server. I just like to see that an openBSD 64-bit MP machines working. Maybe if I had another similar machine I could make a simple comparison and bring them to the ML. And this is from an Intel s3000AH 4.3-current OpenBSD 4.3-current (GENERIC) #0: Fri Apr 18 02:41:38 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC RTC BIOS diagnostic error efixed_disk,invalid_time cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE, SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,TM2,CNXT-ID,CX16,xTPR real mem = 1069719552 (1020MB) avail mem = 1026269184 (978MB) RTC BIOS diagnostic error efixed_disk,invalid_time mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 07/11/06, SMBIOS rev. 2.4 @ 0x3fbf4000 (42 entries) bios0: vendor Intel Corporation version S3000.86B.02.00.0046.112220071112 date 11/22/2007 bios0: Intel S3000AH acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4) UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 1 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus 2 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: FVS, 3000, 2400 MHz acpibtn0 at acpi0: SLPB bios0: ROM list: 0xc/0x9000 0xc9000/0x1800 0xca800/0x1800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0x00 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: irq 9 pci1 at ppb0 bus 1 ppb1 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: irq 9 pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: irq 11 pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 Intel PRO/1000MT (82573E) rev 0x03: irq 9, address 00:15:17:25:0a:9d Intel 82573E Serial rev 0x03 at pci3 dev 0 function 3 not configured Intel 82573E KCS rev 0x03 at pci3 dev 0 function 4 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: irq 10 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: irq 11 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: irq 11 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 em1 at pci4 dev 0 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:ac em2 at pci4 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 11, address 00:07:e9:0f:44:e3 vga1 at pci4 dev 4 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em3 at pci4 dev 5 function 0 Intel PRO/1000MT (82541GI) rev 0x05: irq 9, address 00:15:17:25:0a:9e ichpcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01: PM disabled pciide0 at pci0 dev 31 function 1 Intel 82801GB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: irq 10 iic0 at ichiic0 adt0 at iic0 addr 0x2e: sch5027 rev 0x69 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-5300CL5 usb1 at uhci0: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 npx0 at isa0
Re: 1U IBM or Dell server for firewall
On Tue, 06 May 2008 11:23:46 +0700, Tomas Bodzar [EMAIL PROTECTED] wrote: Hi, From HW view is more than enough this type : http://www-03.ibm.com/systems/x/hardware/rack/x3250/index.html but I don't know how much is HW from this server supported in OpenBSD.In specifications are only Win systems,so best way is to ask IBM about support under their Unixes on this device (it tells something about possibility to run it on OpenBSD).Then you can compare it against HW list from OpenBSD. It's for way - I NEED JUST IBM (due to company policy or something like this) Better (and lightest) way is purchase some from KD85. Ofcourse,for pf is some old 1U with PIII , 256 RAM enough too.You can get one or two year warranty even on these old types. TB -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of LEVAI Daniel Sent: Monday, May 05, 2008 3:09 PM To: OpenBSD misc Subject: 1U IBM or Dell server for firewall Hi! I'm in need of a 1U IBM (or Dell as a last resort) server for a firewall in our office. To be honest, I'm not quite familiar with IBM servers of these kind, but I'm sure that someone is using one already for a fw, so I just need a model number or configuration which is working perfectly with OpenBSD 4.3. It doesn't have to be a fancy configuration, it will be just a simple firewall... If someone would be kind enough to recommend me an already working and tested IBM server, I'd be very happy and thankful :) Thanks in advance: Daniel -- LIVAI Daniel GPG key ID = 0x4AC0A4B1 Key fingerprint = D037 03B9 C12D D338 4412 2D83 1373 917A 4AC0 A4B1 An IBM x3250 looks like this on dmesg: OpenBSD 4.3-current (GENERIC.MP) #0: Thu Mar 13 05:46:13 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 2145841152 (2046MB) avail mem = 2072121344 (1976MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.33 @ 0x7fee2000 (29 entries) bios0: vendor IBM version IBM BIOS Version 1.35-[G9E135AUS-1.35]- date 09/29/2 007 bios0: IBM IBM System x3250 -[436442A]- acpi0 at bios0: rev 0 acpi0: tables DSDT FACP MCFG APIC BOOT SPCR SSDT acpi0: wakeup devices PEG_(S4) PEG2(S4) EXP1(S4) EXP5(S4) EXP6(S4) PCIB(S4) COM1 (S4) COM2(S4) USB1(S4) USB2(S4) USB3(S4) USB4(S4) EUSB(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Xeon(R) CPU 3040 @ 1.86GHz, 1866.96 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX 16, xTPR,NXE,LONG cpu0: 2MB 64b/line 8-way L2 cache cpu0: apic clock running at 266MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Xeon(R) CPU 3040 @ 1.86GHz, 1866.73 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX 16, xTPR,NXE,LONG cpu1: 2MB 64b/line 8-way L2 cache ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 12 (PEG_) acpiprt2 at acpi0: bus 6 (PEG2) acpiprt3 at acpi0: bus 5 (EXP1) acpiprt4 at acpi0: bus 1 (EXP5) acpiprt5 at acpi0: bus 3 (EXP6) acpiprt6 at acpi0: bus 26 (PCIB) acpicpu0 at acpi0 acpicpu1 at acpi0 acpibtn0 at acpi0: PWRB ipmi at mainbus0 not configured pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel E7230 Host rev 0xc0 ppb0 at pci0 dev 1 function 0 Intel E7230 PCIE rev 0xc0: apic 2 int 16 (irq 7) pci1 at ppb0 bus 12 ppb1 at pci0 dev 3 function 0 Intel 82975X PCIE rev 0xc0: apic 2 int 16 (irq 7 ) pci2 at ppb1 bus 6 ppb2 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 17 (irq 10) pci3 at ppb2 bus 5 ppb3 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01: apic 2 int 17 (irq 10) pci4 at ppb3 bus 1 bge0 at pci4 dev 0 function 0 Broadcom BCM5721 rev 0x21, BCM5750 C1 (0x4201): apic 2 int 16 (irq 7), address 00:1a:64:6e:a0:9a brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb4 at pci0 dev 28 function 5 Intel 82801G PCIE rev 0x01: apic 2 int 16 (irq 11) pci5 at ppb4 bus 3 bge1 at pci5 dev 0 function 0 Broadcom BCM5721 rev 0x21, BCM5750 C1 (0x4201): apic 2 int 17 (irq 10), address 00:1a:64:6e:a0:9b brgphy1 at bge1 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 5) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19 (irq 10) uhci2 at pci0
Re: DLINK DFE530T as INTEL PRO/1000 MT Subtitution?
On Mon, 05 May 2008 20:07:23 +0700, Eke Nordin [EMAIL PROTECTED] wrote: On Sat, May 3, 2008 at 2:14 PM, Insan Praja SW [EMAIL PROTECTED] wrote: Hi Misc@, Today I find a very difficult situation, I cannot find any shop in Indonesia that have stocks on single port intel PRO/1000MT PCI NICs. So I had to make a decision, replace this NICs with something more available and that would be Dlink DFE530T NIC, which I had no experience on this NICs. Many on list recommend these em(4) cards, but nothing on Dlink. I'm basically trying to develop Loadbalance/redundant Puffy Gigabit routers, on Intel S3000AH boards which already had onboard em(4)s. I already have installed i386 4.3-current on this boards, doing bgpd, pf, and carp. Btw, 4,3-current seem to do fine in these boxes. So, I'm lookin forward for any hints, suggestions or someone to shares their experiences with typical setup. Kind Regards, DFE sounds like 10/100 only, you didn't mean DGE530T? Those works very well (they are sk(4) devices), but 32bit/33MHz PCI doesn't quite fill a 1000baseT. My bad, it actually a DGE530T. Thanks for the info Ake.. Kind regards, Insan -- insandotpraja(at)gmaildotcom
DLINK DFE530T as INTEL PRO/1000 MT Subtitution?
Hi Misc@, Today I find a very difficult situation, I cannot find any shop in Indonesia that have stocks on single port intel PRO/1000MT PCI NICs. So I had to make a decision, replace this NICs with something more available and that would be Dlink DFE530T NIC, which I had no experience on this NICs. Many on list recommend these em(4) cards, but nothing on Dlink. I'm basically trying to develop Loadbalance/redundant Puffy Gigabit routers, on Intel S3000AH boards which already had onboard em(4)s. I already have installed i386 4.3-current on this boards, doing bgpd, pf, and carp. Btw, 4,3-current seem to do fine in these boxes. So, I'm lookin forward for any hints, suggestions or someone to shares their experiences with typical setup. Kind Regards, Insan -- insandotpraja(at)gmaildotcom
MPLS (Yay!)
Hi Misc@, Last weekend I took a peek at daily changelog. Suprising enough to see that MPLS actually made it. Wow! OpenBSD maybe the only multiplatform OS, that could turn a desktop into a MPLS router.. Great Job guys! (I wonder when you guys start on 802.1ad 802.1ah :D) Cheers, Insan -- insandotpraja(at)gmaildotcom
Re: MPLS (Yay!)
On Mon, 28 Apr 2008 07:00:47 +0700, Aaron Glenn [EMAIL PROTECTED] wrote: On Sun, Apr 27, 2008 at 4:28 PM, Insan Praja SW [EMAIL PROTECTED] wrote: Hi Misc@, Last weekend I took a peek at daily changelog. Suprising enough to see that MPLS actually made it. Wow! OpenBSD maybe the only multiplatform OS, that could turn a desktop into a MPLS router.. Great Job guys! (I wonder when you guys start on 802.1ad 802.1ah :D) there is a significant amount of work to be done to make OpenBSD a usable LER. but yeah, it's very exciting...to me at least. aaron.glenn I share the same excitement Aaron, glad that I'm not alone :D -- insandotpraja(at)gmaildotcom
Howto Pass googlebot on Webserver
Hi Misc@,
While testing my brandnew 4.3-beta AMD64.MP webserver, I apply a simple
pf.conf to let some connection in and all out. But something interesting
came out, pf actually blocks my webserver googlebot apps originated from
the server, which is strange since I use pass out all. So, I'm wondering
if anybody on Misc@ could help me out with this.
I appreciate any replies related to this.
Thanks,
Insan
A. pf.conf
ext_if=bge0
set skip on lo
set optimization aggressive
set ruleset-optimization basic
set block-policy drop
scrub in all
antispoof quick for { lo $ext_if }
block log all
pass quick on $ext_if inet proto tcp from any to $ext_if:0 port { http,
https, ssh } keep state
pass quick on $ext_if inet proto udp from abc.def.ghi.241 to $ext_if:0
port snmp
pass inet proto icmp from any to $ext_if:0
pass out log all
B. PFCTL -s rules
scrub in all fragment reassemble
block drop in quick on ! lo inet from 127.0.0.0/8 to any
block drop in quick on ! lo inet6 from ::1 to any
block drop in quick inet6 from ::1 to any
block drop in quick on lo0 inet6 from fe80::1 to any
block drop in quick on bge0 inet6 from fe80::21a:64ff:fe6e:a09a to any
block drop in quick inet from 127.0.0.1 to any
block drop in quick on ! bge0 inet from abc.def.ghi.240/28 to any
block drop in quick inet from abc.def.ghi.245 to any
block drop log all
pass quick on bge0 inet proto tcp from any to abc.def.ghi.245 port = www
flags S/SA keep state
pass quick on bge0 inet proto tcp from any to abc.def.ghi.245 port = https
flags S/SA keep state
pass quick on bge0 inet proto tcp from any to abc.def.ghi.245 port = ssh
flags S/SA keep state
pass quick on bge0 inet proto udp from abc.def.ghi.241 to abc.def.ghi.245
port = snmp keep state
pass inet proto icmp from any to abc.def.ghi.245 keep state
pass out log all flags S/SA keep state
C. From tcpdump -ettvi pflog0
1203958253.063557 rule 3/(match) [uid 0, pid 15307] block out on bge0:
abc.def.ghi.245.www crawl-66-249-72-103.googlebot.com.51771: [|tcp] (ttl
64, id 38177, len 1470
--
Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Re: Howto Pass googlebot on Webserver [SOLVED]
On Tue, 26 Feb 2008 09:31:29 +0700, Ted Unangst [EMAIL PROTECTED] wrote: On 2/25/08, Insan Praja SW [EMAIL PROTECTED] wrote: Hi Misc@, While testing my brandnew 4.3-beta AMD64.MP webserver, I apply a simple pf.conf to let some connection in and all out. But something interesting came out, pf actually blocks my webserver googlebot apps originated from the server, which is strange since I use pass out all. So, I'm wondering if anybody on Misc@ could help me out with this. I appreciate any replies related to this. Thanks, block drop in quick inet from 127.0.0.1 to any hmmm Well, It must bad since the hmmm word came out.. :D But really, even after I removed the antispoof dan the scrub, nothin changes.. and, finally change block log all to block in log all it solve the problem.. I wonder why... because the last rule is to pass out all. Isn't pf plays last matching rule? Thanks, Insan -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Net-SNMP keep died unexpectedly
Hi Misc@, I'm currently using a patched net-snmp-5.4p1 (patch came from packetmischief.ca) on an 4.2 AMD64 box. It seem that snmpd stopped unexpectedly over and over again, I can't figured out why because for about 1 minute it works just fine. Maybe someone on the list can point me the problem or workaround for this. Thanks, Insan, PKG_INFO: GreenOfficeBorder# pkg_info -a | grep snmp net-snmp-5.4p1 extendable SNMP implementation php5-snmp-5.2.3 snmp protocol extensions for php5 DMESG: OpenBSD 4.2-stable (GREENLINKS.MP) #4: Wed Feb 6 10:17:13 WIT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/ GREENLINKS.MP real mem = 1063776256 (1014MB) avail mem = 1021526016 (974MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x3f6ee000 (78 entries) bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00 R1.10.2151.A1 date 05/08/2006 bios0: FUJITSU SIEMENS D2151-A1 acpi at mainbus0 not configured mainbus0: Intel MP Specification (Version 1.1) cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.47 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 1MB 64b/line 8-way L2 cache cpu0: apic clock running at 133MHz mpbios: bus 0 is type PCI mpbios: bus 1 is type PCI mpbios: bus 2 is type PCI mpbios: bus 3 is type PCI mpbios: bus 4 is type PCI mpbios: bus 5 is type PCI mpbios: bus 6 is type PCI mpbios: bus 7 is type PCI mpbios: bus 8 is type PCI mpbios: bus 9 is type PCI mpbios: bus 10 is type PCI mpbios: bus 11 is type PCI mpbios: bus 12 is type ISA ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel 82945GP rev 0x02 vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 18 (irq 9) azalia0: host: High Definition Audio rev. 1.0 azalia0: codec: Realtek ALC260 (rev. 4.0), HDA version 1.0 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01 pci1 at ppb0 bus 3 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01 pci2 at ppb1 bus 5 bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1 (0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79 :df brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01 pci3 at ppb2 bus 7 ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01 pci4 at ppb3 bus 9 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 22 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 21 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 20 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) usb0 at ehci0: USB revision 2.0 uhub0 at usb0: Intel EHCI root hub, rev 2.00/1.00, addr 1 ppb4 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xe1 pci5 at ppb4 bus 11 em0 at pci5 dev 5 function 0 Intel PRO/1000MT (82540EM) rev 0x02: apic 2 int 22 (irq 10), address 00:07:e9:0f:44:37 rl0 at pci5 dev 7 function 0 D-Link Systems 530TX+ rev 0x10: apic 2 int 21 (irq 5), address 00:11:95:63:48:63 rlphy0 at rl0 phy 0: RTL internal PHY pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01 pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to com patibility wd0 at pciide0 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd1 at pciide0 channel 0 drive 1: ST3160215AS wd1: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: TSSTcorp, DVD-ROM SH-D162D, SB00 SCSI0 5/cdrom removable cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: apic 2 int 19 (irq 9) iic0 at ichiic0 usb1 at uhci0: USB revision 1.0 uhub1 at usb1: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb4 at uhci3: USB revision 1.0 uhub4 at usb4: Intel UHCI root hub, rev 1.00/1.00, addr 1 isa0 at pcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at
pf rtable, bgpd, and route (8) (was: Anyone lucky with pf rtable ?)
On Fri, 25 Jan 2008 16:28:42 +0700, Henning Brauer [EMAIL PROTECTED] wrote: * Insan Praja SW [EMAIL PROTECTED] [2008-01-24 18:43]: Hi Misc@, I'm currently setup bgp router using openbgp. Routes learned from openbgpd are stored in routing table 1. So, I got this client from NET2, coming from the same interface that my ibgp peer coming from, and I want to pass client from NET2 going to regional exchange to QUAGGA router. I got no luck with: pass on $ext_if from $NET2 to any modulate state rtable 1, NET2 always use the default route via $ext_if when going to regional exchange I appreciate any input and suggestion regarding this. assigning an rtable decision on the outbond interface is too late, since the routang decision has already been taken then. yu have to do it in the inbound direction. that is true for the reverse path too. Hi Misc@, finally figured out how to use bgpd rtable into pf, and pftable and I get more curious. When I use route table 1, should all routes learned from default route copied to rtable 1 or I had to build it on my own? and when I did, I'm having problem with directly connected network, which I cannot insert mac address as default gateway, while using default rtable I see some of directly connected system/host had its default gateway in mac address. Anyone had any experience with this?. I Also like to ask, maybe a stupid question, how to display route label (from bgpd.conf) using netstat or route show? Thanks, Insan
Re: Anyone lucky with pf rtable ?
On Fri, 25 Jan 2008 16:28:42 +0700, Henning Brauer [EMAIL PROTECTED]
wrote:
* Insan Praja SW [EMAIL PROTECTED] [2008-01-24 18:43]:
Hi Misc@,
I'm currently setup bgp router using openbgp. Routes learned from
openbgpd
are stored in routing table 1. So, I got this client from NET2, coming
from
the same interface that my ibgp peer coming from, and I want to pass
client
from NET2 going to regional exchange to QUAGGA router. I got no luck
with:
pass on $ext_if from $NET2 to any modulate state rtable 1, NET2 always
use the default route via $ext_if when going to regional exchange
I appreciate any input and suggestion regarding this.
assigning an rtable decision on the outbond interface is too late,
since the routang decision has already been taken then. yu have to do
it in the inbound direction. that is true for the reverse path too.
Hi Henning and Misc@,
I figured out that my pf.conf on pass on $ext_if from $NET2 to any
modulate state rtable 1 is wrong after carefully trying to understand pf.
So, I change it to #pass in on $int_if from $NET2 to any modulate state
rtable 1. It doesn't change anything, NET2 always going to the default
gateway.
Thanks,
Insan
ext_if = vlan2
ext_if0 = vlan111
ext_if1 = vlan4
ext_if2 = vlan22
int_if = em0
int_if0 = rl0
int_priv = {$int_if $int_if0}
port_proxy = 3128
mail_server = 202.149.93.14
icmp_types = { echoreq, unreach }
3d_net = {202.149.93.8 202.149.93.32/28}
3d_local_net = {202.149.93.32/27}
eazy_net = {210.23.64.0/24, 210.23.66.0/24, 210.23.68.0/24,
210.23.79.0/24}
simaya_net = {202.149.93.6 202.149.93.16/28}
simaya_local_net = {202.149.93.80/28}
gl_net = {10.10.10.0/24 192.168.0.0/24}
eazy_port = 15001:2
simaya_port = 20001:25000
gl_port = 25001:3
tigadport = 30001:35000
ejiport = 35001:4
serport = 40001:45001
#TABLE
table eazy_net const {210.23.64.0/24, 210.23.66.0/24, 210.23.68.0/24,
210.23.79.0/24}
table simaya_net const {202.149.93.6, 202.149.93.16/28}
table 3d_net const {202.149.93.8, 202.149.93.32/27}
table server_ip const {202.149.93.242, 202.149.93.243, 202.149.93.244,
202.149.93.245, 202.149.93.246} # Active IP on vlan4
table gl_net const {192.168.0.0/24, 10.10.10.0/24} # internal network
and management network
table rfc1918 const { 0.0.0.0/32, 1.0.0.0/8, 2.0.0.0/8,
5.0.0.0/8,7.0.0.0/8, 10.0.0.0/8, 23.0.0.0/8, 27.0.0.0/8, 31.0.0.0/8,
36.0.0.0/8, 37.0.0.0/8, 39.0.0.0/8, 42.0.0.0/8, 49.0.0.0/8, 50.0.0.0/8,
100.0.0.0/8, 101.0.0.0/8, 102.0.0.0/8, 103.0.0.0/8, 1
04.0.0.0/8, 105.0.0.0/8, 106.0.0.0/8, 107.0.0.0/8, 108.0.0.0/8,
109.0.0.0/8, 110.0.0.0/8, 111.0.0.0/8, 112.0.0.0/8, 113.0.0.0/
8, 127.0.0.0/8, 169.254.0.0/16, 172.16.0.0/12, 173.0.0.0/8, 175.0.0.0/8,
176.0.0.0/8, 177.0.0.0/8, 178.0.0.0/8, 179.0.0.0/8, 1
80.0.0.0/8, 181.0.0.0/8, 182.0.0.0/8, 183.0.0.0/8, 184.0.0.0/8,
185.0.0.0/8, 192.0.2.0/24, 192.168.0.0/16, 197.0.0.0/8, 174.0.
0.0/8, 223.0.0.0/8 } # martians of the internet
set ruleset-optimization basic
set optimization aggressive
set block-policy drop
scrub in all
#QUEUE
altq on $ext_if2 bandwidth 6Mb hfsc(linkshare 5Mb upperlimit 5Mb) queue
{office, eazy, simaya, 3d, server}
queue officebandwidth 256Kb priority 7 qlimit 500 hfsc (realtime 50%
default ecn)
queue eazy bandwidth 1024Kb priority 6 qlimit 500 hfsc (upperlimit
1024Kb ecn)
queue simayabandwidth 2564Kb priority 6 qlimit 500 hfsc (upperlimit
2564Kb ecn)
queue 3dbandwidth 1024Kb priority 6 qlimit 500 hfsc (upperlimit
1024Kb ecn)
queue server bandwidth 128Kb priority 6 qlimit 500 hfsc (upperlimit 512Kb
ecn)
altq on $ext_if bandwidth 8Mb hfsc(linkshare 5Mb upperlimit 5Mb) queue
{dn_office, dn_eazy, dn_simaya, dn_3d, up_server}
queue dn_office bandwidth 512Kb priority 7 qlimit 500 hfsc (realtime 50%
default ecn)
queue dn_eazy bandwidth 1024Kb priority 6 qlimit 500 hfsc (upperlimit
1024Kb ecn)
queue dn_simaya bandwidth 2564Kb priority 6 qlimit 500 hfsc (upperlimit
2564Kb ecn)
queue dn_3d bandwidth 1024Kb priority 6 qlimit 500 hfsc (upperlimit 1024Kb
ecn)
queue up_server bandwidth 512Kb priority 6 qlimit 500 hfsc (upperlimit
1024Kb ecn)
altq on $ext_if1 bandwidth 2Mb hfsc(linkshare 2Mb upperlimit 2Mb) queue
{dn_trg, dn_nas, dn_ejigem, dn_matabumi, dn_crot}
queue dn_trg bandwidth 25% priority 6 qlimit 500 hfsc (realtime 50%
default ecn)
queue dn_nas bandwidth 25% priority 5 qlimit 500 hfsc (upperlimit 25% ecn)
queue dn_matabumi bandwidth 25% priority 6 qlimit 500 hfsc (upperlimit 25%
ecn)
queue dn_crot bandwidth 15% priority 6 qlimit 500 hfsc (upperlimit 25% ecn)
queue dn_ejigem bandwidth 10% priority 6 qlimit 500 hfsc (upperlimit 10%
ecn)
nat-anchor ftp-proxy/*
rdr-anchor ftp-proxy/*
no nat on $ext_if inet from 3d_net to any
nat pass on $ext_if inet from gl_net to any - $ext_if
nat pass on $ext_if1 inet from gl_net to any - $ext_if1
nat pass on $ext_if2 inet from $eazy_net to any - $ext_if2 port $ejiport
source-hash
nat pass on $ext_if2 inet from $3d_net to any - $ext_if2 port $tigadport
source-hash
nat pass on $ext_if2 inet from $simaya_net to any
Anyone lucky with pf rtable ?
Hi Misc@, I'm currently setup bgp router using openbgp. Routes learned from openbgpd are stored in routing table 1. So, I got this client from NET2, coming from the same interface that my ibgp peer coming from, and I want to pass client from NET2 going to regional exchange to QUAGGA router. I got no luck with: pass on $ext_if from $NET2 to any modulate state rtable 1, NET2 always use the default route via $ext_if when going to regional exchange I appreciate any input and suggestion regarding this. Thanks, Insan Praja SW as 65021 |---| |--| |QUAGGA |--| reg exchange |--| |---| |--| AS 65021| | ext_if1|-|ext_if2 | |-| OpenBSD gtw |NAT---UPSTREAM--INTERNET | |-| |---| | NET2 | |---| Non BGP clients
Cannot Inject routes learned from iBGP session to FIB
Dear Misc@, Currently I'm setting up ibgp session between quagga and openbgpd, I got it up, but it seem no route injected to the fib, when I traced to an address learned from quagga, it still choose default route and using bgpctl fib couple and bgpctl -n reload is not changing anything. If upgrading to -current will solved this, then it's do-able. I appreciated any input to this matter. Thanks, Insan OpenBSD 4.2-stable (GREENLINKS.MP) #2: Thu Nov 29 02:01:15 WIT 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/ GREENLINKS.MP real mem = 1063776256 (1014MB) avail mem = 1021526016 (974MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.34 @ 0x3f6ee000 (78 entries) bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 5.00 R1.10.2151.A1 date 05/08/2006 bios0: FUJITSU SIEMENS D2151-A1 acpi0 at mainbus0: rev 2 acpi0: tables DSDT FACP ASF! SSDT MCFG HPET APIC BOOT acpitimer at acpi0 not configured acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.50 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu0: 1MB 64b/line 8-way L2 cache cpu0: apic clock running at 133MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) D CPU 2.66GHz, 2660.07 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S SE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG cpu1: 1MB 64b/line 8-way L2 cache ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 0 (PEXA) acpiprt2 at acpi0: bus 3 (PEXB) acpiprt3 at acpi0: bus 5 (PEXC) acpiprt4 at acpi0: bus 7 (PEXD) acpiprt5 at acpi0: bus 9 (PEXE) acpiprt6 at acpi0: bus 11 (PCIH) acpicpu at acpi0 not configured acpicpu at acpi0 not configured acpicpu at acpi0 not configured acpicpu at acpi0 not configured acpibtn at acpi0 not configured pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 Intel 82945GP rev 0x02 vga1 at pci0 dev 2 function 0 Intel 82945G Video rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 18 (irq 9) azalia0: host: High Definition Audio rev. 1.0 azalia0: codec: Realtek ALC260 (rev. 4.0), HDA version 1.0 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01 pci1 at ppb0 bus 3 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x01 pci2 at ppb1 bus 5 bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1 (0x4001): apic 2 int 17 (irq 11), address 00:30:05:c9:79 :df brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01 pci3 at ppb2 bus 7 ppb3 at pci0 dev 28 function 3 Intel 82801GB PCIE rev 0x01 pci4 at ppb3 bus 9 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 22 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 21 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 20 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 11) ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0: Intel EHCI root hub, rev 2.00/1.00, addr 1 ppb4 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xe1 pci5 at ppb4 bus 11 em0 at pci5 dev 5 function 0 Intel PRO/1000MT (82540EM) rev 0x02: apic 2 int 22 (irq 10), address 00:07:e9:0f:44:37 rl0 at pci5 dev 7 function 0 D-Link Systems 530TX+ rev 0x10: apic 2 int 21 (irq 5), address 00:11:95:63:48:63 rlphy0 at rl0 phy 0: RTL internal PHY pcib0 at pci0 dev 31 function 0 Intel 82801GB LPC rev 0x01 pciide0 at pci0 dev 31 function 2 Intel 82801GB SATA rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to com patibility wd0 at pciide0 channel 0 drive 0: ST3160211AS wd0: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd1 at pciide0 channel 0 drive 1: ST3160215AS wd1: 16-sector PIO, LBA48, 152627MB, 312581808 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: TSSTcorp, DVD-ROM SH-D162D, SB00 SCSI0 5/cdrom removable cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel 82801GB SMBus rev 0x01: apic 2 int 19 (irq 9) iic0 at ichiic0 usb1 at uhci0: USB revision 1.0 uhub1 at usb1: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at
Re: Cannot Inject routes learned from iBGP session to FIB
On Mon, 21 Jan 2008 21:50:42 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008/01/21 21:36, Insan Praja SW wrote: Currently I'm setting up ibgp session between quagga and openbgpd, I got it up, but it seem no route injected to the fib, when I traced to an address learned from quagga, it still choose default route and using bgpctl fib couple and bgpctl -n reload is not changing anything. If upgrading to -current will solved this, then it's do-able. I appreciated any input to this matter. How are your nexthops? (bgpctl sh nex) Like this, GreenOfficeBorder# bgpctl -n show next Nexthop State 202.149.93.9 valid vlan2 UP, Ethernet, active, 100 MBit/s 202.149.93.5 valid vlan2 UP, Ethernet, active, 100 MBit/s 202.149.93.4 valid vlan2 UP, Ethernet, active, 100 MBit/s 202.149.93.3 valid vlan2 UP, Ethernet, active, 100 MBit/s 202.149.93.1 valid vlan2 UP, Ethernet, active, 100 MBit/s 202.149.94.255 valid 202.149.94.233 valid 202.149.94.232 valid 202.149.94.229 valid 202.149.94.169 valid Thanks, Insan -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Re: Cannot Inject routes learned from iBGP session to FIB
On Mon, 21 Jan 2008 21:50:42 +0700, Stuart Henderson [EMAIL PROTECTED]
wrote:
On 2008/01/21 21:36, Insan Praja SW wrote:
Currently I'm setting up ibgp session between quagga and openbgpd, I got
it up, but it seem no route injected to the fib, when I traced to an
address learned from quagga, it still choose default route and using
bgpctl fib couple and bgpctl -n reload is not changing anything. If
upgrading to -current will solved this, then it's do-able.
I appreciated any input to this matter.
How are your nexthops? (bgpctl sh nex)
One thing Stuart,
When I do bgpctl -n show rib none of the learned routes gets selected, I
wonder is it because iBGP combination with default or something on the
bgpd.conf?
Here is my conf.
AS 65021
router-id 202.149.93.226
listen on 202.149.93.2
fib-update yes
route-collector yes
neighbor 202.149.93.1 {
remote-as 65021
descr upstream
multihop2
local-address 202.149.93.225
holdtime180
holdtime min3
announceself
}
deny from any prefix 0.0.0.0/32
# filter bogus networks
deny from any prefix 10.0.0.0/8 prefixlen = 8
deny from any prefix 172.16.0.0/12 prefixlen = 12
deny from any prefix 192.168.0.0/16 prefixlen = 16
deny from any prefix 169.254.0.0/16 prefixlen = 16
deny from any prefix 192.0.2.0/24 prefixlen = 24
deny from any prefix 224.0.0.0/4 prefixlen = 4
deny from any prefix 240.0.0.0/4 prefixlen = 4
--
Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Re: Cannot Inject routes learned from iBGP session to FIB
On Mon, 21 Jan 2008 21:50:42 +0700, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008/01/21 21:36, Insan Praja SW wrote: Currently I'm setting up ibgp session between quagga and openbgpd, I got it up, but it seem no route injected to the fib, when I traced to an address learned from quagga, it still choose default route and using bgpctl fib couple and bgpctl -n reload is not changing anything. If upgrading to -current will solved this, then it's do-able. I appreciated any input to this matter. How are your nexthops? (bgpctl sh nex) Hi misc@, after reading carefully the man page(s), I got it work. Thanks all, it all working when I removed route-collector yes Thanks for all the hints, Insan, PS: I promise to read the man pages carefully :D -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Error Building Userland on -current
Hi Misc, I just update my src and build a new kernel. It works, only when I tried to build new userland, it stop at: /usr/src/usr.bin/netstat/main.c:374: error: too few arguments to function rt_stats *** Error code 1 Stop in /usr/src/usr.bin/netstat. The main.c version is 1.73 Thanks, Insan
Re: Default Route Issues
On Tue, 11 Dec 2007 22:40:06 +0700, Bret [EMAIL PROTECTED] wrote: Greets OK here is the update: Internet I OpenBSD 4.2 (1) --- wired LAN I wireless card - 10.60.128.1 I I (the following is the problem box) I wireless card ral0 - 10.60.128.2 I OpenBSD 4.2 (2) wired LAN em0 - 10.60.130.1 I wireless card ral1 - 10.60.129.1 I am pulling this info off another server/router that I have at home so the vr0 interface is replaced with the em0 First ifconfig -A, netstat -rnfinet without the wired lan (em0) enabled. *ifconfig -A* lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33224 groups: lo inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7 ral0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:08:a1:ad:0a:32 groups: wlan egress media: IEEE802.11 OFDM54 mode 11g (DS1 mode 11g) status: active ieee80211: nwid tri-statebroadband.com_2 chan 3 bssid 00:08:a1:ad:0a:46 50dB 100dBm inet 10.60.128.2 netmask 0xc000 broadcast 10.60.191.255 inet6 fe80::208:a1ff:fead:a32%ral0 prefixlen 64 scopeid 0x1 ral1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:08:a1:b5:64:e2 groups: wlan media: IEEE802.11 OFDM54 mode 11g hostap (autoselect mode 11g hostap) status: active ieee80211: nwid tri-statebroadband.com_2_1 chan 1 bssid 00:08:a1:b5:64:e2 100dBm inet 10.60.129.1 netmask 0xc000 broadcast 10.60.191.255 inet6 fe80::208:a1ff:feb5:64e2%ral1 prefixlen 64 scopeid 0x2 fxp0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:e0:81:65:f2:4d media: Ethernet autoselect (none) status: no carrier em0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:e0:81:65:f2:4c media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active pflog0: flags=0 mtu 33224 enc0: flags=0 mtu 1536 *netstat -rnfinet* Routing tables Internet: DestinationGatewayFlagsRefs UseMtu Interface default10.60.128.1UGS 3 89 - ral0 10.60.128/18 link#1 UC 10 - ral0 10.60.128.100:08:a1:ad:0a:46 UHLc18 - ral0 127/8 127.0.0.1 UGRS00 33224 lo0 127.0.0.1 127.0.0.1 UH 10 33224 lo0 224/4 127.0.0.1 URS 00 33224 lo0 at this time I can ping the OpenBSD (1) server fine everything works, I now enable em0 and reboot to get the following, ( I do not have routed_flags=-q enabled but I get the same results if I do have it enabled. *ifconfig -A *lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33224 groups: lo inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7 ral0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:08:a1:ad:0a:32 groups: wlan egress media: IEEE802.11 OFDM54 mode 11g (OFDM36 mode 11g) status: active ieee80211: nwid tri-statebroadband.com_2 chan 3 bssid 00:08:a1:ad:0a:46 50dB 100dBm inet 10.60.128.2 netmask 0xc000 broadcast 10.60.191.255 inet6 fe80::208:a1ff:fead:a32%ral0 prefixlen 64 scopeid 0x1 ral1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:08:a1:b5:64:e2 groups: wlan media: IEEE802.11 OFDM54 mode 11g hostap (autoselect mode 11g hostap) status: active ieee80211: nwid tri-statebroadband.com_2_1 chan 1 bssid 00:08:a1:b5:64:e2 100dBm inet 10.60.129.1 netmask 0xc000 broadcast 10.60.191.255 inet6 fe80::208:a1ff:feb5:64e2%ral1 prefixlen 64 scopeid 0x2 fxp0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:e0:81:65:f2:4d media: Ethernet autoselect (none) status: no carrier em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:e0:81:65:f2:4c media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active inet 10.60.130.1 netmask 0xc000 broadcast 10.60.191.255 inet6 fe80::2e0:81ff:fe65:f24c%em0 prefixlen 64 scopeid 0x4 pflog0: flags=0 mtu 33224 enc0: flags=0 mtu 1536 *netstat -rnfinet *Routing tables Internet: DestinationGatewayFlagsRefs UseMtu Interface default10.60.128.1UGS 00 - ral0 10.60.128/18 link#4 UC 10 - em0 10.60.128.1link#4 UHLc2 13 - em0 127/8 127.0.0.1 UGRS00 33224 lo0 127.0.0.1 127.0.0.1 UH 10 33224 lo0 224/4 127.0.0.1 URS 00 33224 lo0 As you can see I now have a fubared routing table. I can no longer ping OpenBSD (1), I have tried to do a route flush and manual route add but it always comes back to
Re: rouge IPs / user
On Sat, 08 Dec 2007 04:05:34 +0700, Unix Fan [EMAIL PROTECTED] wrote: I think this is the second time you've posted something similar to this... I have news for you Everyone gets such traffic in their logs.. from DoS'ers and other mischievous individuals.. There really isn't much you can do about it either, and if you report back to each IP's abuse email.. chances are it originated from some 80 year old grandmothers trojan infected computer. Just use sane firewall rules... only enable services you need, and suck it up!! ;) -Nix Fan. You could try to sink hole them.. direct their traffic, to lo0, lo1, lo2 or whatever you want. It's an everyday life handling such attack for Net admin anyway... There area a lot of tutorials/best practice in the net. You might know better than me.. Cheers Insan
Re: A necessary evil: snmpd(8) and snmpctl(8)
On Wed, 05 Dec 2007 22:32:45 +0700, Jason George [EMAIL PROTECTED] wrote: Hi! I just imported snmpd(8) and snmpctl(8), an initial attempt to implement a new SNMP daemon for OpenBSD. SNMP is the Simple Network Management Protocol and it is still very commonly used in corporate networks, by network vendors, and in network management systems (NMS). SNMP is very essential for me since I'm using it at work; our security appliances based on OpenBSD need to integrate into various SNMP scenarios. We had to use net-snmp for this; the BSD license is good but the code is very bad and full of ancient cruft and portability glue. Then there were many problems with the net-snmp port in OpenBSD, people reported 90% CPU usage on -misc, crashes, bugs, ...it was just a pain. Thank you! Thank you! Thank you! Well, finally.. my net-snmp 5.4p1 on 4.2 box keeps dying.. 5.4.1 eating my cpus.. how can we test it? -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Re: Patch 004 does not apply properly on 4.2
On Wed, 28 Nov 2007 18:27:21 +0700, Henning Brauer [EMAIL PROTECTED] wrote: * Uwe Dippel [EMAIL PROTECTED] [2007-11-28 03:57]: What am I overlooking here ? - I have been doing like this for the last years, no problem. Today there is: # patch -p0 004_pf.patch |--- pf.c 18 Nov 2007 21:53:47 - 1.564 |+++ pf.c 22 Nov 2007 02:01:46 - 1.565 I screwed up the pathes again, sorry for that. I was diffing in /usr/src/sys/net/ A fixed patch should appear shortly. Just takin' the privileged to edit the index source, and it's works :D.. It's eazy, edit he part Index: sys/net/pf.c to Index:src/net/pf.c Thanks, Insan
Re: howto restored rm-ed files/directory
On Wed, 28 Nov 2007 00:50:48 +0700, Jeff Quast [EMAIL PROTECTED] wrote: On Sun, Nov 25, 2007 at 03:25:27AM +0700, Insan Praja SW wrote: Hi Misc, I got an important directory in my 4.1 bsd and it's deleted using rm -rf :(. Anyone had experience restoring them? I really.. (I mean Really) need help on this one.. Thanks, Kind Regards, Insan i've recovered rm'd C code using hexedit open the disk block device, and used the built-in search, select, copy, and paste into new file features to recover it. You have to know some keywords of what you are looking for, like a function name, etc. good idea to leave that partition unmounted/read-only until the data is recovered Well.. I got icat from sleuthkit.. right now I'm lookin' for hdd to back them up.. I will update this soon.. Thanks, Insan -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Re: Getting CPU stats with SNMP
On Tue, 27 Nov 2007 02:42:39 +0700, NetOne - Doichin Dokov [EMAIL PROTECTED] wrote: It seems net-snmp gives wrong data about CPU usage on OpenBSD. This is the data that i get (i've snipped some irrelevant OIDs) # snmpwalk -v2c -c community localhost .1.3.6.1.4.1.2021.11 UCD-SNMP-MIB::ssCpuUser.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuSystem.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuIdle.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuRawUser.0 = Counter32: 1196105427 UCD-SNMP-MIB::ssCpuRawNice.0 = Counter32: 386973 UCD-SNMP-MIB::ssCpuRawSystem.0 = Counter32: 1179540172 UCD-SNMP-MIB::ssCpuRawIdle.0 = Counter32: 1196105427 UCD-SNMP-MIB::ssCpuRawWait.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawKernel.0 = Counter32: 1 UCD-SNMP-MIB::ssCpuRawInterrupt.0 = Counter32: 1179540171 These are the same counters, but after some minutes: # snmpwalk -v2c -c community localhost .1.3.6.1.4.1.2021.11 UCD-SNMP-MIB::ssCpuUser.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuSystem.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuIdle.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuRawUser.0 = Counter32: 1196105547 UCD-SNMP-MIB::ssCpuRawNice.0 = Counter32: 633528 UCD-SNMP-MIB::ssCpuRawSystem.0 = Counter32: 1179540175 UCD-SNMP-MIB::ssCpuRawIdle.0 = Counter32: 1196105547 UCD-SNMP-MIB::ssCpuRawWait.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawKernel.0 = Counter32: 4 UCD-SNMP-MIB::ssCpuRawInterrupt.0 = Counter32: 1179540171 The SNMP data shows lots of NICE activity and nothing for interrupts. In the same time, top reports this: CPU0 states: 0.6% user, 0.0% nice, 1.0% system, 32.9% interrupt, 65.5% idle The SNMP counters seem completely irrelevant to CPU usage. Here's another example of two consecutive snmpwalks, executed right after each other: # snmpwalk -v2c -c community localhost .1.3.6.1.4.1.2021.11 UCD-SNMP-MIB::ssCpuUser.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuSystem.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuIdle.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuRawUser.0 = Counter32: 1196105672 UCD-SNMP-MIB::ssCpuRawNice.0 = Counter32: 890340 UCD-SNMP-MIB::ssCpuRawSystem.0 = Counter32: 1179540175 UCD-SNMP-MIB::ssCpuRawIdle.0 = Counter32: 4294865120 UCD-SNMP-MIB::ssCpuRawWait.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawKernel.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawInterrupt.0 = Counter32: 1297536800 # snmpwalk -v2c -c community localhost .1.3.6.1.4.1.2021.11 UCD-SNMP-MIB::ssCpuUser.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuSystem.0 = INTEGER: 0 UCD-SNMP-MIB::ssCpuIdle.0 = INTEGER: 100 UCD-SNMP-MIB::ssCpuRawUser.0 = Counter32: 65536 UCD-SNMP-MIB::ssCpuRawNice.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawSystem.0 = Counter32: 1297536800 UCD-SNMP-MIB::ssCpuRawIdle.0 = Counter32: 4294865120 UCD-SNMP-MIB::ssCpuRawWait.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawKernel.0 = Counter32: 0 UCD-SNMP-MIB::ssCpuRawInterrupt.0 = Counter32: 1297536800 Counters are completely irrelevant, look at ssCpuRawUser and ssCpuRawNice. Am I doing something wrong? What is the proper way to get CPU stats off OpenBSD with net-snmp? I know the ticks are 10 000 by default on OpenBSD, so I'm dividing the values accordingly, but still i don't get proper stats. Anyone any ideas? Regards, Doichin # uname -a OpenBSD host.name.com 4.2 GENERIC.MP#0 amd64 Hi, You should really checkout this site http://www.packetmischief.ca/openbsd/snmp/ Cool.. cu, Insan -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
CARP not failing-over
Hi Guys,
Currently set things up with CARP here.. I got two machines, supposed to
be doing IP load balancing when I setup them to be like this,
NET-BCARP MachinesNET-A
_
|| __|Machine A|__ ||
| NET-B | | |_| | | NET-A |
||__| |Machine B| |_||
|| |__|_|_| ||
and there Layer 2 cisco 3524 switch and 2948 switch between them. So, I
setup pf to pass everything in/out. The machine it self is a 4.2 -current,
just compiled last night.
So, I boot the machines.. tried them on, ping form net A to net B.. it
works. But, when I intentionaly shutdown the master, carp stop
forwarding/routing, no fail-over, the ping between net-B and net-B just
frezee. Is there something wrong with the config? this is the pf.conf on
both machines
ext_if=em0
int_if0=vlan2
int_if1=vlan22
int_if2=em1
int_if3=em2
sync_if=rl0
#table spamd-white persist
set skip on {lo $sync_if}
set ruleset-optimization basic
set optimization aggressive
scrub in
#nat-anchor ftp-proxy/*
#rdr-anchor ftp-proxy/*
#nat on $ext_if from !($ext_if) - ($ext_if:0)
#rdr pass on $int_if proto tcp to port ftp - 127.0.0.1 port 8021
#no rdr on $ext_if proto tcp from spamd-white to any port smtp
#rdr pass on $ext_if proto tcp from any to any port smtp \
# - 127.0.0.1 port spamd
#anchor ftp-proxy/*
block in
pass out
#pass quick on $int_if no state
pass in on $sync_if all no state
pass in on {$int_if0 $int_if1 $int_if2 $int_if3} all
pass in on $ext_if all
antispoof quick for { lo }
#pass in on $ext_if proto tcp to ($ext_if) port ssh
#pass in log on $ext_if proto tcp to ($ext_if) port smtp
#pass out log on $ext_if proto tcp from ($ext_if) to port smtp
The Bridge Table on cat 2948G-L3:
GREENDISTRO#sh bridge 22
Total of 300 station blocks, 212 free
Codes: P - permanent, S - self
Bridge Group 22:
Address Action Interface
.5e00.0104 forward Fa37.22
0015.1725.0a9d forward Fa37.22
Bridge Group 2:
Address Action Interface
.5e00.0102 forward Fa37.2
0015.1725.0a9e forward Fa37.2
The ifconfig:
Machine A#
lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33168
groups: lo
inet 127.0.0.1 netmask 0xff00
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
em0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9d
description: CARPdev0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::215:17ff:fe25:a9d%em0 prefixlen 64 scopeid 0x1
inet 10.10.12.254 netmask 0xff00 broadcast 10.10.12.255
rl0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:80:48:1f:75:53
description: SYNCDEV
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::280:48ff:fe1f:7553%rl0 prefixlen 64 scopeid 0x2
inet 10.10.10.254 netmask 0xff00 broadcast 10.10.10.255
em1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:07:e9:0f:44:ac
description: CARPdev1
media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause)
status: active
inet6 fe80::207:e9ff:fe0f:44ac%em1 prefixlen 64 scopeid 0x3
em2: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9e
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::215:17ff:fe25:a9e%em2 prefixlen 64 scopeid 0x4
enc0: flags=0 mtu 1536
vlan112: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9e
vlan: 112 priority: 0 parent interface: em2
groups: vlan
inet6 fe80::215:17ff:fe25:a9e%vlan112 prefixlen 64 scopeid 0x7
vlan122: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9d
vlan: 122 priority: 0 parent interface: em0
groups: vlan
inet6 fe80::215:17ff:fe25:a9d%vlan122 prefixlen 64 scopeid 0x8
vlan2: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9e
vlan: 2 priority: 0 parent interface: em2
groups: vlan
inet6 fe80::215:17ff:fe25:a9e%vlan2 prefixlen 64 scopeid 0x9
vlan22: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500
lladdr 00:15:17:25:0a:9d
vlan: 22 priority: 0 parent interface: em0
groups: vlan
inet6 fe80::215:17ff:fe25:a9d%vlan22 prefixlen 64 scopeid 0xa
pfsync0: flags=41UP,RUNNING mtu 1460
pfsync: syncdev: rl0 syncpeer: 10.10.10.253 maxupd: 128
groups: carp pfsync
pflog0: flags=141UP,RUNNING,PROMISC mtu 33168
groups: pflog
carp0: flags=b843UP,BROADCAST,RUNNING,SIMPLEX,LINK0,LINK1,MULTICAST mtu
1500
lladdr 00:00:5e:00:01:01
carp: MASTER carpdev vlan2 vhid
Re: CARP not failing-over
On Sat, 24 Nov 2007 18:51:41 +0700, Marco Pfatschbacher [EMAIL PROTECTED] wrote: On Sat, Nov 24, 2007 at 05:14:04PM +0700, Insan Praja SW wrote: The ifconfig: Machine A# [...] vlan2: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:15:17:25:0a:9e vlan: 2 priority: 0 parent interface: em2 groups: vlan inet6 fe80::215:17ff:fe25:a9e%vlan2 prefixlen 64 scopeid 0x9 vlan22: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:15:17:25:0a:9d vlan: 22 priority: 0 parent interface: em0 groups: vlan inet6 fe80::215:17ff:fe25:a9d%vlan22 prefixlen 64 scopeid 0xa [...] carp0: flags=b843UP,BROADCAST,RUNNING,SIMPLEX,LINK0,LINK1,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:01 carp: MASTER carpdev vlan2 vhid 1 advbase 1 advskew 0 groups: carp inet6 fe80::200:5eff:fe00:101%carp0 prefixlen 64 scopeid 0xc inet 202.149.93.12 netmask 0xfff0 broadcast 202.149.93.15 carp1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:02 carp: BACKUP carpdev vlan2 vhid 2 advbase 1 advskew 100 groups: carp inet6 fe80::200:5eff:fe00:102%carp1 prefixlen 64 scopeid 0xd inet 202.149.93.12 netmask 0xfff0 broadcast 202.149.93.15 carp2: flags=b843UP,BROADCAST,RUNNING,SIMPLEX,LINK0,LINK1,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:03 carp: MASTER carpdev vlan22 vhid 3 advbase 1 advskew 0 groups: carp inet6 fe80::200:5eff:fe00:103%carp2 prefixlen 64 scopeid 0xe inet 202.149.93.97 netmask 0xfff0 broadcast 202.149.93.111 carp3: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:04 carp: BACKUP carpdev vlan22 vhid 4 advbase 1 advskew 100 groups: carp inet6 fe80::200:5eff:fe00:104%carp3 prefixlen 64 scopeid 0xf inet 202.149.93.97 netmask 0xfff0 broadcast 202.149.93.111 vlan2 and vlan22 need an IP in the same network as their carp interfaces. IP Balancing currently doesn't work for the 'carpdev is ip-less' case. Hi, Thanks for the clue, so.. one other thing, for IP Load Balancing, I don't need the net.inet.arpbalance to 1, am I correct? Thanks, Insan -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
