Re: pfctl - show port numbers
On 12/4/2007 at 6:53 PM Henning Brauer wrote: |actually, if I were to implement these parts now I'd make it print port |numbers only and not names = That's what I plan to do when I change the code.I don't need the command line option part because I have never needed the name info for the ports in the other commands that support the option capability. So if I am going to customize the pfctl code, I'll want to keep it as contained as possible. (though the perl options look intriguing. :) I use OpenBSD as the firewall/router on the cable modem for my little home network. Nothing real serious. While my suggestion is helpful to me and my uses, I'm sure the developers have more important features to implement. That's why I just presented my reasons and went quiet...
Re: pfctl - show port numbers
On 12/3/2007 at 7:32 AM Girish Venkatachalam wrote: |On 21:45:37 Dec 02, Henning Brauer wrote: | * MikeM [EMAIL PROTECTED] [2007-12-02 15:35]: | When I run the command | | pfctl -sr | | a list of the rules is displayed, a sample line is below. | |pass in log quick on fxp0 inet proto tcp from 226.174.167.164 to | (fxp0) port = smtp flags S/FSRA keep state | | | Is there a way for me to tell pfctl that I want to see | |port = 25 | | instead of | |port = smtp | | ? | | short of hacking pfctl source, no. | | |As per your request I have added the -P switch to pfctl to display |numeric port numbers instead of service names for those who desire the |same. | |Please find attached the diff. | |I have modified the man page as well. | |Now, if you desire numeric ports display you have to use the -P option |in addition to other options. Everything else works as before. = Wow, thank-you! :)
Re: pfctl - show port numbers
On 12/3/2007 at 7:06 PM Henning Brauer wrote: |* MikeM [EMAIL PROTECTED] [2007-12-03 14:53]: | On 12/3/2007 at 7:32 AM Girish Venkatachalam wrote: | | Is there a way for me to tell pfctl that I want to see | | | |port = 25 | | | | instead of | | | |port = smtp | | | | ? | | | | short of hacking pfctl source, no. | | | | | |As per your request I have added the -P switch to pfctl to display | |numeric port numbers instead of service names for those who desire the | |same. | | | |Please find attached the diff. | | | |I have modified the man page as well. | | | |Now, if you desire numeric ports display you have to use the -P option | |in addition to other options. Everything else works as before. | = | Wow, thank-you! :) | |I don't think this is a worthwile addition tho. = It's obviously not my choice, I'm just much more comfortable with using port numbers instead of protocol names. netbios-dgm means little to me but 138 does, and correlates with what I see displayed should I follow the instructions in the pf manual (http://www.openbsd.org/faq/pf/logging.html#logfile): To view the log file: # tcpdump -n -e -ttt -r /var/log/pflog Though for consistency with other commands that have an option to toggle between symbols and numbers (e.g., -n for netstat or tcpdump) it may be helpful as well. That's the main reason why I originally though I was overlooking a simple option flag, I couldn't believe this ability wasn't already present. ;) But as I mentioned, it's not my decision. I'll just hack the source code to get what I need.
pfctl - show port numbers
When I run the command pfctl -sr a list of the rules is displayed, a sample line is below. pass in log quick on fxp0 inet proto tcp from 226.174.167.164 to (fxp0) port = smtp flags S/FSRA keep state Is there a way for me to tell pfctl that I want to see port = 25 instead of port = smtp ? I've looked through the man page, and I didn't see anything. I fear it may be so obvious I overlooked it. Thanks.
gOS Develop Kit with VIA pc-1 Processor Platform VIA C7-D
Has anyone tried this motherboard with OpenBSD? Does it work? http://www.clubit.com/product_detail.cfm?itemno=CA4842001 google yielded no hits for me... Thanks.
Re: gOS Develop Kit with VIA pc-1 Processor Platform VIA C7-D
On 11/8/2007 at 3:07 PM Nico Meijer wrote: |Hey Mike, | | Has anyone tried this motherboard with OpenBSD? Does it work? | |I have a similar pc-1 device, which pus along perfectly. | |I got mine here: |http://www.picco.nl/product_info.php?cPath=37_23products_id=747 | |Be well... Nico = I may just pick up one of the $60 boards, and give it a test run. I'll post the dmesg when I get it running. Thanks.
Re: Jumb Frames
On 10/3/2007 at 1:32 AM Jake Conk wrote: |Hello, | |I was wondering if setting my ethernet's card mtu to 9000 is all I |have to do to enable jumbo frames? (and of course set it on all other |devices that the card connects to) | |Thanks, |- Jake = Also make sure your network switches will pass jumbo frames. Some just cannot, others need to have a configuration parameter changed to enable jumbo frame support, some others will pass jumbo frames in default configuration.
Re: Mac Mini (intel) status
On 12/1/2006 at 9:51 AM Jason Dixon wrote: |You can pick up cheap VLAN-capable switches on eBay. I have a Dell |3024 at home which works fine and runs $100-150 used. I'd never use |these in an enterprise environment, but they're fine for home testing. = Quick comment: the Dell 3024 switch has a noisy high-rpm fan in it. The Dell 3016 is fanless. Had I known that before I got my 3024, I would have gotten the 3016 :(
Re: bsdstats.org WOW
On 10/18/2006 at 7:37 PM Sam Fourman Jr. wrote: |Check out OpenBSD :) | |http://www.bsdstats.org/ = OK, I see a table full of numbers, but no explanation of what is being measured or how. Yes, OpenBSD is on the top, but on the top of what?
Re: hearing complaints regarding pre-orders
On 9/21/2006 at 2:23 PM Steve Tornio wrote: |On Sep 21, 2006, at 2:12 PM, Martin Schrvder wrote: | [snip] |As long as I can remember, it's always been this way, and I've been |buying CDs since 2.5. I'm amazed that anyone is making an issue of |it now. = This is the Internet, people are always looking for new things to complain about. Some people will get into a fight if they are sitting by themselves in a room.
Re: Choices for Soekris disk drives
|On 7/15/05, Frank Denis (Jedi/Sector One) [EMAIL PROTECTED] wrote: | On Fri, Jul 15, 2005 at 07:55:59PM +0530, Mayuresh Kathe wrote: | *AVOID* 2.5 IDE Laptop drives. | I've had pretty bad experience with them, | 1. They heat up a lot | 2. Are slow | 3. Fail quite often (this could be due to the heat) | (face problems with Toshiba and IBM) | | I have the opposite experience. My Net4801 is running 24/7 for one |year with | a Momentus drive (5400 RPMs) and it is neither slow nor hot. | | Hitachi also produces drives that are designed to run 24/7 (Eudurastar, | now obsoleted by E7K60 and E7K100 drives). My Mac Mini is running with a | 7K100 (80 Gb, 7200 RPM, 8 Mb cache) drive and it is as fast as any 3,5 | drive. It seems to heat up more than the Momentus since the fan often |wakes | up, but it works reliably. = Interesting. My MacMini Duo that I bought in April of this year has a Momentus 5400 rpm 80GB drive. When did you buy yours?
Re: Does Lenovo suck ?
On 6/4/2006 at 8:43 PM Rott_En wrote: |I have a Lenovo R51e and I can tell you that the hardware is 100% |compatible with almost all live CD *nix distributions, no problem at all. | |I am very satisfied of this product because it is robust and fair, battery |life is good and hardware seems to be largely supported. = The question, as I see it, is: do you want to support a vendor who actively avoids supporting, and appears openly antagonistic towards, open source?
Re: dynamic dns update
On 6/2/2006 at 8:50 PM riwanlky wrote: |Hi, | |I will like to know if OpenBSD have the capability to update my dynamic ip |to www.dyndns.org. | |I am currently running myDYNIPPRO on Windows to update my dynamic ip. I |want to |move to OpenBSD. I had currently running sendmail, popa3d, mrtg, mySQL on |the |machine. = As an alternative to dyndns.org, you might want to look at www.zoneedit.com . They also offer free DNS services, and my OpenBSD home firewall happily updates my IP address when it changes. The site offers scripts and other details needed to perform the update.
Re: Good GigE 8-port switch?
On 5/9/2006 at 8:48 AM Barry, Christopher wrote: | |I've had very good experiences with SMC, as a brand, ok experiences with |3Com as a brand, and very poor experiences with the D-Link and Linksys |brands. | |HTH, |-C = I've had good experiences with SMC as well, specifically the SMC8508T http://www.smc.com/index.cfm?event=viewProductlocaleCode=EN_USAcid=6s cid=pid=1147 You need to pay attention to whether the switch supports jumbo frames, not all of them do.
Re: 3.9 sightings :: ot
On 4/25/2006 at 9:09 AM Baron Fujimoto wrote: |received mine last week, cds only. not a single tab arrived intact. = My CD arrived a week or so ago, in perfect condition. (Connecticut, US)
Re: httpd question - solved
On 2/5/2006 at 11:10 PM Keith Richardson wrote: |If you get your IP dynamically from you ISP, your IP can potentially |change every max-lease-time | |This will handle the pesty case of your IP changing. | |1. dyndns.org - get a free subdomain to map to your IP. |2. ddclient package - updates your DNS whenever your IP changes. | = An alternative, now that domain name registrations are so cheap... Register your own domain and use www.zoneedit.com for your name servers. ZoneEdit has the ability to make DNS changes based upon dynamic IP address changes. http://www.zoneedit.com/doc/dynamic.html? Zoneedit is free (as in, no charge) for the typical low-usage individual hosts. http://www.zoneedit.com/doc/faq.html#faq6 Also, ZoneEdit's infrastructure is pretty solid. http://www.zoneedit.com/doc/network.html (a satisfied customer of ZoneEdit for about four years now...)
Re: Speed isn't everything, luckily for OpenBSD.
On 7/22/2005 at 9:10 PM Nick Holland wrote: | There is just *no* way to explain just how wacked Linux looks to | someone who is having to go from OpenBSD to Linux for some stuff | at work. Wow. | You'd swear it was written by an unorganized mob with no central | control or plan at all. Oh, wait... = Software tends to take on the architecture of the organization that created it.
Re: OT, but maybe??? Need an Alarm Beacon
On 6/9/2005 at 5:01 PM L. V. Lammert wrote: |It would be nice to have a simple way to trip an external flashing alarm |beacon when attention is needed, .. no operator is normally at this system. | |Has anyone run across a simple way to trip an external beacon? USB? Adding |a I/O card seems pretty overkill, especially as external relays require a |four slot minimum, .. the parallel port is already tied up with a printer. = If you can do serial port i/o, consider http://www.smarthome.com/1135.html
Re: OpenBSD VPN
On 6/1/2005 at 8:22 AM Bruce Marriner wrote: |I am trying to setup an OpenBSD OpenBSD VPN Tunnel to connect two |remote offices together. I looked around on Google for a how-to or some |documentation. It seems the OpenBSD documentation is blank (due to no |support). And all the how-to's on the Internet seem to reference very old |versions of OpenBSD and none of them that I tried seem to work. If |someone |knows of an up to date how to or some good documentation on how to get this |working I would really appreciate it. | | I want to set up the VPN using manual keying, as from what I have |read it is easier to configure and seems to be just fine for my |application. = (shot in the dark...) man vpn
Re: OpenBSD VPN
On 6/1/2005 at 11:30 AM Bruce Marriner wrote: |Thank you everyone for the wonders of information. I have read the |vpn man page - along with all the other ipsec man pages. Apparently I'm |not quite as brilliant as everyone here and those resources did not quite |answer all my questions. Sorry for disturbing you all in hopes there was a |good sound how-to out there somewhere - thinking someone here might know of |it's where abouts. | | The OpenBSD documentation I was talking about - and saying there was no |support for - At one point the openbsd website had a faq on VPN's which is |no longer maintained because they did not have anyone to keep it up to |date. | |The link - used to be http://www.openbsd.org/faq/faq13.html but that's now |something totally different. Anyhow - thanks a ton. | = Maybe this may help http://www.drijf.net/vpn/
