Re: ALIX/current as an Access Point
On Sun, Feb 27, 2011 at 03:23:11PM +0100, Jan Stary wrote: I have been using www.pcengines.ch/alix2c1.htm as my home router for years. It is runnig current/i386. Now that I have bought me that Android, I also want wifi. The ALIX has a MiniPCI slot. Can people recommend a MiniPCI wifi card that works well for an AP, preferably tried in the ALIX? I use a Gigabyte GN-WI01GS in an ALIX.2D13 which uses the driver ral0. Works pretty well with a linux wifi client. Tobias -- t...@count0.net
Re: slow untar during installation
On Thu, Jul 30, 2009 at 11:25:23AM +, Stuart Henderson wrote: I suppose you use an CF-card with about x133 speed. I had the same problem. After using a card with at least x233 speed I didn't have that problem when untaring anymore. The speed rating by itself isn't very useful. The random-access write speed has the biggest effect when used on a computer and since it is hardly relevant to use with a camera, doesn't usually get mentioned. In particular look for cards which do multisector transfers (i.e. they /don't/ say 1-sector PIO in the attach line in dmesg), e.g. almost all recent sandisk, some innodisk cards, and not many others. I'm using a 2 GB Transcend x300 which says # dmesg | grep wd0 wd0 at pciide0 channel 0 drive 0: TRANSCEND wd0: 1-sector PIO, LBA, 1943MB, 3980592 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 The speed is absolutely OK and sufficient -- no stalling and nothing that slows anything down. Also on the Alix systems note that there's a UDMA option you can enable in tinyBIOS that defaults to Off. Didn't know that. Thanks for the hint :) -- t.walkow...@wallstreet-online.de
Re: slow untar during installation
On Wed, Jul 29, 2009 at 06:14:18PM +0200, Jan Stary wrote: When installing 4.5 on an ALIX (see dmesg below) the ALIX is a good choice! phase of actually untar'ing the tgz sets was very slow: sets became -stalled- even if untared from local disk (pre-downloaded). I suppose you use an CF-card with about x133 speed. I had the same problem. After using a card with at least x233 speed I didn't have that problem when untaring anymore. The installation (sans X) took about an hour because of that. And you will wait ages when untaring and compiling the kernel ... it was even async, which makes me curious about the install slowness. Could the card or the exact mount options be the cause of that? The card. I am not trying to tweak the machine in any way to become 'faster'; once installed, it runs just fine. I just don't want to spend an hour waiting for the tgz's to untar on the next reinstall. The hardware in itself is fast enogh -- it's only the poor I/O that slows everything down. wd0 at pciide0 channel 0 drive 0: ELITE PRO CF CARD 4GB Better spend your money for a fast 2 GB card than for a slow 4 GB. -- t.walkow...@wallstreet-online.de
Re: HD 'Analysis'
On Tue, May 05, 2009 at 01:46:00PM +0200, Hannah Schroeter wrote: dd if=/dev/sd1c of=/dev/null bs=64k ^r Do yourself a favor and use the raw device. why? -- t.walkow...@wallstreet-online.de
Re: small pc recommendation
On Tue, May 20, 2008 at 02:03:03PM -0700, xSAPPYx wrote: I have a couple jetway mini-itx boxen I like. There are daughter boards for these guys, I put a 3x10/100/1000 card in there for 4 nics total. Boards: http://www.jetwaycomputer.com/VIA.html no one needs DVI and sound on a router board!
Re: How can I determine ethernet speed?
On Mon, May 19, 2008 at 03:06:21PM -0700, Kendall Shaw wrote: I'm an openbsd novice. I replaced cards on computers in my home network with gigabit ethernet and got a a gigabit switch. Can I determine what speed or maybe what media my re0 interface is using? you can use iperf or ttcp from the packages.
Re: How can I determine ethernet speed?
On Tue, May 20, 2008 at 10:47:14AM +0200, Claudio Jeker wrote: I'm an openbsd novice. I replaced cards on computers in my home network with gigabit ethernet and got a a gigabit switch. Can I determine what you can use iperf or ttcp from the packages. Isn't it insane to figure out the media options of a interface with iperf? sure, but to measure the _real_ speed it tells you more than the theoretical media parameters. I think looking at ifconfig(8) output would be sufficent. e.g. ifconfig re0 re0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:01:8e:b3:8b:ca media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause) status: active inet6 fe80::201:8eff:feb3:8bca%re0 prefixlen 64 scopeid 0x6 depends what claudio wanted - you can see the media opts that way but the effective speed the other way.
Re: small pc recommendation
On Mon, May 19, 2008 at 11:51:04PM -0500, Andrew Konkol wrote: If you're looking for a single board computer using compact flash...I've had good luck with my ALIX 2c3 http://pcengines.ch/alix2c3.htm would be my recommendation, too. just bought one as my home router and works really great! and using a 266x CF card you even have sufficient hard disk speed Alix boards seem to be cheaper than soekris. they are, indeed, and i would say that they aren't any worse.
Re: pftop doesn't build with -current
On Thu, May 08, 2008 at 08:21:30PM -0400, Chris Smith wrote: After upgrading to -current today pf did not run after building the kernel and rebooting. After building the userland and rebooting that problem is resolved. But now I can no longer build pftop from ports (cvs): why dont you take pftop from the packages? there is v 0.7, as well
SOLVED: isakmpd tunnels get lost
just for the archives: i did define a lifetime for the encryption-suites some time ago for a former configuration that once worked. deleting these lifetimes and thus using the defaults now works. so, no actually wrong config but rather too much config ;) thanks for the personal replies! -- tobias
isakmpd tunnels get lost
following scenario: | | LAN A | .---+---. | Firewall A | | and | | VPN-gateway A | +---+---+ |\ | \ | public IP A | == inet == | | public IP B |/ .-+--. | Firewall B | +-+--+ | | NAT public IP B - private IP B | | private IP B |/ .---+---. | VPN-Gateway B | +---+---+ | | LAN B | now the situation: establishing a VPN connection between LAN A and LAN B works fine. i run this scenario for nearly four years. since release 3.5 the problem occurs that the tunnel on gateway B (the natted one behind the separate firewall) falls down. a 'netstat -rnf encap' then shows Routing tables Encap: Source Port DestinationPort Proto SA(Address/Proto/Type/Direction) and no ping comes through although isakmpd is still running! i run a script every 3 minutes that in such case kills isakmpd and restarts it. the failing of the tunnels happens with NAT-T activated as well as without. does that have something to do with any lifetime settings? i dont yet wanna bother you with my isakmpd.conf but i post it of wished. is there anyone who experienced the same or has a clue about that? TIA -- tobias
Problems / questions about CARP
I just set up 2 redundant firewalls that use CARP / pfsync. I ran into the fact that everything works fine but when shutting down the MASTER, the BACKUP doesn't take over the states of the connections. Is that intended or did I do something wrong? I configured my systems exactly the way the man pages and tutorials told me and I'm not using ifstated. What I hoped is that even the whole master can fail without being noticed for the existing sessions. TIA -- tobias
Re: isakmpd: invalid next payload type RESERVED_MIN in payload of type 10
On Fri, Nov 04, 2005 at 06:42:11PM +0100, Michiel van der Kraats wrote: Today I upgraded a VPN gateway to 3.8-RELEASE. Anyway, when I put isakmpd.conf back and tried to start it, only one VPN connection (connected to a Linksys VPN gateway) came back up, the connection to another OpenBSD gateway (running 3.7) could not be established. On the other gateway, isakmpd logs: how funny, today i experienced exactly the same: updated to 3.8 on the one side and with the same configuration no connection was established, reporting INVALID PAYLOAD TYPE (tcpdump -nvs1400) does it maybe have sth. to do with nat-t? -- tobias
Re: isakmpd: invalid next payload type RESERVED_MIN in payload of type 10
On Fri, Nov 04, 2005 at 08:45:21PM +0100, Hans-Joerg Hoexer wrote: If your other peer is 3.7, please apply all patches. of course i applied all 5 patches from 3.7. or do you have sth different in mind? -- tobias
Re: isakmpd: invalid next payload type RESERVED_MIN in payload of type 10
On Fri, Nov 04, 2005 at 10:12:35PM +0100, Hans-Joerg Hoexer wrote: sorry, I was unclear. Rebuild isakmpd after updating src/sbin/isakmpd from CVS using the 3.7 patch branch (ie. cvs up -P -rOPENBSD_3_7). hm, i think i better update the other peer to 3.8, as well - although it's 550 km from here ... Other workaround, disable nat-t with the -T option. but that only works for 3.8 isakmpd, doesn't it? what about the net.inet.esp.udpencap sysctl setting? should it be set to zero? -- tobias
differences between 3.7 CDs and 3.7 release?
i wonder whether there will be differences between the already sent CDs and the coming release of 3.7 on the net. the snapshots are still updated and when they turn into release they will be about three weeks more up-to-date am i right or did i miss something? tobias -- [id][EMAIL PROTECTED] [net place] www.tobias-walkowiak.de [gpg fingerprint] 02D4 BEF0 988A 7E32 8A16 A244 B2B6 0C2E 25B2 0A1E [message]Jesus loves you
Re: differences between 3.7 CDs and 3.7 release?
On Thu, May 05, 2005 at 08:02:46PM +0200, Otto Moerbeek wrote: process is already done. What will appear on the ftp sites will be the same code base as the CD's. thanx for all the answers. but then, what is the reason to release the CD version three weeks later? -- [id][EMAIL PROTECTED] [net place] www.tobias-walkowiak.de [gpg fingerprint] 02D4 BEF0 988A 7E32 8A16 A244 B2B6 0C2E 25B2 0A1E [message]Jesus loves you
