Re: Posible bug in bktr(4) man pages
yes, CARD_ is necessary. how to put that in the manpage in a nice format, well, I was hoping you had some input on that. simply prepending CARD_ to the names in the table will put some characters in the table beyond the 80 character limit (unless the table is shifted to the left a bit, which messes up the consistent formatting in bktr(4)). -- [EMAIL PROTECTED] Would it be possible to change the source code instead? (just a quick guess, I am not an expert) Ramiro
Re: Posible bug in bktr(4) man pages
On Wed, Dec 07, 2005 at 09:09:02AM +0100, Ramiro Aceves wrote: yes, CARD_ is necessary. how to put that in the manpage in a nice format, well, I was hoping you had some input on that. simply prepending CARD_ to the names in the table will put some characters in the table beyond the 80 character limit (unless the table is shifted to the left a bit, which messes up the consistent formatting in bktr(4)). -- [EMAIL PROTECTED] Would it be possible to change the source code instead? Yes, but that would cause nearly every specific configuration to break, so I'm not sure it's a good idea. Joachim
Re: NFS and Rebooting problem
On Wed, 7 Dec 2005, Denny White wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I was hoping someone could shed some light with some good links, sample configurations, etc., that might help me with the following. Not looking for someone to fix it for me or anything like that. Maybe the following will show that I have tried reading, googling, experimenting, etc., before asking. I don't want to have any settings too high to cause other problems, just to change what's neccessary. When I'd drag drop files to copy from a windows xp box to an nfs share on the obsd box, the obsd system would reboot. I thought at first that it was either something conflicting from the xp box, or that I had a hardware problem on the obsd box. That had happened once with a bad simm, but I had replaced it had had no further problems until now. Before running a time consuming memory test on the obsd box, I did some reading on obsd tunables, and am now able to copy a file over from the xp box without the system rebooting. Below is a list of the changes: net.inet.tcp.keepinittime=600 net.inet.tcp.keepidle=28800 net.inet.tcp.keepintvl=600 net.inet.tcp.recvspace=65536 net.inet.tcp.sendspace=32768 net.inet.udp.recvspace=83200 net.bpf.bufsize=65536 vfs.nfs.iothreads=4 What type of nfs mount are you using? v2 or v3; udp or tcp? Any info on the console the moment the machine reboots? What is the value of tyhe ddb.panic sysctl? Anything in the logs? -Otto Before the problem started occurring, I was using softupdates. I tried running without them, thinking maybe that had some bearing on the problem. Apparently it didn't. The only thing that helped was the changes listed above. I read that if you increase the tcp.recvspace tcp.sendspace too high, you can cause a kernel panic when booting. That hasn't happened so far, with the above values. Exactly how high I can go without problems, I don't know. The obsd box is used for email learning, mostly. No high usage production server. The largest file I've tried to copy to the nfs share since making the changes was about 26mb. No reboot this time. Before the changes, about the largest I could copy without trouble was 2mb. Right now, I'm limited on memory. There's only 256mb on the obsd box. That might be a problem, too, if I keep increasing the above values. There is no problem with file sizes when using scp across the network. Forgot to mention that I had tested it too, by mounting an obsd nfs share over on a fbsd box had tried to copy a large file over, resulting in a reboot. That was when I figured I had it narrowed down to hardware or an obsd settings problem, the latter apparently being the case. Thanks for any answers advice. Below is output of uname -a dmesg. OpenBSD badboybox.cableone.net 3.8 GENERIC#0 i386 OpenBSD 3.8-stable (GENERIC) #0: Fri Dec 2 01:25:13 CST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium III (GenuineIntel 686-class) 601 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE real mem = 267952128 (261672K) avail mem = 237613056 (232044K) using 3296 buffers containing 13500416 bytes (13184K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(a7) BIOS, date 01/31/02, BIOS32 rev. 0 @ 0xfb4f0 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 70102 dobusy 1 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0xb970 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdd90/144 (7 entries) pcibios0: PCI Exclusive IRQs: 5 9 10 11 pcibios0: PCI Interrupt Router at 000:07:0 (VIA VT82C596A ISA rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0x8000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 VIA VT82C691 PCI rev 0xc4 ppb0 at pci0 dev 1 function 0 VIA VT82C598 AGP rev 0x00 pci1 at ppb0 bus 1 pcib0 at pci0 dev 7 function 0 VIA VT82C686 ISA rev 0x22 pciide0 at pci0 dev 7 function 1 VIA VT82C571 IDE rev 0x10: ATA66, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: WDC WD300BB-00AUA1 wd0: 16-sector PIO, LBA, 28629MB, 58633344 sectors wd1 at pciide0 channel 0 drive 1: WDC WD400BB-00AUA1 wd1: 16-sector PIO, LBA, 38166MB, 78165360 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 4 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: HP, CD-Writer+ 9500b, 1.06 SCSI0 5/cdrom removable atapiscsi1 at pciide0 channel 1 drive 1 scsibus1 at atapiscsi1: 2 targets cd1 at scsibus1 targ 0 lun 0: ASUS, CD-S500/A, 1.0K SCSI0 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, DMA mode 2 cd1(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 7 function 2 VIA VT83C572 USB rev 0x10: irq 9 usb0 at uhci0: USB
Re: Posible bug in bktr(4) man pages
On 12/7/05, Joachim Schipper [EMAIL PROTECTED] wrote: On Wed, Dec 07, 2005 at 09:09:02AM +0100, Ramiro Aceves wrote: yes, CARD_ is necessary. how to put that in the manpage in a nice format, well, I was hoping you had some input on that. simply prepending CARD_ to the names in the table will put some characters in the table beyond the 80 character limit (unless the table is shifted to the left a bit, which messes up the consistent formatting in bktr(4)). -- [EMAIL PROTECTED] Would it be possible to change the source code instead? Yes, but that would cause nearly every specific configuration to break, so I'm not sure it's a good idea. Joachim Oh, thanks, as I said, I am not a programmer :-( . So I think that the man page should be changed to avoid the same compiling nightmares I had. Man page should match the souce code. It would be a good thing that the card is detected automagically, so if you need more information I will be pleased to help. The good thing now is that I can watch my TV programs while I study OpenBSD ;-) Ramiro.
Transparent ISP proxy problem or PF problem
Hi there.
First I want to state that I don't claim the problem I'm describing
below to be OpenBSD problem. It looks to me like a problem in the
particular set of setups between me, my ISP and the problem site.
Now, to the problem.
I'm using OpenBSD 3.8-release box as a router between a private network
(192.168.1.0/24) and the internet.
internet - (83.148.x.x) [OpenBSD] (192.168.1.1) - priv. lan
So far so good - the setup works very well with just one problem. My
ISP passes the traffic for two certain sites through a transparent
proxy. I reached to this conclusion due to the following:
---
$ telnet arenabg.com 80
Trying 82.101.72.23...
Connected to arenabg.com.
Escape character is '^]'.
GET / HTTP/1.0
HTTP/1.0 503 Service Unavailable
Server: squid/2.5.STABLE5
Mime-Version: 1.0
Date: Thu, 01 Dec 2005 14:22:09 GMT
Content-Type: text/html
Content-Length: 1
Expires: Thu, 01 Dec 2005 14:22:09 GMT
X-Squid-Error: ERR_CONNECT_FAIL 111
X-Cache: MISS from url
Connection: close
---
For one of these two sites there is no problem - the traffic passes
through my ISP's transparent proxy and the site works perfectly. The
problem is with the other site. When one tries to open that other site
(arenabg.com), for example with Mozilla Firefox, the browser loads some
data (e.g. displays the title of the page) and continues loading
like forever. I don't this it's a browser problem, since the problem
exists on other browsers/versions too.
I tried to connect the cable for the internet directly to one of the
client machines behind the firewall (Debian GNU/Linux 3.1) and the site
loads perfectly, so I came to the conclusion that my PF rules are
blocking the packets. So, I left a minimal PF setup (pass all
keep state + NAT), but the problem remained.
After some research I found a common problem with very similar symptoms
called Path MTU Discovery problem - the packets sent from the server
are larger than the Path MTU of the route to the client and with DF flag
set, but the server (or some router) blocks the ICMP messages returned
to the server and does not get notified for the fact that it must
descrease the size of the packages.
Unfortunately it seems that this is not the case. Descreasing the MTU
on the router interface should have fixed the problem, but no luck.
Now, what I'm asking here is for some advice on how to proceed from
here in order to diagnose the problem.
Again, I don't claim this to be OpenBSD problem or bug, although I
tried to boot Freesco on the router machine and the problem site
(arenabg.com) did load.
Thanks in advance.
Best regards,
Alexander Iliev
configurations follow:
dmesg
OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel 486DX (486-class)
real mem = 33140736 (32364K)
avail mem = 22257664 (21736K)
using 430 buffers containing 1761280 bytes (1720K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(c2) BIOS, date 07/20/94
pcibios at bios0 function 0x1a not configured
bios0: ROM list: 0xc/0x8000
cpu0 at mainbus0
isa0 at mainbus0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard
vga0 at isa0 port 0x3b0/48 iomem 0xa/131072
wsdisplay0 at vga0 mux 1: console (80x25, vt100 emulation), using wskbd0
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
wdc0 at isa0 port 0x1f0/8 irq 14
wd0 at wdc0 channel 0 drive 0: ST33232A
wd0: 16-sector PIO, LBA, 3077MB, 6303024 sectors
wd0(wdc0:0:0): using BIOS timings
ep0 at isa0 port 0x300/16 irq 10: address 00:20:af:07:f2:58, utp/aui\
(default utp)
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
sysbeep0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
pccom2 at isa0 port 0x3e8/8 irq 5: ns16450, no fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
isapnp0 at isa0 port 0x279: read port 0x203
ne3 at isapnp0 UMC PLUG PLAY Ethernet Chip , UMC9008, PNP80D6, \
port 0x200/32 irq 3
ne3: NE2000 Ethernet
ne3: address 40:01:00:00:30:fb
biomask fbd5 netmask ffdd ttymask ffdf
pctr: no performance counters in CPU
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
/dmesg
pf.conf
# external interface
ext_if = ne3
# internal interface
int_if = ep0
# Bianor firewall/gateway
work_fw = 212.95.x.x
webserver = 192.168.1.7
table allowed_icmp persist { $work_fw, $provider }
table allowed_ssh_to_ws persist { $work_fw }
# set logging on for ext_if
set loginterface $ext_if
scrub in
altq on $int_if cbq bandwidth 4Mb queue {std,ssh}
queue std bandwidth 70% cbq(default, borrow)
queue ssh bandwidth 30% priority 5 cbq(borrow)
# nat on local networks
nat pass on $ext_if from $int_if:network
to !$int_if:network - ($ext_if)
# redirect to internal apache and ssh
rdr pass on $ext_if
Re: Oracle, anyone?
On Wed, 7 Dec 2005 00:13:10 -0700, Josh Tolley [EMAIL PROTECTED] wrote: On 12/5/05, J.C. Roberts [EMAIL PROTECTED] wrote: On Sun, 4 Dec 2005 21:57:15 -0700, Josh Tolley [EMAIL PROTECTED] wrote: OpenBSD is written for uses where freedom, stability, adherence to standards, and security are the top concerns You are pontificating your personal opinions on why OpenBSD is written and what OpenBSD is used for to Ted Unangst? Point taken. What I expressed in that email was my interpretation of the Free, Functional, and Secure mantra. I'd be fairly worried for someone that was trying to run Oracle on OpenBSD in a production environment; just trying to make it run out of personal interest or whatever worries me much less. All that being said, whether anyone chooses to make decisions based on what worries me personally is their own matter. -Josh For what it's worth, I think most people would generally agree with your interpretation, but I found the situation ironically funny. :-) (I hope the joking around wasn't too harsh) Each release I print out a list with the names of all the developers and pin it to my wall. There's a lot of people on that list that I've never conversed with and simply don't know. Pinning that list to my wall is not really hero-worship (well maybe a little bit), but instead, it's really for remembering who I ought to thank. Kind Regards, JCR
pci cardbus adapter not configured - ENE 1410
Hello. I plugged an Elan P111 cardbus adapter (PCI to PCMCIA adapter card) in my Soekris net4801, and can't have the card working. ( http://www.elandigitalsystems.com/adapter/p111.php ) My soekris boots on a read-only flashcard on which OpenBSD 3.7 has been pushed using flashdist. I joigned below the dmesg. I've been searching in the newsgroups for about a week and did not find anything about my problem. I tried to disable pcibios (boot -c, config -ef), this did not help (which is not surprising considering my box does'nt seem to have the driver installed). What is surprising me is that I'm sure I have seen on internet some dmesg displays telling that a ENE CB-1410 CardBus device was properly installed on the machine. The ELAN P111 is supported on different linux distributions: http://www.elandigitalsystems.com/support/pfaq/plinux.php , what gives me some hope about the possibility to have it working properly. Now my two questions: 1- The ENE 1410 is a universal cardbus controller (the doc says Intel 82365 compatible register set). I guess you support it but do I guess well ? If not which replacement cardbus adapter PCI card do you recommend? 2- Did anybody struggle about this issue and could help me? Thanks to you all and best regards. F. Billes. == dmesg == OpenBSD 3.7 (NET4801) #0: Sat Apr 9 06:02:39 CEST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/NET4801 cpu0: Geode(TM) Integrated Processor by National Semi (Geode by NSC 586-class) 267 MHz cpu0: FPU,TSC,MSR,CX8,CMOV,MMX cpu0: TSC disabled real mem = 133799936 (130664K) avail mem = 119463936 (116664K) using 1658 buffers containing 6791168 bytes (6632K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840 pcibios0 at bios0: rev 2.0 @ 0xf/0x1 pcibios0: pcibios_get_intr_routing - function not supported pcibios0: PCI IRQ Routing information unavailable. pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc8000/0x9000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00 sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00: DP83816A, irq 10, address 00:00:24:c4:f3:6c nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1 sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00: DP83816A, irq 10, address 00:00:24:c4:f3:6d nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1 sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00: DP83816A, irq 10, address 00:00:24:c4:f3:6e nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1 = problem = ENE CB-1410 CardBus rev 0x01 at pci0 dev 10 function 0 not configured = /problem = pcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00 NS SC1100 SMI/ACPI rev 0x00 at pci0 dev 18 function 1 not configured pciide0 at pci0 dev 18 function 2 NS SCx200 IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: CF-ATA wd0: 1-sector PIO, LBA, 244MB, 500736 sectors wd0(pciide0:0:0): using PIO mode 2 -- ALICE HAUT DEBIT : TRIPLE PLAY A 29,95 EUR/MOIS -- Dicouvrez vite ALICEBOX : avec le modem WIFI, profitez de l'ADSL, de la TELEPHONIE et en exclusiviti de la TELEVISION ! Binificiez aussi de la hotline gratuite 24h/24 ! Soumis ` conditions. Pour en profiter cliquez ici http://abonnement.aliceadsl.fr
Re: Posible bug in bktr(4) man pages
On Tue, Dec 06, 2005 at 07:06:15PM -0800, Jacob Meuser wrote: yes, CARD_ is necessary. how to put that in the manpage in a nice format, well, I was hoping you had some input on that. simply prepending CARD_ to the names in the table will put some characters in the table beyond the 80 character limit (unless the table is shifted to the left a bit, which messes up the consistent formatting in bktr(4)). i just fixed this. jmc
Re: pci cardbus adapter not configured - ENE 1410
--On 07 December 2005 11:13 +0100, [EMAIL PROTECTED] wrote: My soekris boots on a read-only flashcard on which OpenBSD 3.7 has been pushed using flashdist. You're using a custom kernel which probably (given that it says 'net4801') doesn't support cardbus. Try GENERIC.
Re: Transparent ISP proxy problem or PF problem
--On 07 December 2005 12:33 +0200, Alexander Iliev wrote:
So far so good - the setup works very well with just one problem. My
ISP passes the traffic for two certain sites through a transparent
proxy. I reached to this conclusion due to the following:
It may be that the site is using Squid as an 'http-accelerator' to
relieve load on the webservers (client connects to accel., accel
connects to httpd and pulls the content, httpd connection then closed
and the content is fed to the client. resources on the real webservers
[e.g. RAM to run scripts in an interpreted language] are only used
while sending data to the accelerator, at lan-speed, rather than for
the duration of the client connection, possibly at modem speed).
I tried to connect the cable for the internet directly to one of the
client machines behind the firewall (Debian GNU/Linux 3.1) and the
site loads perfectly, so I came to the conclusion that my PF rules are
blocking the packets. So, I left a minimal PF setup (pass all keep
state + NAT), but the problem remained.
After some research I found a common problem with very similar
symptoms called Path MTU Discovery problem - the packets sent from
Your test with 'telnet' gives small enough packets that it probably
won't be affected by PMTU problems.
Again, I don't claim this to be OpenBSD problem or bug, although I
tried to boot Freesco on the router machine and the problem site
(arenabg.com) did load.
Could this have just been by chance? There are two IP addresses for
arenabg.com, perhaps one was working and one was failing..
Let's look at this error message:
$ telnet arenabg.com 80
Trying 82.101.72.23...
Connected to arenabg.com.
Escape character is '^]'.
GET / HTTP/1.0
HTTP/1.0 503 Service Unavailable
Server: squid/2.5.STABLE5
Mime-Version: 1.0
Date: Thu, 01 Dec 2005 14:22:09 GMT
Content-Type: text/html
Content-Length: 1
Expires: Thu, 01 Dec 2005 14:22:09 GMT
X-Squid-Error: ERR_CONNECT_FAIL 111
X-Cache: MISS from url
Connection: close
This says that the proxy cannot connect to the backend server. Are you
sure the website functions correctly? It doesn't work (no answer on
port 80) from the 3 ISPs I just tried it from here.
If you're sure the site is ok, try logging the blocked packets ('block
log all') and examine pflog (tcpdump -netttipflog0, as mentioned in the
man page). If that doesn't help, try setting pfctl -xmisc and look at
syslog.
Re: Transparent ISP proxy problem or PF problem
2005/12/7, Stuart Henderson [EMAIL PROTECTED]:
--On 07 December 2005 12:33 +0200, Alexander Iliev wrote:
So far so good - the setup works very well with just one problem. My
ISP passes the traffic for two certain sites through a transparent
proxy. I reached to this conclusion due to the following:
It may be that the site is using Squid as an 'http-accelerator' to
relieve load on the webservers (client connects to accel., accel
connects to httpd and pulls the content, httpd connection then closed
and the content is fed to the client. resources on the real webservers
[e.g. RAM to run scripts in an interpreted language] are only used
while sending data to the accelerator, at lan-speed, rather than for
the duration of the client connection, possibly at modem speed).
The Squid is at my ISP. I can tell that, 'cause I spoke to them
and they explained that their primary internet provider does not
have connectivity to these sites and they redirect the traffic for
just these two through another ISP. The internet bussiness in
Bulgaria is pretty messy, you know.
I tried to connect the cable for the internet directly to one of the
client machines behind the firewall (Debian GNU/Linux 3.1) and the
site loads perfectly, so I came to the conclusion that my PF rules are
blocking the packets. So, I left a minimal PF setup (pass all keep
state + NAT), but the problem remained.
After some research I found a common problem with very similar
symptoms called Path MTU Discovery problem - the packets sent from
Your test with 'telnet' gives small enough packets that it probably
won't be affected by PMTU problems.
The conclusion that my problem is not PMTU related did not come
from the telnet test. From what I've read on this, I think that
descreasing the mtu on my side enough should remove the problem
due to smaller MSS value sent to the server. Also I ran a test
with mtufinder
(here: http://users.tpg.com.au/adsln4yb/Perl/mtufinder) and it
passed without problems.
Again, I don't claim this to be OpenBSD problem or bug, although I
tried to boot Freesco on the router machine and the problem site
(arenabg.com) did load.
Could this have just been by chance? There are two IP addresses for
arenabg.com, perhaps one was working and one was failing..
Yes, it could be by chance, I'll have to test this one again to
make shure that under Freesco it really works.
As for the IP addresses for arenabg.com - yes, there are two such
addresses and they both work, but not outside BG, so any attempt
to connect to these server from outside will fail. Sorry, I should
have mentioned that before.
Let's look at this error message:
$ telnet arenabg.com 80
Trying 82.101.72.23...
Connected to arenabg.com.
Escape character is '^]'.
GET / HTTP/1.0
HTTP/1.0 503 Service Unavailable
Server: squid/2.5.STABLE5
Mime-Version: 1.0
Date: Thu, 01 Dec 2005 14:22:09 GMT
Content-Type: text/html
Content-Length: 1
Expires: Thu, 01 Dec 2005 14:22:09 GMT
X-Squid-Error: ERR_CONNECT_FAIL 111
X-Cache: MISS from url
Connection: close
This says that the proxy cannot connect to the backend server. Are you
sure the website functions correctly? It doesn't work (no answer on
port 80) from the 3 ISPs I just tried it from here.
See above. :)
If you're sure the site is ok, try logging the blocked packets ('block
log all') and examine pflog (tcpdump -netttipflog0, as mentioned in the
man page). If that doesn't help, try setting pfctl -xmisc and look at
syslog.
Yep, I tried the first one, but no blocked packets from this
site appeared. I'll try the pfctl -xmisc thing and see what will
come out.
Thanks and best regards.
Alexander
Re: Transparent ISP proxy problem or PF problem
I tried to connect the cable for the internet directly to one of the client machines behind the firewall (Debian GNU/Linux 3.1) and the site loads perfectly, so I came to the conclusion that my PF rules are blocking the packets. So, I left a minimal PF setup (pass all keep state + NAT), but the problem remained. When you tried a basic pass all + nat ruleset, did you leave in the scrub rule? It's needed to allow NAT on IP fragments. After some research I found a common problem with very similar symptoms called Path MTU Discovery problem - the packets sent from the server are larger than the Path MTU of the route to the client and with DF flag set, but the server (or some router) blocks the ICMP messages returned to the server and does not get notified for the fact that it must descrease the size of the packages. It does sound like a classic PathMTU problem... but something else might be up because although I can ping the site - with a full 1500B MTU - I can't access port 80. I googled and found something about this site being blocked outside Bulgaria. Also confusing is the fact you can access the server when using a directly connected host (or Freesco). And the proxy complicates things. Unfortunately it seems that this is not the case. Descreasing the MTU on the router interface should have fixed the problem, but no luck. Not always - because the remote server might not listen to your ICMP packet-too-big messages. Often you can get around this by rigging the MSS (MTU-40) in the TCP handshake using the max-mss option to the scrub rule. You might try this and find things start working even though you don't know where the problem is. Now, what I'm asking here is for some advice on how to proceed from here in order to diagnose the problem. With any potential MTU issue I always start with something like ping -vDs 1472 arenabg.com from various hosts and routers. As you vary the sizes you should receive either an echo-reply or a packet-too-big (confirm with a packet sniffer). If you don't receive any reply you might have found why and where PathMTU is broken. Steve
Re: Transparent ISP proxy problem or PF problem
Your test with 'telnet' gives small enough packets that it probably won't be affected by PMTU problems. The conclusion that my problem is not PMTU related did not come from the telnet test. From what I've read on this, I think that descreasing the mtu on my side enough should remove the problem due to smaller MSS value sent to the server. You'll either need to reduce MTU on the end-host (not on the box doing NAT), or (easier) use the max-mss option in pf.conf. The MTU value on the box doing NAT won't change the MSS on the NATted packets, it only affects packets coming from the box itself. See above. :) Ah, I see now (:
Re: Transparent ISP proxy problem or PF problem
2005/12/7, Stuart Henderson [EMAIL PROTECTED]: Your test with 'telnet' gives small enough packets that it probably won't be affected by PMTU problems. The conclusion that my problem is not PMTU related did not come from the telnet test. From what I've read on this, I think that descreasing the mtu on my side enough should remove the problem due to smaller MSS value sent to the server. You'll either need to reduce MTU on the end-host (not on the box doing NAT), or (easier) use the max-mss option in pf.conf. Yes, I did that too. In fact, not being sure on which interface should the MTU be altered, I tried to set the MTU on both interfaces of the NAT machine and also on the interface of the client machine to 576. Unfortunately, it did not help, thus my conclusion that the problem is not PMTU related, at least not at my side. If I make a wrong conclusion somewhere, please correct me - I am no network guru, and even if I were I could be wrong still. :) I thought the PMTU problem could be somewhere between me and arenabg.com, at my ISP for example. But if the problem is there no single client of that provider would not have access to this site and this is not true. Am I right on this? I thought some scrub configuration in pf.conf might be causing the problem and tried few scrub settings (including scrubbing disabled), but it did not help either. The MTU value on the box doing NAT won't change the MSS on the NATted packets, it only affects packets coming from the box itself. See above. :) Ah, I see now (:
Re: Transparent ISP proxy problem or PF problem
2005/12/7, Steve Welham [EMAIL PROTECTED]: I tried to connect the cable for the internet directly to one of the client machines behind the firewall (Debian GNU/Linux 3.1) and the site loads perfectly, so I came to the conclusion that my PF rules are blocking the packets. So, I left a minimal PF setup (pass all keep state + NAT), but the problem remained. When you tried a basic pass all + nat ruleset, did you leave in the scrub rule? It's needed to allow NAT on IP fragments. Not sure on this. I think the scrubbing was enabled, but I'll have to try it again to make sure. After some research I found a common problem with very similar symptoms called Path MTU Discovery problem - the packets sent from the server are larger than the Path MTU of the route to the client and with DF flag set, but the server (or some router) blocks the ICMP messages returned to the server and does not get notified for the fact that it must descrease the size of the packages. It does sound like a classic PathMTU problem... but something else might be up because although I can ping the site - with a full 1500B MTU - I can't access port 80. I googled and found something about this site being blocked outside Bulgaria. Also confusing is the fact you can access the server when using a directly connected host (or Freesco). And the proxy complicates things. Yes, sorry I didn't mention that - the site is not accesible from anywhere except Bulgaria. Unfortunately it seems that this is not the case. Descreasing the MTU on the router interface should have fixed the problem, but no luck. Not always - because the remote server might not listen to your ICMP packet-too-big messages. Often you can get around this by rigging the MSS (MTU-40) in the TCP handshake using the max-mss option to the scrub rule. You might try this and find things start working even though you don't know where the problem is. I think I tried that too, but again - I'll have to make sure. I tried so many things until now, that I can't remember anymore what I did and what I did not try. :) Now, what I'm asking here is for some advice on how to proceed from here in order to diagnose the problem. With any potential MTU issue I always start with something like ping -vDs 1472 arenabg.com from various hosts and routers. As you vary the sizes you should receive either an echo-reply or a packet-too-big (confirm with a packet sniffer). If you don't receive any reply you might have found why and where PathMTU is broken. Sorry, it seems I don't get exactly what should happen. :) I run 'ping -vDs 1472 arenabg.com' from where? From the obsd router, from the end-host, from somewhere else? And which machine should send the echo-reply/packet-too-big message? The one that I run the ping from or arenabg.com or some host inbetween (is this word spelled correctly?)? Again sorry for the dumb questions. Steve Thanks and regards, Alexander
Re: PF NAT Address Pool Source Interface
[EMAIL PROTECTED] wrote: On Mon, 5 Dec 2005 10:40:31 -0500 (EST), Brian A. Seklecki wrote: All: ... Even if other hosts receive a packet and reply to it, they won't be able to ARP for it, and if they could, the original OpenBSD box will drop the reply with destination host/network unreachable (obviously). Wouldn't a better behavior to prevent the transmission of the packet in the same way the a socket cannot bind to a source port/ip if it is not assigned to an interface? Thoughts? Yes! I'd rather have no change. If somebody uses the capability incorrectly it would be just another case of shooting-self-in-foot allowed by having powerful tools. My guess is that very few users ever NAT using an address other than that of the $ext_if. ... I do, but only because I can;-) I also have a /29 but I do not pay any extra for it. One address is assigned to an interface and I use another addresses for an e-mail server. In my case I use the in-kernel PPPOE and configure a static route to the loopback from the desired address: /etc/rc.local: echo ' Routes'; route add 222.222.222.222 localhost /etc/pf.conf: rdr pass on $ppp_if proto tcp from spamd to $email_addr port smtp \ - 127.0.0.1 port spamd rdr pass on $ppp_if proto tcp from !spamd-white to $email_addr port smtp \ - 127.0.0.1 port spamd rdr pass on $ppp_if proto tcp from any to $email_addr port smtp \ - 127.0.0.1 port smtp If I needed the interface to answer an ARP query, I'd simply use a static arp entry. -Steve S.
RAIDframe issues on 3.8
I had a simple RAID1 system up and running for the first time yesterday on i386 3.8, but now after testing failure mode, I can't get things unwedged. It's quite possible I wedged it worse while messing with it after the failure, so I'm OK with starting the build over (no data yet) - but I can't get it to that state either. Any pointers appreciated! Initial running status: bash-3.00# raidctl -s raid0 raid0 Components: /dev/wd2a: optimal /dev/wd1a: optimal No spares. Parity status: clean Reconstruction is 100% complete. Parity Re-write is 100% complete. Copyback is 100% complete. Mounted it ok too: /dev/raid0a 19239324 6 18277352 0%/home Then I tried a simple 'raidctl -f /dev/wd1a raid0' which failed ok, but upon a 'raidctl -R /dev/wd1a raid0' it kernel paniced, and I have not been able to resurrect it. Here's what's been changed in the kernel not a lot. I don't understand why it would panic on a simple reconstruct command. bash-3.00# diff GENERIC GENERIC_RAID 16,18c16,18 optionI386_CPU# CPU classes; at least one is REQUIRED optionI486_CPU optionI586_CPU --- #option I386_CPU# CPU classes; at least one is REQUIRED #option I486_CPU #option I586_CPU 21a22,24 optionRAID_AUTOCONFIG optionRAIDDEBUG 23a27 607c611 #pseudo-deviceraid4 # RAIDframe disk driver --- pseudo-device raid4 # RAIDframe disk driver Here's the current status of the RAID: bash-3.00# raidctl -s raid0 raid0 Components: /dev/wd2a: optimal /dev/wd1a: failed No spares. Parity status: DIRTY Reconstruction is 100% complete. Parity Re-write is 100% complete. Copyback is 100% complete. I can't fix the parity either now, it fails on both a -i and a -P attempt. wd2a's component label looks fine: bash-3.00# raidctl -g /dev/wd2a raid0 Component label for /dev/wd2a: Row: 0, Column: 0, Num Rows: 1, Num Columns: 2 Version: 2, Serial Number: 100, Mod Counter: 192 Clean: No, Status: 0 sectPerSU: 32, SUsPerPU: 1, SUsPerRU: 1 Queue size: 100, blocksize: 512, numBlocks: 39102080 RAID Level: 1 Autoconfig: No Root partition: No Last configured as: raid0 wd1a's does not... pretty much every bit of data that could be changed, has been somehow. I suspect this is part of the root reason that raid0 can't deal with it, but I can't seem to get it to reinitialize correctly either. bash-3.00# raidctl -g /dev/wd1a raid0 Component label for /dev/wd1a: Row: 16, Column: 24, Num Rows: 1312, Num Columns: 16 Version: 0, Serial Number: 0, Mod Counter: 8 Clean: Yes, Status: 1133920558 sectPerSU: 9775536, SUsPerPU: 9620351, SUsPerRU: 119 Queue size: 2048, blocksize: 8, numBlocks: 5 RAID Level: Autoconfig: Yes Root partition: Yes Last configured as: raid256 After a reboot, dmesg says: wd1 at pciide0 channel 0 drive 1: IBM-DPTA-372050 wd1: 16-sector PIO, LBA, 19574MB, 40088160 sectors wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2 wd2 at pciide0 channel 1 drive 1: WDC WD200EB-00CSF0 wd2: 16-sector PIO, LBA, 19092MB, 39102336 sectors wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 Kernelized RAIDframe activated Searching for raid components... cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x0 SENSE KEY: Not Ready ASC/ASCQ: Medium Not Present [ why does cd0 show up here at all? ] Component on: wd2a: 39102147 Row: 0 Column: 0 Num Rows: 1 Num Columns: 2 Version: 2 Serial Number: 100 Mod Counter: 183 Clean: No Status: 0 sectPerSU: 32 SUsPerPU: 1 SUsPerRU: 1 RAID Level: 1 blocksize: 512 numBlocks: 39102080 Autoconfig: No Contains root partition: No Last configured as: raid0 Found: wd2a at 0,0 RAIDFRAME: protectedSectors is 64. Hosed component: /dev/wd1a. Hosed component: /dev/wd1a. raid0: Component /dev/wd2a being configured at row: 0 col: 0 Row: 0 Column: 0 Num Rows: 1 Num Columns: 2 Version: 2 Serial Number: 100 Mod Counter: 183 Clean: No Status: 0 /dev/wd2a is not clean ! raid0: Ignoring /dev/wd1a. RAIDFRAME(RAID Level 1): Using 6 floating recon bufs with no head sep limit. raid0 (root)raid0: Error re-writing parity! I agree it's 'hosed', just looking at the component label! Nice message. :) If I umount the partition and try to -u(nconfigure) raid0, it kernel panics. If I -R(econstruct), it kernel panics.I've messed it up but good. How do I reinitialize wd1a and/or raid0 and/or start over completely? -Dave Diller
Nagios Port - Installation problem (3.8)
Hi all I've tried installing the Nagios (2.0b4p0) port chrooted but I get the following error when it comes to the last stage of the install: === Installing nagios-2.0b4p0-chroot from /usr/ports/packages/i386/all/nagios-2.0b4p0-chroot.tgz Can't install nagios-2.0b4p0-chroot because of conflicts (nagios-2.0b4p0) /usr/sbin/pkg_add: /usr/ports/packages/i386/all/nagios-2.0b4p0-chroot.tgz:Fatal error *** Error code 1 Stop in /usr/ports/net/nagios/nagios (line 1902 of /usr/ports/infrastructure/mk/bsd.port.mk). *** Error code 1 Stop in /usr/ports/net/nagios (line 108 of /usr/ports/infrastructure/mk/bsd.port.subdir.mk). I installed like so: # cd /usr/ports/net/nagios/ # make flavor='chroot' # make install After reading a post I found on Google I tried: # cd /usr/ports/net/nagios/ # make flavor='chroot' # cd nagios # make install Both options fail with the above error. All the dependenciess seemed to install OK. I also tried without using the flavor='chroot' in the make cmd. The system is a GENERIC kernel base install with the ports tree installed and updated. The only other thing I have done to the system is install SSL certs for Apache. Can anyone suggest what I might be doing wrong? I don't mind either way whether I get a full chrooted install although it would be very nice! Thanks -- Simon H
Re: Posible bug in bktr(4) man pages
i just fixed this. jmc Thanks you very much, I have just seen the change on the OpenBSD CVS WEB interface. Ramiro
Re: Nagios Port - Installation problem (3.8)
--On 07 December 2005 16:12 +, Simon H wrote: === Installing nagios-2.0b4p0-chroot from /usr/ports/packages/i386/all/nagios-2.0b4p0-chroot.tgz Can't install nagios-2.0b4p0-chroot because of conflicts (nagios-2.0b4p0) Looks like you've already got the non-chroot flavour installed, pkg_delete it first. # make flavor='chroot' That's not how ports(7) says to do this (see the section headed FLAVORS if you actually want to build it yourself for some reason: otherwise, it's simpler to just use the provided packages).
Re: gethostbyname in 3.8 returns error -1
Otto Moerbeek wrote: On Tue, 6 Dec 2005, Federico Giannici wrote: Since I upgraded an OpenBSD/amd64 3.7 to 3.8 (following instructions in the Upgrade Guide) sometimes gethostbyname() returns NULL with h_errno equal to -1 (Resolver internal error). What is the value of errno? errno is 2. The program (OpenSER 1.0.0) had no problems under 3.7. The domain string is correct. The error seems to appear the SECOND time the gethostbyname() function is called by the same process. What could be the problem? Check the usual suspect: /etc/resolv.conf It is the same of 3.7, simply the following: lookup file bind nameserver 195.120.250.10 May it be relevant that the program is run chrootted??? I'm going to make some tests, as soon as I have the time... Bye. -- ___ __ |- [EMAIL PROTECTED] |ederico Giannici http://www.neomedia.it ___
Re: gethostbyname in 3.8 returns error -1
Federico Giannici wrote: Otto Moerbeek wrote: On Tue, 6 Dec 2005, Federico Giannici wrote: Since I upgraded an OpenBSD/amd64 3.7 to 3.8 (following instructions in the Upgrade Guide) sometimes gethostbyname() returns NULL with h_errno equal to -1 (Resolver internal error). What is the value of errno? errno is 2. The program (OpenSER 1.0.0) had no problems under 3.7. The domain string is correct. The error seems to appear the SECOND time the gethostbyname() function is called by the same process. What could be the problem? Check the usual suspect: /etc/resolv.conf It is the same of 3.7, simply the following: lookup file bind nameserver 195.120.250.10 May it be relevant that the program is run chrootted??? I'm going to make some tests, as soon as I have the time... Got it! I simply copied /etc/resolv.conf to the chrootted path and the problem disappeared. So something changed beetween 3.7 and 3.8 in the way /etc/resolv.conf is accessed... Thank you. -- ___ __ |- [EMAIL PROTECTED] |ederico Giannici http://www.neomedia.it ___
Re: Nagios Port - Installation problem (3.8)
Stuart Henderson wrote: --On 07 December 2005 16:12 +, Simon H wrote: === Installing nagios-2.0b4p0-chroot from /usr/ports/packages/i386/all/nagios-2.0b4p0-chroot.tgz Can't install nagios-2.0b4p0-chroot because of conflicts (nagios-2.0b4p0) Looks like you've already got the non-chroot flavour installed, pkg_delete it first. # make flavor='chroot' That's not how ports(7) says to do this (see the section headed FLAVORS if you actually want to build it yourself for some reason: otherwise, it's simpler to just use the provided packages). Thanks for this Stuart. I tried it withe right way from the man page and it failed because the plugins dont support chroot flavor. So I cleaned everything up again and tried a normal make make install and it still fails with the original message. This is even after the fact that I did a pkg_delete and cleaned the directories recommended after the pkg_delete. So any ideas why this would happen in a normal build of the port? I'll perhaps try to install the package instead of the port but I like installing from src where possible. Thanks again -- Simon H
X on a Dell Optiplex GX270
Has anyone gotten X working on a Dell Optiplex GX270? Seems as though I can startx(1) but the screen is extremely garbled. Trying to run any configuration utility doesn't seem to do any good either. I've bumped up the amount of RAM on the card from 1MB to 8MB in the bios, but it still doesn't work. If anyone has any pointers, please let me know. Here's a dmesg(8). OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz (GenuineIntel 686-class) 2.80 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID real mem = 1064349696 (1039404K) avail mem = 964554752 (941948K) using 4278 buffers containing 53321728 bytes (52072K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 10/20/03, BIOS32 rev. 0 @ 0xffe90 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfeae0/176 (9 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801EB/ER LPC rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0xa800 0xca800/0x1800! cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82865G/PE/P CPU-I/0-1 rev 0x02 vga1 at pci0 dev 2 function 0 Intel 82865G Video rev 0x02: aperture at 0xe800, size 0x800 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci0 at pci0 dev 29 function 0 Intel 82801EB/ER USB rev 0x02: irq 11 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 Intel 82801EB/ER USB rev 0x02: irq 10 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 Intel 82801EB/ER USB rev 0x02: irq 9 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered uhci3 at pci0 dev 29 function 3 Intel 82801EB/ER USB rev 0x02: irq 11 usb3 at uhci3: USB revision 1.0 uhub3 at usb3 uhub3: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub3: 2 ports with 2 removable, self powered ehci0 at pci0 dev 29 function 7 Intel 82801EB/ER USB rev 0x02: irq 5 usb4 at ehci0: USB revision 2.0 uhub4 at usb4 uhub4: Intel EHCI root hub, rev 2.00/1.00, addr 1 uhub4: 8 ports with 8 removable, self powered ppb0 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xc2 pci1 at ppb0 bus 1 rl0 at pci1 dev 8 function 0 Realtek 8139 rev 0x10: irq 3 address 00:40:f4:71:83:05 rlphy0 at rl0 phy 0: RTL internal phy em0 at pci1 dev 12 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 9, address: 00:0d:56:fa:3b:8f ichpcib0 at pci0 dev 31 function 0 Intel 82801EB/ER LPC rev 0x02 pciide0 at pci0 dev 31 function 1 Intel 82801EB/ER IDE rev 0x02: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: WDC WD400BB-75FJA1 wd0: 16-sector PIO, LBA, 38146MB, 78125000 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets
Re: RAIDframe issues on 3.8
Dave Diller writes: Here's what's been changed in the kernel not a lot. I don't understand why it would panic on a simple reconstruct command. I might be able to understand, but my crystal ball is at the cleaners, and I can't guess what your panic message looked like, nor what the traceback was. Here's the current status of the RAID: [snip] I can't fix the parity either now, it fails on both a -i and a -P attempt. Right. The RAID set only has one good component. There's nothing to rebuild parity onto with just one good component. wd2a's component label looks fine: [snip] wd1a's does not... pretty much every bit of data that could be changed, has been somehow. I suspect this is part of the root reason that raid0 can't dea l with it, but I can't seem to get it to reinitialize correctly either. bash-3.00# raidctl -g /dev/wd1a raid0 Component label for /dev/wd1a: Row: 16, Column: 24, Num Rows: 1312, Num Columns: 16 Version: 0, Serial Number: 0, Mod Counter: 8 Clean: Yes, Status: 1133920558 sectPerSU: 9775536, SUsPerPU: 9620351, SUsPerRU: 119 Queue size: 2048, blocksize: 8, numBlocks: 5 RAID Level: Autoconfig: Yes Root partition: Yes Last configured as: raid256 Hmmm... I don't understand this... the label should be the same as the other, sans the Column and Mod Counter fields. (and possibly Clean and Status). [snip] RAIDFRAME: protectedSectors is 64. Hosed component: /dev/wd1a. Hosed component: /dev/wd1a. raid0: Component /dev/wd2a being configured at row: 0 col: 0 Row: 0 Column: 0 Num Rows: 1 Num Columns: 2 Version: 2 Serial Number: 100 Mod Counter: 183 Clean: No Status: 0 /dev/wd2a is not clean ! raid0: Ignoring /dev/wd1a. RAIDFRAME(RAID Level 1): Using 6 floating recon bufs with no head sep limit. raid0 (root)raid0: Error re-writing parity! I agree it's 'hosed', just looking at the component label! Nice message. :) If I umount the partition and try to -u(nconfigure) raid0, it kernel panics. That shouldn't happen either. If I -R(econstruct), it kernel panics.I've messed it up but good. How do I reinitialize wd1a and/or raid0 and/or start over completely? You'll have to boot without /etc/raid0.conf. You can then re-do the config with -C and then -I again, but that won't help you when a disk fails and you get the panic messages on trying to reconstruct. (raidctl -R should *not* panic... (in the version of RAIDframe you're running, it will it encounters a read error or a write error while doing the reconstruct, but that's probably a different problem)). Oh... and from the obivous bugs department: In rf_openbsdkintf.c case RAIDFRAME_GET_COMPONENT_LABEL: there is a: RF_Free( clabel, sizeof(RF_ComponentLabel_t)); missing before the: return(EINVAL); But that won't help with the problem your describing... (just noticed the above as I was perusing the code..) Later... Greg Oster
Re: Nagios Port - Installation problem (3.8)
cd /usr/ports/net/nagios/ FLAVOR=chroot make install clean-depends that should do it ;) -- viq -- INTERIA.PL | Kliknij po wiecej http://link.interia.pl/f18c1
I dump'd my restore drive (request for confirmation)
Well, I accidentally disklabeled it. I was playing with ccd recently and stupidly began ccd type recovery on a dump copy hard drive by entering disklabel and changing the unused wd2a partition into a 4.2BSD partition, offset of course by 63, writing to the disklabel and returning to the command prompt. I tried to set things right (by resetting the things back to the way it was). Anywho, is there any chance of recovering what is on this hard drive? right now I see # disklabel -E wd2 .. blah blah blah ... 16 partitions: # sizeoffset fstype [fsize bsize cpg] a: 39102147 0 unused 0 0 # Cyl 0 - 38791* c: 39102336 0 unused 0 0 # Cyl 0 - 38791 # restore -rvs 1 -f /dev/rwd2a Verify tape and initialize maps restore: /dev/rwd2a: Device not configured # restore -rvs 1 -f /dev/rwd2c Verify tape and initialize maps Tape block size is 32 restore: Tape is not a dump tape It is, quite possible that it didn't work properly to begin with, as I did never check (my very bad). I was wondering if there was any way to recover what is on that drive, say with dd or something, or a way to rebuild the dump. To be complete, since I've already poured gasoline over myself and lit the BBQ-lighter and gave it a big hug, I suspect the answer is no (in which case to be burned to a crisp) or there is something else left to try. Thanks for the Info! Either way I still feel like I'm hosed. -- I know too much and yet do not practise what I know.
Re: RAIDframe issues on 3.8
Oh... and from the obivous bugs department: In rf_openbsdkintf.c case RAIDFRAME_GET_COMPONENT_LABEL: there is a: RF_Free( clabel, sizeof(RF_ComponentLabel_t)); missing before the: return(EINVAL); But that won't help with the problem your describing... (just noticed the above as I was perusing the code..) Ha! Guess it helps when you wrote the original version, eh? Nice. It definitely seems to be related to issues with rf_openbsdkintf.c though - I was just pointed to this bug by the gentleman who opened it a couple of months ago: http://cvs.openbsd.org/cgi-bin/query-pr-wrapper?full=yesnumbers=4508 which has the same panic that I'm seeing. Sorry for not including it initially, BTW. Didn't have an easy way to do that since I'm remote with no console. Resolution was State-Changed-Why: Fixed in revision 1.28 of rf_openbsdkintf.c, thanks for the report and I'm running /* $OpenBSD: rf_openbsdkintf.c,v 1.27 2004/11/28 02:47:14 pedro Exp $ */ So, time to resolve that via the latest -stable and try again. Do you have the cycles to get a bug in queue for the one you spotted on a quick once-over, before someone gets nailed by THAT one? I could open it, but it would merely say didn't run into the problem, but Greg Oster says its an obvious bug... ;-) Thanks, -Dave
Re: NFS and Rebooting problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Today Otto Moerbeek contributed the following: On Wed, 7 Dec 2005, Denny White wrote: I was hoping someone could shed some light with some good links, sample configurations, etc., that might help me with the following. Not looking for someone to fix it for me or anything like that. Maybe the following will show that I have tried reading, googling, experimenting, etc., before asking. I don't want to have any settings too high to cause other problems, just to change what's neccessary. When I'd drag drop files to copy from a windows xp box to an nfs share on the obsd box, the obsd system would reboot. I thought at first that it was either something conflicting from the xp box, or that I had a hardware problem on the obsd box. That had happened once with a bad simm, but I had replaced it had had no further problems until now. Before running a time consuming memory test on the obsd box, I did some reading on obsd tunables, and am now able to copy a file over from the xp box without the system rebooting. Below is a list of the changes: net.inet.tcp.keepinittime=600 net.inet.tcp.keepidle=28800 net.inet.tcp.keepintvl=600 net.inet.tcp.recvspace=65536 net.inet.tcp.sendspace=32768 net.inet.udp.recvspace=83200 net.bpf.bufsize=65536 vfs.nfs.iothreads=4 What type of nfs mount are you using? v2 or v3; udp or tcp? Any info on the console the moment the machine reboots? What is the value of tyhe ddb.panic sysctl? Anything in the logs? -Otto Looks like v3, tcp. there was nothing on the screen when the box rebooted. Just goes blank reboots. Looked through the logs couldn't find anything, either. Running sysctl -a | grep ddb.panic returns `ddb.panic=1'. I'm a relative newbie, so I could be completely offbase, but this doesn't look good. Looks like maybe it could be a hardware problem. Maybe the settings I upped could are just taking some of the strain off the system. I read in the obsd faqs, concerning nfs, that nfs filesystems should be mounted with 0 0 on the end of the line in /etc/fstab so the computer doesn't try to fsck the nfs filesystem on boot. Here's what my /etc/fstab looks like /etc/exports: /dev/wd0a / ffs rw 1 1 /dev/wd0h /data ffs rw,nodev,nosuid 1 2 /dev/wd0f /home ffs rw,nodev,nosuid 1 2 /dev/wd0g /tmp ffs rw,nodev,nosuid 1 2 /dev/wd0e /usr ffs rw,nodev 1 2 /dev/wd0d /var ffs rw,nodev,nosuid 1 2 /dev/wd1c /mnt ffs rw,nodev,nosuid 1 2 /dev/cd0c /mnt/cdrom cd9660 ro,nodev,nosuid,noauto 0 0 /dev/fd0a /mnt/floppy msdos ro,nodev,nosuid,noauto 0 0 /mnt/data2/swap /mnt/data2/swap swap sw 0 0 # $OpenBSD: exports,v 1.2 2002/05/31 08:15:44 pjanzen Exp $ # # NFS exports Database # See exports(5) for more information. Be very careful: misconfiguration # of this file can result in your filesystems being readable by the world. # /home -alldirs -maproot=0 192.168.1.100 192.168.1.101 192.168.1.103 /data -alldirs -maproot=0 192.168.1.100 192.168.1.101 192.168.1.103 /mnt -alldirs -maproot=0 192.168.1.100 192.168.1.101 192.168.1.103 I don't quite understand the faqs I read, I guess. I thought all you had to do was put the right parameters into /etc/exports and you were good to go. Not having any problems on the old hp netserver running fbsd_5_4. Hope some of this helps. Hurried gathering the info. Have head off for work shortly. Denny White Before the problem started occurring, I was using softupdates. I tried running without them, thinking maybe that had some bearing on the problem. Apparently it didn't. The only thing that helped was the changes listed above. I read that if you increase the tcp.recvspace tcp.sendspace too high, you can cause a kernel panic when booting. That hasn't happened so far, with the above values. Exactly how high I can go without problems, I don't know. The obsd box is used for email learning, mostly. No high usage production server. The largest file I've tried to copy to the nfs share since making the changes was about 26mb. No reboot this time. Before the changes, about the largest I could copy without trouble was 2mb. Right now, I'm limited on memory. There's only 256mb on the obsd box. That might be a problem, too, if I keep increasing the above values. There is no problem with file sizes when using scp across the network. Forgot to mention that I had tested it too, by mounting an obsd nfs share over on a fbsd box had tried to copy a large file over, resulting in a reboot. That was when I figured I had it narrowed down to hardware or an obsd settings problem, the latter apparently being the case. Thanks for any answers advice. Below is output of uname -a dmesg. OpenBSD badboybox.cableone.net 3.8 GENERIC#0 i386 OpenBSD 3.8-stable (GENERIC) #0: Fri Dec 2 01:25:13 CST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium III (GenuineIntel 686-class) 601 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE real mem = 267952128
Re: gethostbyname in 3.8 returns error -1
On 12/7/05, Federico Giannici [EMAIL PROTECTED] wrote: May it be relevant that the program is run chrootted??? I'm going to make some tests, as soon as I have the time... Got it! I simply copied /etc/resolv.conf to the chrootted path and the problem disappeared. So something changed beetween 3.7 and 3.8 in the way /etc/resolv.conf is accessed... i made some changes to the resolver, though they should deal with this situation (unless there's a bug).
Re: Nagios Port - Installation problem (3.8)
--On 07 December 2005 16:52 +, Simon H wrote: Thanks for this Stuart. I tried it withe right way from the man page and it failed because the plugins dont support chroot flavor. Plugins and the main software are in subdirectories (/usr/ports/net/nagios/nagios /usr/ports/net/nagios/plugins), you can compile them separately, one with flavours, one without. But you don't need to, read on.. So I cleaned everything up again and tried a normal make make install and it still fails with the original message. This is even after the fact that I did a pkg_delete and cleaned the directories recommended after the pkg_delete. So any ideas why this would happen in a normal build of the port? I'll perhaps try to install the package instead of the port but I like installing from src where possible. When you 'make install', the port is built, packages are created (you'll see them in /usr/ports/packages/...) then installed. Packages for ftp sites and CDs are made this way too. For e.g. Nagios, well, take a look at /usr/ports/net/nagios/Makefile and see how it works... Making the packages is done inside fake directories so multiple flavours don't conflict until they're actually installed. So, your current system probably has /usr/ports/packages/.../All/nagios-* already built for both flavours of the port, and you can just pkg_add (this is all 'make install' does anyway: see for yourself with 'make -n install').
Re: Nagios Port - Installation problem (3.8)
viq wrote: cd /usr/ports/net/nagios/ FLAVOR=chroot make install clean-depends that should do it ;) Thanks viq, but this still fails on the plugins install as they dont support chroot flavor aparently: Fatal: Unknown flavor: chroot (in net/nagios/plugins) (Possible flavors are: no_db no_ntp no_samba no_snmp). (in net/nagios/plugins) *** Error code 1 Stop. *** Error code 1 Stop in /usr/ports/net/nagios (line 108 of /usr/ports/infrastructure/mk/bsd.port.subdir.mk). # Is there a way around this so the full install c/w plugins, etc all work in a chrooted environment? Thanks -- Simon H
Re: RAIDframe issues on 3.8
Dave Diller writes: Oh... and from the obivous bugs department: In rf_openbsdkintf.c case RAIDFRAME_GET_COMPONENT_LABEL: there is a: RF_Free( clabel, sizeof(RF_ComponentLabel_t)); missing before the: return(EINVAL); But that won't help with the problem your describing... (just noticed the above as I was perusing the code..) Ha! Guess it helps when you wrote the original version, eh? Nice. Well... 7 years ago now for some of these bits :) (and yes, this bug is entirely mine :) ) It definitely seems to be related to issues with rf_openbsdkintf.c though - I was just pointed to this bug by the gentleman who opened it a couple of months ago: http://cvs.openbsd.org/cgi-bin/query-pr-wrapper?full=yesnumbers=4508 Ahh.. that one. which has the same panic that I'm seeing. Sorry for not including it initially, BTW. Didn't have an easy way to do that since I'm remote with no console. Resolution was State-Changed-Why: Fixed in revision 1.28 of rf_openbsdkintf.c, thanks for the report and I'm running /* $OpenBSD: rf_openbsdkintf.c,v 1.27 2004/11/28 02:47:14 pedro Exp $ */ So, time to resolve that via the latest -stable and try again. Yup. Do you have the cycles to get a bug in queue for the one you spotted on a quick once-over, before someone gets nailed by THAT one? I could open it, but it would merely say didn't run into the problem, but Greg Oster says its an obvious bug... ;-) I mentioned it here since it's an easy one for someone to fix... You can file a problem report if you'd like, but I don't want to get started filing PR's for RAIDframe stuff in OpenBSD -- there have been a lot of changes/fixes to RAIDframe in the last 5 years that aren't reflected in the code in OpenBSD, and I wouldn't know where to begin :) Later... Greg Oster
UltraSparc documentation
I remember reading about the issue with UltraSparc documentation. Derek Warren has raised teh point in a blog comment on John Clingan's blog here. http://blogs.sun.com/roller/page/jclingan?entry=what_do_you_think_of#comments HTH
Re: Nagios Port - Installation problem (3.8)
Stuart Henderson wrote: --On 07 December 2005 16:52 +, Simon H wrote: Thanks for this Stuart. I tried it withe right way from the man page and it failed because the plugins dont support chroot flavor. Plugins and the main software are in subdirectories (/usr/ports/net/nagios/nagios /usr/ports/net/nagios/plugins), you can compile them separately, one with flavours, one without. But you don't need to, read on.. So I cleaned everything up again and tried a normal make make install and it still fails with the original message. This is even after the fact that I did a pkg_delete and cleaned the directories recommended after the pkg_delete. So any ideas why this would happen in a normal build of the port? I'll perhaps try to install the package instead of the port but I like installing from src where possible. When you 'make install', the port is built, packages are created (you'll see them in /usr/ports/packages/...) then installed. Packages for ftp sites and CDs are made this way too. For e.g. Nagios, well, take a look at /usr/ports/net/nagios/Makefile and see how it works... Making the packages is done inside fake directories so multiple flavours don't conflict until they're actually installed. So, your current system probably has /usr/ports/packages/.../All/nagios-* already built for both flavours of the port, and you can just pkg_add (this is all 'make install' does anyway: see for yourself with 'make -n install'). I understand this and have tried just installing the chroot package manually also but nothing seems to be going in the right place (/var/www/nagios is empty after adding the chrooted package). I'm doing this in a VM so I'm reverting back to a snapshot which is just after updating the ports tree and starting again. What I dont understand is why the plugins dont require the chroot flavor and how they would work with nagios chrooted. Also, what about the dependencies such as GD and the like...do they all get chrooted automagically too and if not, how does it work? Is it really possible to get a full nagios implementation (inc. plugins) chrooted? Thanks -- Simon H
Re: UltraSparc documentation
I remember reading about the issue with UltraSparc documentation. Derek Warren has raised teh point in a blog comment on John Clingan's blog here. http://blogs.sun.com/roller/page/jclingan?entry=what_do_you_think_of#comments We don't need processor docs. That stuff is trivial. We need *chipset docs*. And those are still not available under Sun's new program. So it is STILL a complete matter of reverse engineering. Same as with Apple, of course: powerpc is trivial. But the chipsets on every Apple machine are subtly different, full of bugs, and reading Darwin is a terrific waste of time since the code is so horrid, and of course, it is all just a maze of workarounds. Verilog for ultrasparc? Give me a break. We don't care.
Re: UltraSparc documentation
I remember reading about the issue with UltraSparc documentation. Derek Warren has raised teh point in a blog comment on John Clingan's blog here. http://blogs.sun.com/roller/page/jclingan?entry=what_do_you_think_of#comments We don't need processor docs. That stuff is trivial. We need *chipset docs*. Want to be clear with Sun? They are closed until we there is complete Schizo host-bridge documentation available for everyone.
Re: Nagios Port - Installation problem (3.8)
I understand this and have tried just installing the chroot package manually also but nothing seems to be going in the right place (/var/www/nagios is empty after adding the chrooted package). I'm doing this in a VM so I'm reverting back to a snapshot which is just after updating the ports tree and starting again. What I dont understand is why the plugins dont require the chroot flavor and how they would work with nagios chrooted. Also, what about the dependencies such as GD and the like...do they all get chrooted automagically too and if not, how does it work? Is it really possible to get a full nagios implementation (inc. plugins) chrooted? The plugins are not chrooted, there is no reason to do so. The main nagios daemon runs outside of Apache's chroot, hence, so do the plugins. Benny -- NOT WORK SAFE! Extreme animated violence, language, birds, and what appears to be God with a katana. -- SA list
Re: gethostbyname in 3.8 returns error -1
On Wed, 7 Dec 2005, Ted Unangst wrote: On 12/7/05, Federico Giannici [EMAIL PROTECTED] wrote: May it be relevant that the program is run chrootted??? I'm going to make some tests, as soon as I have the time... Got it! I simply copied /etc/resolv.conf to the chrootted path and the problem disappeared. So something changed beetween 3.7 and 3.8 in the way /etc/resolv.conf is accessed... i made some changes to the resolver, though they should deal with this situation (unless there's a bug). I only grepped through the code of openser briefly, but this scenario seems likely. 1. App calls res_init() which calls _res_init(1); _resp-restimespe does not get set 2. App calls gethostbyname(), all is fine. 3. App does chroot. 4. App calls gethostbyname(), which calls _res_init(0). Let's assume the recheck is done. The stat() will fail, but since _resp-restimespec is not set, it will fall through and try to read /etc/resolv.conf from within the chroot. -Otto
Re: gethostbyname in 3.8 returns error -1
On 12/7/05, Otto Moerbeek [EMAIL PROTECTED] wrote: i made some changes to the resolver, though they should deal with this situation (unless there's a bug). I only grepped through the code of openser briefly, but this scenario seems likely. 1. App calls res_init() which calls _res_init(1); _resp-restimespe does not get set 2. App calls gethostbyname(), all is fine. 3. App does chroot. 4. App calls gethostbyname(), which calls _res_init(0). Let's assume the recheck is done. The stat() will fail, but since _resp-restimespec is not set, it will fall through and try to read /etc/resolv.conf from within the chroot. yes, i think making it set restimespec to now (long ago?) would be a good fix.
Re: I dump'd my restore drive (request for confirmation)
On Wed, 7 Dec 2005, Whyzzi wrote: Well, I accidentally disklabeled it. I was playing with ccd recently and stupidly began ccd type recovery on a dump copy hard drive by entering disklabel and changing the unused wd2a partition into a 4.2BSD partition, offset of course by 63, writing to the disklabel and returning to the command prompt. I tried to set things right (by resetting the things back to the way it was). Anywho, is there any chance of recovering what is on this hard drive? right now I see # disklabel -E wd2 .. blah blah blah ... 16 partitions: # sizeoffset fstype [fsize bsize cpg] a: 39102147 0 unused 0 0 # Cyl 0 - 38791* c: 39102336 0 unused 0 0 # Cyl 0 - 38791 # restore -rvs 1 -f /dev/rwd2a Verify tape and initialize maps restore: /dev/rwd2a: Device not configured # restore -rvs 1 -f /dev/rwd2c Verify tape and initialize maps Tape block size is 32 restore: Tape is not a dump tape It is, quite possible that it didn't work properly to begin with, as I did never check (my very bad). The partition being of type unused does prevent it from being read. Try changing it to 4.2BSD (m a command in disklabel editor). That'll allow you to read it. Of course I don;t know how much damage has been done and if restore will be able. I was wondering if there was any way to recover what is on that drive, say with dd or something, or a way to rebuild the dump. To be complete, since I've already poured gasoline over myself and lit the BBQ-lighter and gave it a big hug, I suspect the answer is no (in which case to be burned to a crisp) or there is something else left to try. Thanks for the Info! Either way I still feel like I'm hosed. -- I know too much and yet do not practise what I know. -Otto
Re: I dump'd my restore drive (request for confirmation)
# restore -rvs 1 -f /dev/rwd2a Verify tape and initialize maps restore: /dev/rwd2a: Device not configured # restore -rvs 1 -f /dev/rwd2c Verify tape and initialize maps Tape block size is 32 restore: Tape is not a dump tape It is, quite possible that it didn't work properly to begin with, as I did never check (my very bad). The partition being of type unused does prevent it from being read. Try changing it to 4.2BSD (m a command in disklabel editor). That'll allow you to read it. Of course I don;t know how much damage has been done and if restore will be able. Thanks for the information. At least I get a little farther now (though, not by much) [0] offset and 4.2BSD got me: Tape block size is 32 restore: Tape is not a dump tape But with a [63] offset 4.2BSD # restore -rvs 1 -f /dev/wd2a Tape block size is 32 Checksum error 130153226717, inode 0 file (null) restore: Tape is not a dump tape Good example of a case of why a [63] disklabel offset is extremely important here, even when working with dump/restore.
Re: Nagios Port - Installation problem (3.8)
On Wednesday 07 December 2005 19:01, Simon H wrote: viq wrote: cd /usr/ports/net/nagios/ FLAVOR=chroot make install clean-depends that should do it ;) Thanks viq, but this still fails on the plugins install as they dont support chroot flavor aparently: Fatal: Unknown flavor: chroot (in net/nagios/plugins) (Possible flavors are: no_db no_ntp no_samba no_snmp). (in net/nagios/plugins) *** Error code 1 Stop. *** Error code 1 Stop in /usr/ports/net/nagios (line 108 of /usr/ports/infrastructure/mk/bsd.port.subdir.mk). # Is there a way around this so the full install c/w plugins, etc all work in a chrooted environment? Ah. I don't have yet that much experience with ports, and didn't play with nagios, so i'm afraid the help will have to come from someone else. All i can help you with is that FLAVORS have to be capitalised, and you need to enter it on every line that has a make in it ;) -- viq -- INTERIA.PL | Kliknij po wiecej http://link.interia.pl/f18c1
em(4) problems on OpenBSD 3.6-stable-3.8-stable
Hello Ever since I started pushing over 80+ mbits continously on our em0 we are seeing em0: watchdog timeout -- resetting eachoter day on our em0 interfaces that are em0 at pci1 dev 28 function 0 Intel PRO/1000CT (82547GI) rev 0x00: irq 11, address: 00:30:48:81:b4:7c but not on our : em1 at pci2 dev 1 function 0 Intel PRO/1000MT (82546EB) rev 0x01: irq 9, address 00:07:e9:0c:92:2e that is a pci 64 card in the machine that pushes the same amount of traffic. And since we have replaced the other side of the link and the router itself and we have not seen any remedy to the problem I suspect the problem is with the em driver and the Intel PRO/1000CT-card Has anyone had similar problems and perhaps has a soloution ? The boxes are Supermicro and are Pentium 4 based. // Philip
Re: Nagios Port - Installation problem (3.8)
From: viq [mailto:[EMAIL PROTECTED] Is there a way around this so the full install c/w plugins, etc all work in a chrooted environment? Ah. I don't have yet that much experience with ports, and didn't play with nagios, so i'm afraid the help will have to come from someone else. All i can help you with is that FLAVORS have to be capitalised, and you need to enter it on every line that has a make in it ;) In the time everyone's been discussing this I installed the packages from FTP; why are we messing with ports and FLAVORs? DS
Re: Nagios Port - Installation problem (3.8)
On Wednesday 07 December 2005 23:30, Spruell, Darren-Perot wrote: In the time everyone's been discussing this I installed the packages from FTP; why are we messing with ports and FLAVORs? Some people prefer to build stuff from source on their own machine, instead of having binary packages from (semi-)unknown sources. Or just because they like to ;) And not all flavours are available as packages. Though yes, i guess in this case they are. -- viq -- INTERIA.PL | Kliknij po wiecej http://link.interia.pl/f18c1
Re: OpenBSD 3.8+Mysql 5.0.16
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 # /usr/local/mysql/bin/mysql -V /usr/local/mysql/bin/mysql: can't load library '../libmysql/.libs/libmysqlclient.so.15.0' This means that the .so from the build directory is hardcoded into the executable - most likely an error in the build scripts. There's a bug at mysql.com that deals with the problem (unsolved): http://bugs.mysql.com/bug.php?id=6521error=lp The only thing that worked for me was to build and install mysql, then cd to client, clean it and relink all client binaries with a row of corrected calls to g++ (can mail it to you off-list if needed). krgds /m - -- Markus Wernig Unix/Network Security Engineer - CISSP, CCSA GPG: CA558BF7 http://xfer.ch - - Linux User Group Bern - http://lugbe.ch - - -BEGIN PGP SIGNATURE- iD8DBQFDl3Kp8BX/d8pVi/cRAtZFAKCegXbeIRPZf0sxwPnYZ3PQO6zvfgCgz9z2 EU131ayXuiShAKlQRkbRKDU= =0ddI -END PGP SIGNATURE-
using hotplugd / hotplug to forcibly unmount / umount a USB flash drive
I found this posting: http://marc.theaimsgroup.com/?l=openbsd-miscm=110931013806157w=2 That says: Does anyone have creative ways to deal with this? I'm not sure it's going to be possible to deal with this with hotplugd, but if there's any ideas please share them. when you get a ``detach'' event from hotplug it's always too late, media has already disappeared, and our vfs layer can't do forced unmounting for now. It's a bit dated (2005-02-25 5:27:59)... I was just wondering if any progress had been on this front. I cannot seem to get a USB flash drive to be forcibly unmount if it is pulled out by accident. Just $16.99/mo. or less. dsl.yahoo.com
Soekris
Dear gentleman, i am planning a single router for my 5 boxes network (ont incluind the router). I am thinking using Soekris for such a task. I was thinking on net4526 model (http://www.soekris.com/net4526.htm). If there is anyone here running such hardware, i would like to hear which harddisk and wireless (as also the anthena if it came apart) device are you running. Thank you for your time and cooperation. Best regards.
Re: using hotplugd / hotplug to forcibly unmount / umount a USB flash drive
On Wed, Dec 07, 2005 at 02:58:34PM -0800, Joe Advisor wrote: http://marc.theaimsgroup.com/?l=openbsd-miscm=110931013806157w=2 Some stuff, which should be included in 3.8-release, has been committed to help in this regard. It doesn't cover all cases, though. -p.
Re: Nagios Port - Installation problem (3.8)
viq wrote: On Wednesday 07 December 2005 23:30, Spruell, Darren-Perot wrote: In the time everyone's been discussing this I installed the packages from FTP; why are we messing with ports and FLAVORs? Some people prefer to build stuff from source on their own machine, instead of having binary packages from (semi-)unknown sources. Or just because they like to ;) And not all flavours are available as packages. Though yes, i guess in this case they are. It's also a good learning experience even if you do need a little help from time to time. I finally got it working once I realised how it all worked and figured out that I needed to install the web interface from the package manually, which although it was created with the make, it wasnt installed with the make install. So, yep, I've got a working system now. Thanks everyone for their help! -- Simon H
Re: UltraSparc documentation
On Wed, Dec 07, 2005 at 11:40:28AM -0700, Theo de Raadt wrote: Want to be clear with Sun? They are closed until we there is complete Schizo host-bridge documentation available for everyone. So would it be wise to avoid Sun Sparc kit? I'm going to be buying some hardware for offiste colos next year and was thinking of getting some used Netras. I'm currently using x86 kit, but the serial console access to the BIOS that Sun offer is attractive for remote upgrades. There is the (expensive) Real Weasel for x86 kit, Dell's crappy lights out card isn't a reliable option. Any thoughts welcome.
Re: Soekris
If there is anyone here running such hardware, i would like to hear which harddisk and wireless (as also the anthena if it came apart) device are you running. I'm running a net4801, with a Nikon 16MB starter CF card and a DLink PCI prism based card. I do not belive the net4526 has any disk support, just the onboard flash memory. Dustin
Re: Soekris
--On 07 December 2005 16:40 -0800, [EMAIL PROTECTED] wrote: If there is anyone here running such hardware, i would like to hear which harddisk and wireless (as also the anthena if it came apart) device are you running. I'm running a net4801, with a Nikon 16MB starter CF card and a DLink PCI prism based card. I do not belive the net4526 has any disk support, just the onboard flash memory. Correct (the flash on 4526 is soldered, not easily upgradable, and you'll probably need a specially trimmed OS). It also has only one ethernet port. All the current Soekris boards make nice low-power routers, hardware controllers (the general-purpose I/O pins are very easy to use on OpenBSD with gpioctl) or small servers, but don't expect anything like wire-speed routing. 4801 supports IDE disks (2.5) as well as CF, 45x1 should be happy with CF microdrives (but flash is a better choice for most people).
rl_diag strangeness??
In trying to upgrade to 3.8, the rl driver complains
from rl_diag that loopback failed. There is a bit of code
that doesn't make sense to me:
* Wait for it to propagate through the chip */
DELAY(10);
for (i = 0; i RL_TIMEOUT; i++) {
status = CSR_READ_2(sc, RL_ISR);
if ((status (RL_ISR_TIMEOUT_EXPIRED|RL_ISR_RX_OK)) ==
^^
(RL_ISR_TIMEOUT_EXPIRED|RL_ISR_RX_OK))
^
break;
DELAY(10);
}
if (i == RL_TIMEOUT) {
printf(%s: diagnostic failed, failed to receive packet
in loopback mode\n, sc-sc_dev.dv_xname);
error = EIO;
goto done;
}
It appears that the loop will always run RL_TIMEOUT cycles
because the test is for both RL_ISR_TIMEOUT_EXPIRED and RL_ISR_RX_OK.
On my systems, 3.7 runs the rl8169 fine, but fails the attach
with the above message.
I believe the marked code should be removed, leaving only the
test for either of the two status bits being true.
Anyone have an opinion?
thanks
Geoff Steckel [EMAIL PROTECTED]
Re: Soekris
Thanks you all for your time and cooperation. I would like a small router, with a single hard disk and a wireless device. Which would it be the perfect soekris models? What you are you running? Thanks once more. 2005/12/7, Stuart Henderson [EMAIL PROTECTED]: --On 07 December 2005 16:40 -0800, [EMAIL PROTECTED] wrote: If there is anyone here running such hardware, i would like to hear which harddisk and wireless (as also the anthena if it came apart) device are you running. I'm running a net4801, with a Nikon 16MB starter CF card and a DLink PCI prism based card. I do not belive the net4526 has any disk support, just the onboard flash memory. Correct (the flash on 4526 is soldered, not easily upgradable, and you'll probably need a specially trimmed OS). It also has only one ethernet port. All the current Soekris boards make nice low-power routers, hardware controllers (the general-purpose I/O pins are very easy to use on OpenBSD with gpioctl) or small servers, but don't expect anything like wire-speed routing. 4801 supports IDE disks (2.5) as well as CF, 45x1 should be happy with CF microdrives (but flash is a better choice for most people).
PCI-X not seen by 3.8 on HP DL-145 G2
Hi, Not sure if anyone was able to see the PCI-x slot in the HP 145 G2 yet. I did research the archive before and it did say the PCI-Express wasn't available and as such the SCSI version wouldn't work as that's where the SCSI controller was connecting. I disable the PCI-Express in BIOS and I install an Intel PRO/1000 MT Quad in the PCI-x slot hoping to have the Ethernet ports available, even if I know that card wasn't the best one for now, until I can find a good quad SK card. Didn't see DMESG before, so I couldn't really know. So, got one server and tested it. Now, oh well. Anyone knows if that might be changing soon. Not a huge dead if not, I will recycle that server else where and then try the IBM eServer 326. Anyone knows if that PCI is available in that one? As for the Sun x2100, the two on board Ethernet ports are not available yet, so not an option. I didn't try the Sun X4100 yet, so I don't know. Anyone have feedback on that one? Also, on the HP, I make sure I have the latest BIOS. 2.14 from October 20, 2005. Oh well, sometime testing can be a bit expensive. I haven't tried current yet on that box, tomorrow most likely. Anyway, here is the DMESG for that server in case any good sole out there may have an idea. Many thanks. Daniel OpenBSD 3.8 (GENERIC) #247: Sat Sep 10 15:53:26 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 2146140160 (2095840K) avail mem = 1835712512 (1792688K) using 22937 buffers containing 214822912 bytes (209788K) of memory mainbus0 (root) cpu0 at mainbus0: (uniprocessor) cpu0: AMD Opteron(tm) Processor 252, 2612.38 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative pci0 at mainbus0 bus 0: configuration mode 1 Nvidia nForce4 DDR rev 0xa3 at pci0 dev 0 function 0 not configured Nvidia nForce4 ISA rev 0xa3 at pci0 dev 1 function 0 not configured Nvidia nForce4 SMBus rev 0xa2 at pci0 dev 1 function 1 not configured ohci0 at pci0 dev 2 function 0 Nvidia nForce4 USB rev 0xa2: irq 10, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: Nvidia OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 4 ports with 4 removable, self powered ehci0 at pci0 dev 2 function 1 Nvidia nForce4 USB rev 0xa3: irq 11 ehci0: timed out waiting for BIOS usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: Nvidia EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 4 ports with 4 removable, self powered pciide0 at pci0 dev 6 function 0 Nvidia nForce4 IDE rev 0xa2: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: TEAC, CD-224E, 9.9A SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, DMA mode 2 pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 8 function 0 Nvidia nForce4 SATA 2 rev 0xa3: DMA pciide1: using irq 10 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: Maxtor 6L080M0 wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ppb0 at pci0 dev 9 function 0 Nvidia nForce4 PCI-PCI rev 0xa2 pci1 at ppb0 bus 1 vga1 at pci1 dev 5 function 0 Nvidia GeForce2 MX rev 0xb2 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ppb1 at pci0 dev 12 function 0 Nvidia nForce4 PCIE rev 0xa3 pci2 at ppb1 bus 2 bge0 at pci2 dev 0 function 0 Broadcom BCM5721 rev 0x11, BCM5750 B1 (0x4101): irq 11 address 00:15:60:96:f3:f5 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 13 function 0 Nvidia nForce4 PCIE rev 0xa3 pci3 at ppb2 bus 3 bge1 at pci3 dev 0 function 0 Broadcom BCM5721 rev 0x11, BCM5750 B1 (0x4101): irq 10 address 00:15:60:96:f3:f4 brgphy1 at bge1 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb3 at pci0 dev 14 function 0 Nvidia nForce4 PCIE rev 0xa3 pci4 at ppb3 bus 4 pchb0 at pci0 dev 24 function 0 AMD AMD64 HyperTransport rev 0x00 pchb1 at pci0 dev 24 function 1 AMD AMD64 Address Map rev 0x00 pchb2 at pci0 dev 24 function 2 AMD AMD64 DRAM Cfg rev 0x00 pchb3 at pci0 dev 24 function 3 AMD AMD64 Misc Cfg rev 0x00 isa0 at mainbus0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 spkr0 at pcppi0 sysbeep0 at pcppi0 dkcsum: wd0 matches BIOS drive 0x80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302
Re: UltraSparc documentation
Craig Skinner wrote: There is the (expensive) Real Weasel for x86 kit, Dell's crappy lights out card isn't a reliable option. Compaq's remote card isn't bad, it works in any ATX PC and they're like $5-10 on eBay. The remote console requires Java on the controlling machine which makes it a hassle to control from an OpenBSD machine, but the rest of the stuff (power on/off, etc.) works. The virtual CD requires certain model Compaq servers. I think it also does ssh if you just want a text console.
Re: rl_diag strangeness??
if ((status (RL_ISR_TIMEOUT_EXPIRED|RL_ISR_RX_OK)) == ^^ (RL_ISR_TIMEOUT_EXPIRED|RL_ISR_RX_OK)) ^ It appears that the loop will always run RL_TIMEOUT cycles because the test is for both RL_ISR_TIMEOUT_EXPIRED and RL_ISR_RX_OK. That's the intended behaviour, it waits for BOTH the RX to complete and for the 'timeout expired' bit to be set in the ISR, note that RL_ISR_TIMEOUT_EXPIRED and RL_TIMEOUT are different things. Have you actually tested if removing it 'fixes' it on your machine? Of course removing re_diag() altogether will 'fix' it too. I have heard of re_diag() failing in this way for others but in very rare cases and the cause hasn't been determined... And can you include a dmesg please?
Re: PCI-X not seen by 3.8 on HP DL-145 G2
Hmmm, May be I don't understand the differences what so ever, but shouldn't the dmesg of the regular bsd and bsd.mp detect the same hardware? Here is the dmesg from the bsd.mp one. I just find it interesting and curious at the same time. OpenBSD 3.8 (GENERIC.MP) #504: Sat Sep 10 16:02:38 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 2146140160 (2095840K) avail mem = 1835593728 (1792572K) using 22937 buffers containing 214822912 bytes (209788K) of memory mainbus0 (root) mainbus0: Intel MP Specification (Version 1.4) (AMD HAMMER ) cpu0 at mainbus0: apid 0 (boot processor) cpu0: AMD Opteron(tm) Processor 252, 2612.36 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: apic clock running at 200925956Hz mpbios: bus 0 is type PCI mpbios: bus 1 is type PCI mpbios: bus 2 is type PCI mpbios: bus 3 is type PCI mpbios: bus 4 is type PCI mpbios: bus 128 is type PCI mpbios: bus 129 is type PCI mpbios: bus 130 is type PCI mpbios: bus 135 is type PCI mpbios: bus 140 is type ISA ioapic0 at mainbus0 apid 1: pa 0x8373ff24, version 11, 24 pins ioapic1 at mainbus0 apid 2: pa 0x8373fe24, version 11, 7 pins ioapic2 at mainbus0 apid 3: pa 0x8373fc24, version 11, 7 pins mpbios: can't find ioapic 4 mpbios: can't find ioapic 4 mpbios: can't find ioapic 4 mpbios: can't find ioapic 4 pci0 at mainbus0 bus 0: configuration mode 1 Nvidia nForce4 DDR rev 0xa3 at pci0 dev 0 function 0 not configured Nvidia nForce4 ISA rev 0xa3 at pci0 dev 1 function 0 not configured Nvidia nForce4 SMBus rev 0xa2 at pci0 dev 1 function 1 not configured ohci0 at pci0 dev 2 function 0 Nvidia nForce4 USB rev 0xa2: apic 1 int 10 (irq 10), version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: Nvidia OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 4 ports with 4 removable, self powered ehci0 at pci0 dev 2 function 1 Nvidia nForce4 USB rev 0xa3: apic 1 int 11 (irq 11) ehci0: timed out waiting for BIOS usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: Nvidia EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 4 ports with 4 removable, self powered pciide0 at pci0 dev 6 function 0 Nvidia nForce4 IDE rev 0xa2: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: TEAC, CD-224E, 9.9A SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, DMA mode 2 pciide0: channel 1 disabled (no drives) pciide1 at pci0 dev 8 function 0 Nvidia nForce4 SATA 2 rev 0xa3: DMA pciide1: using apic 1 int 10 (irq 10) for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: Maxtor 6L080M0 wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 ppb0 at pci0 dev 9 function 0 Nvidia nForce4 PCI-PCI rev 0xa2 pci1 at ppb0 bus 1 vga1 at pci1 dev 5 function 0 Nvidia GeForce2 MX rev 0xb2 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ppb1 at pci0 dev 12 function 0 Nvidia nForce4 PCIE rev 0xa3 pci2 at ppb1 bus 2 bge0 at pci2 dev 0 function 0 Broadcom BCM5721 rev 0x11, BCM5750 B1 (0x4101): apic 1 int 11 (irq 11) address 00:15:60:96:f3:f5 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 13 function 0 Nvidia nForce4 PCIE rev 0xa3 pci3 at ppb2 bus 3 bge1 at pci3 dev 0 function 0 Broadcom BCM5721 rev 0x11, BCM5750 B1 (0x4101): apic 1 int 10 (irq 10) address 00:15:60:96:f3:f4 brgphy1 at bge1 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb3 at pci0 dev 14 function 0 Nvidia nForce4 PCIE rev 0xa3 pci4 at ppb3 bus 4 pchb0 at pci0 dev 24 function 0 AMD AMD64 HyperTransport rev 0x00 pchb1 at pci0 dev 24 function 1 AMD AMD64 Address Map rev 0x00 pchb2 at pci0 dev 24 function 2 AMD AMD64 DRAM Cfg rev 0x00 pchb3 at pci0 dev 24 function 3 AMD AMD64 Misc Cfg rev 0x00 isa0 at mainbus0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 spkr0 at pcppi0 sysbeep0 at pcppi0 dkcsum: wd0 matches BIOS drive 0x80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302
Re: UltraSparc documentation
Craig, On 08/12/2005, at 11:05 AM, Craig Skinner wrote: I'm going to be buying some hardware for offiste colos next year and was thinking of getting some used Netras. The Sparc64 support page: http://www.openbsd.org/sparc64.html Shows various Netra machines as being supported. Shane
Re: UltraSparc documentation
There is the (expensive) Real Weasel for x86 kit, Dell's crappy lights DRAC/4 isn't that bad :} You can always use serial console redirection on the 1850s/2850s; it works well until OS boot (BIOS menus works, RAID, IPMI menus), when you have to setup serial console redirection on the boot loader/kernel, and then start a getty on the com. Plus you have hardware level IPMI (cold boots, etc.) which you can tag with a VLAN. It's not Sun, though. ~BAS out card isn't a reliable option. Any thoughts welcome.
Re: gethostbyname in 3.8 returns error -1
try this, i think it covers the chroot case better.
Index: res_init.c
===
RCS file: /cvs/src/lib/libc/net/res_init.c,v
retrieving revision 1.33
diff -u -r1.33 res_init.c
--- res_init.c 2005/08/06 20:30:04 1.33
+++ res_init.c 2005/12/08 05:42:29
@@ -178,27 +178,24 @@
int dots;
#endif
- if (usercall == 0) {
- if (_resp-options RES_INIT
- _resp-reschktime = time(NULL))
+ if (!usercall _resp-options RES_INIT
+ _resp-reschktime = time(NULL))
+ return (0);
+ _resp-reschktime = time(NULL) + __res_chktime;
+ if (stat(_PATH_RESCONF, sb) != -1) {
+ if (!usercall timespeccmp(sb.st_mtimespec,
+ _resp-restimespec, ==))
return (0);
- _resp-reschktime = time(NULL) + __res_chktime;
- if (stat(_PATH_RESCONF, sb) != -1) {
- if (timespeccmp(sb.st_mtimespec,
- _resp-restimespec, ==))
- return (0);
- else
- _resp-restimespec = sb.st_mtimespec;
- } else {
- /*
-* Lost the file, in chroot?
-* Don' trash settings
-*/
- if (timespecisset(_resp-restimespec))
- return (0);
- }
- } else
- _resp-reschktime = time(NULL) + __res_chktime;
+ else
+ _resp-restimespec = sb.st_mtimespec;
+ } else {
+ /*
+* Lost the file, in chroot?
+* Don't trash settings
+*/
+ if (!usercall timespecisset(_resp-restimespec))
+ return (0);
+ }
/*
--
die energie aus fleisch und blutdeine sprache und die ganze wut
deine gefuehle die du lebst und dein herz fuehl wie es bebt
zeitbombe! sie tickt in dirzeitbombe! sie explodiert in deinem kopf
- girls under glass
Re: PCI-X not seen by 3.8 on HP DL-145 G2
On 12/7/05, Daniel Ouellet [EMAIL PROTECTED] wrote: Hmmm, May be I don't understand the differences what so ever, but shouldn't the dmesg of the regular bsd and bsd.mp detect the same hardware? Here is the dmesg from the bsd.mp one. the interrupt routing code is pretty much totally different, and there's a few other differences as well.
Re: RAIDframe issues on 3.8
started filing PR's for RAIDframe stuff in OpenBSD -- there have been a lot of changes/fixes to RAIDframe in the last 5 years that aren't I have $100 via Paypal for the person who commits RAID enabled boot blocks for Sparc[64] and i386/amd64 on OpenBSD. I have an $100 additional via Paypal for the person who makes an initial effort re-sync the RAIDFrame codebase. ~BAS reflected in the code in OpenBSD, and I wouldn't know where to begin :) Later... Greg Oster
