Re: Tunneling in NetBSD
I had a basic setup, a ARM board. ¿Is OpenVPN suitable for this? Thank you. On Mon 16 Nov 2020 at 6:29 Brad Spencer wrote: > "Francisco Valladolid H." writes: > > > [1:text/plain Hide] > > > > Hi friends. > > > > I need setup a NetBSD for tunneling (VPN) to my clients, notebooks > (windows > > or MacBook) maybe cellphone (android). > > I’m thinking using L2TP(maybe more standard) or OpenVPN. > > > > Maybe, ikev2 can be a good choice. Is NetBSD ready for ikev2 (aka > racoon2) > > ? > > > > Some suggestions for me. > > > > Thank you for reading. > > > Hello... > > I do ikev1 (normal IPsec) and OpenVPN. Around the NetBSD 7.x time > frame, racoon stopped working with MacOS and Shrewsoft VPN on > MS-WINDOWs. I never tried ikev2, but did look into it a while back. I > was very much unconvinced that it would operate. More recently, I have > moved pretty much completely to OpenVPN. It is not hard to set up and > operates pretty much as expected with MS-WINDOWs, Android and NetBSD > itself. Very recently on -current, I have used wg(4) as a client, but > have not tried it in server mode. I hear that L2TP may function, I did > toy with PPTP for a while... > > Honestly, your best bet is probably OpenVPN. > > > > -- > Brad Spencer - b...@anduin.eldar.org - KC8VKS - http://anduin.eldar.org > -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Tunneling in NetBSD
Hi friends. I need setup a NetBSD for tunneling (VPN) to my clients, notebooks (windows or MacBook) maybe cellphone (android). I’m thinking using L2TP(maybe more standard) or OpenVPN. Maybe, ikev2 can be a good choice. Is NetBSD ready for ikev2 (aka racoon2) ? Some suggestions for me. Thank you for reading. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: creating a netbsd router
Hi folks On Sat, Jul 15, 2017 at 4:06 AM Derrick Lobo <derrick.l...@givex.com> wrote: > I have a device with 8 network interface,so wondering if I can set this > up as my router/switch > Ok I would like to create eth0 as the WAN interface and the remaining eth1-6 > as the LAN interface so that I can connect multiple switches and devices > directly on the 7 remaining ports.. is vlan, bridging the way to go .. > linux uses bonding and im not sure if freebsds lagg is the same thing.. > Anyone can provide information or link on how I can achieve this. > Yes you can. You can use bridging, setting VLAN and agrégate interfaces like Linux with the agr(4) http://man-k.org/man/NetBSD-current/4/agr?r=1=Agr So eth0 would have a public Ip while the rest ports would have one LAN IP > whichis basically a 192.168.0.1 ip and Irun DHCP namedb etc on these > interface to support my LAN. > Yes, eth0 can be wan with the public IP and the rest can be LAN, setting dhcp over any interfaz and setting a DNS cache. Please review the npf.conf manual for information about the firewall program http://man-k.org/man/NetBSD-current/5/npf.conf?r=2=Npf.conf Bes regards. > Thanks > > Derrick Lobo > > -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: Recommendation for squid proxy server
Hi Niels. On Wed, Nov 30, 2016 at 5:04 AM, Niels Dettenbach <n...@syndicat.com> wrote: > Am Mittwoch, 30. November 2016, 00:01:26 schrieben Sie: > > I'm working in a new squid/proxy server for 150+ users in my network. > > I need some testing, whenever, maybe someone have experience with squid > > performance on NetBSD, basically in the Filesystem and security. > > > > If anyone can comment, please let me know. > Hmm, > not sure if i can help you. > > If i understand right, you want to use squid as a caching (or > "accelerating") > proxy? What type of users do you have? > > Basically for web caching and I have a small ISP, serving wireless clients. Some years ago we runned a squid on a NetBSD (HP proliant machine) for > around > 50 users (while we had SQUID installations on ISP level up to 50k users), > but > much more relevant is the amount of requests per second and bandwidth (most > users are not "surfing" around the clock...). So if your 150+ users are in > a > typical office, even the peak load is typically not very much... > > Basically 150+ users but my current bandwidth is limited > Within such a setup there are many parameters to be aware and to think > about - > i.e. the amount of RAM, type and size of further storage, squid storage / > stack policies, networking tweaks on NetBSD and squid byself etc.pp.. - > bust > not at least, it depends from your "application". > > I'm thinking in NetBSD with a good pair 1TB hard disk (no SSD now). > From my experience on NetBSD (async) it was the same as on Linux (ext4). It > usually makes sense to minimize the amount disk requests which are not > required and spread thw disk access over many (independent) disk heads / > spindles (on SSD this is another story...). High rpm disks are a very > helpful. > Try to bring "as much as possible" of most often requested cached stuff > into > the RAM and if you not rely on much caching, avoid disk caching. > > There was some features which was only available under Linux at that time > (i.e. full transparent proxy / tproxy - where the proxy "hides" his own IP > against the servers/clients). > Thanks. > > I remember that we had compiled a NetBSD kernel with a higher (double) > amount > of max users, but not shure if this makes any sense with a current kernel. > > I would try it - if you are not rely to such special "kernel" features only > Linux has. > > > > many thanks. > best regards, > > > Niels. > -- > --- > Niels Dettenbach > Syndicat IT & Internet > http://www.syndicat.com > PGP: https://syndicat.com/pub_key.asc > --- > > > > > -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Recommendation for squid proxy server
Hi folks. I'm working in a new squid/proxy server for 150+ users in my network. I need some testing, whenever, maybe someone have experience with squid performance on NetBSD, basically in the Filesystem and security. If anyone can comment, please let me know. Best regards. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: Console colours on NetBSD7
Hi Folks I'm using TERM=xterm-256color and work fine. Regards. On Thu, May 5, 2016 at 1:18 PM, John <j...@sdf.org> wrote: > Yes, this is right. > > Thanks for the input, I should've delved more deeply- especially in this > page https://www.netbsd.org/docs/guide/en/chap-cons.html where it states > > 'you can change this value to wsvt25 instead, to get colors' > > That'll teach me for doubting the docs. > > I don't have the machine with me, but checked the installation disk (which > uses high res console and colours) - this uses wsvt25 as $TERM. The machine > I was playing about with earlier didn't have this as it's $TERM value. > > Bw > John > > On Thu, 5 May 2016, Martin Husemann wrote: > > Date: Thu, 5 May 2016 17:58:16 +0200 >> From: Martin Husemann <mar...@duskware.de> >> To: Benny Siegert <bsieg...@gmail.com> >> Cc: John Halfpenny <j...@sdf.org>, netbsd-users@NetBSD.org >> Subject: Re: Console colours on NetBSD7 >> >> On Thu, May 05, 2016 at 05:50:24PM +0200, Benny Siegert wrote: >> >>> >>>> Most applications query the terminal capabilities and decides whether >>>> to use colors or not, maybe your TERM environment variable is wrong? >>>> >>> >>> What value of TERM would be right for the console on amd64? >>> >> >> I not using special kernel options or wsconsctl settings, I would use >> wsvt25. >> >> Martin >> >> > j...@sdf.org > SDF Public Access UNIX System - http://sdf.org > -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: NetBSD NAT and NPF
Hi On Tue, Mar 10, 2015 at 3:42 PM, George g.lis...@nodeunit.com wrote: Hello guys, I am trying to setup a gateway/firewall machine and I am not able to figure out why my NAT rules in NPF do not seem to work. I have recompiled the kernel with options GATEWAY and enabled in /etc/sysctl.conf ipv4 and v6 forwarding, is that enough or do I need to enable IPNAT ??? I think this is for IP Filter and I am trying to setup NPF...? I am confused. The problem I am having is that a machine which gets its IP from the gateway via DHCP cannot connect to anything on the net so no NAT. npfctl stats shows no NAT sessions either so I am not sure where my setup is falling apart... Please read here: http://netbsd.gw.com/cgi-bin/man-cgi?npf.conf++NetBSD-current Basic NAT in NPF is done via map sentence; map $ext_if dynamic 10.1.1.0/24 - $ext_if Regards Thanks in advance, George -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: NetBSD for the dekstop
On Tue, Feb 17, 2015 at 6:29 AM, Stephan stephan...@googlemail.com wrote: Hi! Is there anyone still interested in bringing NetBSD to the desktop? NetBSD work fine for Desktop use, example: LibreOffice, Firefox, KDE, Gnome, dwm, fluxbox, openbox, mplayer, etc. Some things maybe don't work fine, as 3D accelerarion in X per example, but too many people are using NetBSD as desktop in your laptops for doing system administration tasks. I think that NetBSD compared to Linux (elementary, KaOS, Ubuntu) in the Desktop field need more work, NetBSD developers works basically in portability and code quality. Best Regards. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: Pkgin Binaries
Hi. NetBSD binary packages for 6.1.5 don't exist, you can use ftp://ftp.netbsd.org/pub/pkgsrc/packages/NetBSD/amd64/6.0_2014Q3/All 6.1.5 directory is symlink to 6.0 Regards On Nov 11, 2014 5:44 PM, Will Dignazio wdigna...@gmail.com wrote: I'm not sure if this was intentional, but it appears that the built binary packages for 6.1.5, and several others have been removed. I noticed earlier today when doing an install, when the binary pkgin setup failed. I've looked around, but there doesn't seem to be a schedule or notification about it. Was there a reason, or is there a typical schedule on which they are removed and rebuilt? Mirror in question: http://ftp.netbsd.org/pub/pkgsrc/packages/NetBSD/amd64/6.1.5/ Though it appears that almost all of the 6.X.X have 'lost' their built packages. -- Will
Re: any netbsd hosting providers?
On Tue, Jun 17, 2014 at 12:26 PM, Mayuresh Kathe mayur...@kathe.in wrote: hello francisco, i am seeking a dedicate server infrastructure provider. the plan is to not go for one monster server which does everything. but, rather to componentize by splitting functions across 5 servers. 1.- http://corenetworks.net/dedicated/ here you can setup your own O.S, when you signup specify other O.S only. regards. thanks, ~mayuresh On Tue, Jun 17, 2014 at 12:17:17PM -0500, Francisco Valladolid H. wrote: Hi Mayuresh Currently, I'm using Amazon Web Services running NetBSD 6.1.3 sucessfully. Amazon costs are high compared with digitalocean.com per example. Panix.com is another choice also. You are seeking a VPS or dedicated server ? BEst Regards. On Tue, Jun 17, 2014 at 11:39 AM, Mayuresh Kathe mayur...@kathe.in wrote: hello, are there any web hosting providers specializing in netbsd? would like to evalute some for my client who's expressed interest in moving away from linux (centos). thanks, ~mayuresh -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
NetBSD on Amazon EC2
Hi Folks I begin using NetBSD 6.1.3 on Amazon ec2, previously using NetBSD 6.1 amd64, whenever the 6.1.3 AMI available don´t contain support for X11. There are a AMI with X11 support ? While installing git with pkgin, it fail to install correctly Thanks for reading. Best Regards. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Fail to get a IP from dhcpcd
Hi folks Recently I installed NetBSD 6.1 release in a old PIII/440BX chipset MB with intel Fast Ethernet card (fxp driver), whenever when try to get a IP from dhpcd it don't work correctly and no IP is associated to the nic. Whenever if the IP is set manually, it work correcly. This is a bug ? Regards. -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
Re: NetBSD Bootable CD ROM HOWTO
Hi Folks You can browse the NetBSD ftp site: ftp://ftp.netbsd.org/pub/NetBSD/NetBSD-6.1_RC4/amd64/installation/floppy/ You can download entire subdirectorie for 6.1 RC4 and build your own image with mkisofs and later burn. I hope this information can be useful for you. Regards. On Fri, May 10, 2013 at 5:20 PM, Julian Fagir g...@komkon2.de wrote: Hi, On Tue, 7 May 2013 23:30:36 -0700 John Refling wrote: I wanted to re-burn one of the i386 install CDs and add a few programs (6.1_RC4) which now seems to have disappeared On the website here: http://www.netbsd.org/docs/bootcd.html#i386image it gives (old) instructions involving using the boot-big.fs as the boot image for the cd. I cannot find that file anywhere on the CD media. There is the boot[1-5].fs etc. for the floppy boot image. Maybe the docs should be updated too? imho, this documentation shouldn't be updated, but archived. I don't exactly know how it is done, but you should look into build.sh and the according Makefiles to see what a current image creation does. Of course it would be nice if you documented what you find and write a small howto how to create your own CD image. ;-) Regards, Julian -- Francisco Valladolid H. -- http://blog.bsdguy.net - Jesus Christ follower.
