Thus spake Bruno Carnazzi ([EMAIL PROTECTED]) [10/05/06 01:37]:
: My home PF NATing gateway route just one PPTP tunnel (for my laptop),
: and I don't need special thing for it to work (GRE enabled via sysctl
: and pf must pass GRE proto). Is there a special case when you have
: multiple PPTP (GRE)
On Wed, May 10, 2006 at 12:40:28PM +0700, Tito Mari Francis Esca?o wrote:
| I got me a 3.8 box as gateway with bash as root's default shell. The
| pf logs filled up the /var partition and bash complained about not
| being able to load libiconv which I believe is a dependency of bash.
| With the
reboot in single mode (boot -s)
manually mount your partitions and delete unneeded trash :)
Tito Mari Francis Escaqo wrote:
I got me a 3.8 box as gateway with bash as root's default shell. The
pf logs filled up the /var partition and bash complained about not
being able to load libiconv which I
On 5/9/06, Ashley Moran [EMAIL PROTECTED] wrote:
I'm trying to put together a firewall for our DMZ and internal network. For
some reason, a server in the DMZ can only hit the external DNS server if it
has keep state on the DMZ interface. Basically the following (relvant
extract) blocks
On 5/9/06, Miguel [EMAIL PROTECTED] wrote:
Hi people, i want to set a rate limit in my proxy server, i have 2mbps
and i want to limit the proxy to 768kbps, reading the pf faq i found
some examples, but its not working, i only want to limit the bw, not to
do qos
Any reason you do not simply do
It was a hardware problem with the PS/2 mouse input of my
server. I use for the moment a serial mouse.
Thanks anyway to all those that wanted to help me.
Yours in
# tcpdump -n -i sis2 'icmp'
19:21:05.848459 wan_if.ip external.host: icmp: echo request
19:21:05.868202 external.host wan_if.ip: icmp: echo reply
19:21:05.868499 wan_if.ip external.host: icmp: host wan_if.ip unreachable
I was obviously expecting the first two lines but I assumed that PF
Tomasz Pajor wrote:
Could you please attach a patch.
Would you trust me? :)
Simply use the patch from Robert Nagy. Look at Makefile.inc and change
V= 5.1.3
into
V= 5.1.4
Now you should correct or simply remove the distinfo file. Happy
updating. :)
Bye,
Aiko
--
Aiko Barz
I can confirm that PS/2 keyboard also stops responding with MP kernels
(3.9-STABLE/amd64) on Dell SC1425. However, USB keyboards work fine.
Use that instead.
Hi @all
i want to use pf for accounting.
pfctl -s Interfaces -i interface -vv
shows the statistics; fine :-)
but i want reset this statistics every day and
write them to a file. does everyone know how i
can reset the statistics ? pfctl -F info doesn't
clear it.
another way can be using netstat
Miod Vallat [EMAIL PROTECTED] writes:
This port is unique amongst all the OpenBSD ports, as it has
been written without access to the hardware it runs on. This
has been possible because, unlike modern hardware, these
machines used to come with enough hardware documentation to
allow the
Greetings from DriverGuide.com.
We're sorry. You replied to a notification-only address that cannot
accept incoming e-mail. But that's OK--this automated response will
direct you to the right place at DriverGuide.com to answer your question.
Many common questions are answered in our FAQ, please
Steve Welham wrote:
The block policy only applies to the block rule. In this case the icmp
unreachable is matching state since it is corresponding icmp traffic as
noted in the PF FAQ http://www.openbsd.org/faq/pf/filter.html#state
That indeed makes a lot of sense :)
Thank you both for your
We've done a basic C module which I really enjoyed. Shame they aren't
offering a more advanced module next semester. I'm awaiting the Kernighan
and Ritchie book to hopefully fill in any gaps and extend my knowledge.
I've been trying to read as much about secure programming techniques in the
early
On 5/9/2006 at 8:48 AM Barry, Christopher wrote:
|
|I've had very good experiences with SMC, as a brand, ok experiences
with
|3Com as a brand, and very poor experiences with the D-Link and Linksys
|brands.
|
|HTH,
|-C
=
I've had good experiences with SMC as well, specifically the
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
static. I use the bash-static from packages, and hadn't any problems. I
think that booting in single and
Hi there.
I just discovered something really wierd on my Soekris NET4801-50.
I have just upgraded to 3.9-current yesterday, and decided to try
something new using a Zonet ZEW2500P USB WLAN[1] wifi-adapter. The
adapter is USB 2.0 and the Soekris is equipped with an USB 1.1 port.
On my stationary
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi there,
Giancarlo Razzolini wrote:
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
There is
Hi!
On Wed, May 10, 2006 at 04:17:11PM +0200, Marian Hettwer wrote:
[...]
Changing the root shell doesn't hurt. But you have to install your shell
There is absolutely no reason to change root's shell.
There is even no reason at all to work as root.
Use sudo, or even su -m, or execute bash after
On Wed, May 10, 2006 at 10:50:14AM -0300, Giancarlo Razzolini wrote:
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
static. I use the
2006/5/10, Damian Gerow [EMAIL PROTECTED]:
Thus spake Bruno Carnazzi ([EMAIL PROTECTED]) [10/05/06 01:37]:
: My home PF NATing gateway route just one PPTP tunnel (for my laptop),
: and I don't need special thing for it to work (GRE enabled via sysctl
: and pf must pass GRE proto). Is there a
Hi!
I have one small device
called Mikrotik Routerboard 112 based on MIPS processor. It doesn't have
a video card only lan, mini pci slots and com... More details You can
see here: http://www.routerboard.com/rb100.html
So i just wondering is it possible to install OpenBSD on it? If yes it
would
On 3/21/06, Andreas Vvgele [EMAIL PROTECTED] wrote:
I'm working on a BackupPC port. Actually, the port only lacks a
README.OpenBSD to get people going. I'll polish the port at the weekand
and then I'll post it to [EMAIL PROTECTED]
Thankyou so much for the port Andreas :-)
I am trying to get
On 2006/05/10 15:50, Henrik Borgh wrote:
The USB Hub is a Certified USB Hi-speed 2.0 4 port hub of a unknown
brand, purchased very cheap in the local discount mart, and it
identifies itself as Cypress Semiconductor USB2 Hub.
But could somebody perhaps explain why?
On 2006/05/10 19:01, Bruno Carnazzi wrote:
In theory, so long as there is only one given client on the LAN connecting
to a given PPTP endpoint on the 'Net, I can handle it all using standard PF
syntax. My problem is that I have two clients on the LAN that wish to
connect to the same endpoint
MikeM [EMAIL PROTECTED] wrote:
I've had good experiences with SMC as well, specifically the SMC8508T
http://www.smc.com/index.cfm?event=viewProductlocaleCode=EN_USAcid=6s
cid=pid=1147
That's an unmanaged switch. It does not support VLANs/QoS, which
the original poster requested.
--
On 5/10/06, Giancarlo Razzolini [EMAIL PROTECTED] wrote:
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
static. I use the bash-static from packages, and
Hi!
I'm wondering if there is a port of NSTX server and client for *BSD
systems? (I'd like to set-up OpenBSD as the server, and OpenBSD or OS
X 10.4 as the client.)
The stuff that I've downloaded from
http://nstx.dereference.de/nstx/nstx-1.1-beta6.tgz says that it's
linux only.
P.S. Are there
Bruno Carnazzi wrote:
2006/5/10, Damian Gerow [EMAIL PROTECTED]:
Thus spake Bruno Carnazzi ([EMAIL PROTECTED]) [10/05/06 01:37]:
: My home PF NATing gateway route just one PPTP tunnel (for my laptop),
: and I don't need special thing for it to work (GRE enabled via sysctl
: and pf must pass GRE
Below problem solved, at least for manual startup of my FAH
client. Thanks to Chris, Craig, and Chris, you people are great.
The solution was that I needed to do:
sysctl kern.emul.linux=1
But I had previously done a change to the /etc/sysctl.conf
to uncomment the line like that, and rebooted,
I have been converting my shell programs
from bash to ksh, it has been relatively
easy but I do miss bash's redirection.
I find it a lot easier to read and type
cmd1 $WHERE
vs.
cmd1 21 $WHERE
At 05:11 AM 5/8/06, [EMAIL PROTECTED] wrote:
What's with spews?
I don't know. It stopped working in evening of May 4th. Does anyone know
what happens when the file becomes unavailable like this? Does the system
continue to use the last good download, or does it use an empty file
On Wed, 10 May 2006, victoria wrote:
Hi!
I have one small device
called Mikrotik Routerboard 112 based on MIPS processor. It doesn't have
a video card only lan, mini pci slots and com... More details You can
see here: http://www.routerboard.com/rb100.html
So i just wondering is it possible to
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming is redirect
stderr and stdout to $WHERE.
Christian Weisgerber wrote:
MikeM [EMAIL PROTECTED] wrote:
I've had good experiences with SMC as well, specifically the SMC8508T
http://www.smc.com/index.cfm?event=viewProductlocaleCode=EN_USAcid=6s
cid=pid=1147
That's an unmanaged switch. It does not support VLANs/QoS, which
the original
Luke Bakken wrote:
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming is redirect
stderr and stdout to $WHERE.
What does it do? I was of the belief that it is indeed doing the above,
and the log/scratch files I redirect to have always seemed to back that
up, showing
From: [EMAIL PROTECTED]
Luke Bakken wrote:
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming
is redirect
stderr and stdout to $WHERE.
What does it do? I was of the belief that it is indeed doing
the above,
and the log/scratch files I redirect to have
On Wed, 10 May 2006 13:17:21 -0500 Mark Rolen [EMAIL PROTECTED] wrote:
Luke Bakken wrote:
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming is redirect
stderr and stdout to $WHERE.
What does it do? I was of the belief that it is indeed doing the above,
Greg Thomas wrote:
On 5/10/06, Giancarlo Razzolini [EMAIL PROTECTED] wrote:
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
static. I use the
On 5/10/06, Karel Gardas [EMAIL PROTECTED] wrote:
PS: someone recommended Dell PowerConnect, their 2708 version looks really
nice and it's even cheap in US (~$80), but here it costs after
recalculation back to US$ around $300, which makes it even more expensive
than the SMC GS16-smart above.
I'm so sorry - I'm BSD newbie (I've some experience with Gentoo
GNU/Linux and generally GNU/Linux).
On OpenBSD 3.9 I cannot configure cups server (my openbsd is
router, print server and may be in future http/ftp server).
I get:
(...)
SELECT NAME=DEVICE_URI
/SELECT
(...)
What's
On Wed, May 10, 2006 at 01:17:21PM -0500, Mark Rolen wrote:
Luke Bakken wrote:
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming is redirect
stderr and stdout to $WHERE.
What does it do? I was of the belief that it is indeed doing the above,
Parse from left
On 5/10/06, Axton [EMAIL PROTECTED] wrote:
What kind of problems did you experience with the Dell Powerconnect.
I use a 3024 (2 GBIC - 24 10/100) and have not experienced any
troubles with it.
Strange and unusual issues, besides the typical switch just dying. Check
Dell's own forums for
Janjaap van Velthooven wrote:
Luke Bakken wrote:
cmd1 21 $WHERE
What you would want is
cmd1 $WHERE 21
I was going to respond with the exact same thing. Then, just for kicks,
I decided to read ksh(1) from 3.9 and searched for 2. I found:
$ cat /foo/bar 21 /dev/null | cat -n
Here's a
Luke Bakken wrote:
cmd1 21 $WHERE
This doesn't do what you think it does, which I'm assuming is redirect
stderr and stdout to $WHERE.
What does it do? I was of the belief that it is indeed doing the above,
and the log/scratch files I redirect to have always seemed to back that
up,
On Wed, May 10, 2006 at 04:35:46PM -0400, Michael Erdely wrote:
Janjaap van Velthooven wrote:
Luke Bakken wrote:
cmd1 21 $WHERE
What you would want is
cmd1 $WHERE 21
I was going to respond with the exact same thing. Then, just for kicks,
I decided to read ksh(1) from 3.9 and searched
Daniel Ouellet wrote:
As good example to help understand this in practice is just like this.
You install your package bash-static, you think you are clever, fine.
Then time pass, you work with someone else, a new release come out, you
need to upgrade that box, but it happen to be remote. You
On 5/10/06, Michael Erdely [EMAIL PROTECTED] wrote:
...
I was going to respond with the exact same thing. Then, just for kicks,
I decided to read ksh(1) from 3.9 and searched for 2. I found:
$ cat /foo/bar 21 /dev/null | cat -n
Here's a patch:
...
No, that command does exactly what the
DLink and 3com are good managed switches you should check out.
As you can see by the past comments, getting your exact port density
might not be such an issue compared to the choice of manufacturer.
Dlink used to be a Linksys-like manufacturer (and to a large degree
still is) but they have made
the shell, but might break. Further more, all my upgrades are done
locally. I do not have the luxury of having a remote serial console with
those nasty pci cards that can put even the BIOS to go through the
serial. I can live with it. Will not recommend people anymore to change
Who said you
Philip Guenther wrote:
No, that command does exactly what the sentence before it describes it
as doing. Just because you _usually_ want the 21 after the
doesn't mean you _always_ do.
Philip Guenther
You're absolutely right. I didn't read the above paragraph.
-ME
--
Support OpenBSD:
On 5/10/06, Christian Weisgerber [EMAIL PROTECTED] wrote:
That's an unmanaged switch. It does not support VLANs/QoS, which
the original poster requested.
At the office, we use the Cisco 35(08|24|48) and Xl. No complaints.
Friends use (cheaper) rebadged Cajun switches, also no complaints.
Give Allied Telesyn a try. They are about the same price range as
Nortel equipment, but IMHO Allied Telesyn is about the same with
respect to quality to Nortel as well..
On 10/05/06, Dan Farrell [EMAIL PROTECTED] wrote:
DLink and 3com are good managed switches you should check out.
As you can
i found a solution ...
create a label
pass in from 0/0 to destination label in $dstaddr
read an reset the counter with
pfctl -sl -z
thats it
Thomas
On Wed, 2006-05-10 at 13:05 +0200, Thomas Bvrnert wrote:
Hi @all
i want to use pf for accounting.
pfctl -s Interfaces -i interface
On 5/8/06, Alexey E. Suslikov [EMAIL PROTECTED] wrote:
armorlogic.com says in their Dell PowerEdge 2850 section:
The system works well, except the PS/2 keyboard does not work when
running an MP kernel. We've seen a number of Dell machines with this
same problem. See
On 5/10/06, Graeme Neilson [EMAIL PROTECTED] wrote:
You need to supply more information:
- printer model?
Epson Stylus Photo
- have you tried to add a printer via the cups web interface at
http://localhost:631?
I gave the fragment from http://localhost:631/ which ask me to select
device
I recently upgraded (via clean install) a machine that was previously
running 3.8 and wi in hostap, without incident for the last six months
or so, to 3.9 running ral in hostap. While all other hardware on the
system has remained unchanged, the box has locked up five times in the
last five days
Hi. I have written a shell script designed to run on an OpenBSD
firewall that accumulates lan traffic stats (inbound and outbound) and
outputs the results in HTML. I would like to share this with the
community and hopefully it can be improved. I am not a programmer but
it seems to work and
i have a single CSV file that is 2.5GB (!) unzipped which i need to either
partition into chunks or read from directly. trying to open it with vi doesn't
work since 2.5GB 500MB, the size of the /var partition on this machine.
opening with vi gives a /var: write failed, file system is full.
it
Jacob Yocom-Piatt wrote:
i have a single CSV file that is 2.5GB (!) unzipped which i need to either
partition into chunks or read from directly. trying to open it
with vi doesn't
work since 2.5GB 500MB, the size of the /var partition on this machine.
opening with vi gives a /var: write
On 2006-05-10 19:20:53 -0500, Jacob Yocom-Piatt wrote:
it would be nice if there were a way around having to write code to split the
file into smaller pieces. if there are tools to do this, let me know,
otherwise
split(1)
Best
Martin
--
http://www.tm.oneiros.de
Hi All,
Until pf 3.9 i've had no problems with ftp-proxy and now it doesnt work
anymore because of the anchor stuff, very nice ..
I have
set state-policy floating
pass out on $ext_if modulate state
So:
rdr on $int_if proto tcp to port ftp - 127.0.0.1 port 8021
Is good enough, to make it
[EMAIL PROTECTED] wrote:
Hi All,
Until pf 3.9 i've had no problems with ftp-proxy and now it doesnt work
anymore because of the anchor stuff, very nice ..
...
How can i transform all this into the anchor stuff?
See at least the following:
http://www.openbsd.org/faq/upgrade39.html
Once you remove the #define MAX, it compiles out of the box
Obviously the /dev/tap0 usage needs to be ported to if_tun or equivalent,
and there appears to be some code in nstx_tuntap.c for that already, but
the README says it's imcomplete
I have found many airports that allow unrestricted DNS
Tobias Ulmer wrote:
On Wed, May 10, 2006 at 10:50:14AM -0300, Giancarlo Razzolini wrote:
Paul de Weerd wrote:
Don't change root's shell.
It's set to a static shell (/bin/ksh these days) for a reason.
Changing the root shell doesn't hurt. But you have to install your shell
static. I use
Original message
Date: Thu, 11 May 2006 02:36:20 +0200
From: Martin Schrvder [EMAIL PROTECTED]
Subject: Re: huge CSV file: /var too small
To: misc@openbsd.org
On 2006-05-10 19:20:53 -0500, Jacob Yocom-Piatt wrote:
it would be nice if there were a way around having to write code to
On Wed, May 10, 2006 at 04:27:36PM -0500, Kevin wrote:
On 5/10/06, Christian Weisgerber [EMAIL PROTECTED] wrote:
That's an unmanaged switch. It does not support VLANs/QoS, which
the original poster requested.
At the office, we use the Cisco 35(08|24|48) and Xl. No complaints.
Friends use
On Thu, 11 May 2006, [EMAIL PROTECTED] wrote:
rdr on $int_if proto tcp to port ftp - 127.0.0.1 port 8021
You need this.
pass in on $ext_if inet proto tcp from any \
to $ext_if port 55000 57000 user proxy \
flags S/SA keep state
You don't need this anymore.
How can i transform
On Tue, May 09, 2006 at 10:04:34PM -0400, Chris Palmer wrote:
From: Dr. David Johnson [EMAIL PROTECTED]
Sent: Tuesday, May 09, 2006 9:43 PM
Hi, I've installed OBSD 3.9 on a PIII, 700 MHz, 128 MB RAM.
I tried doing some things to get Folding at Home client running,
and it WAS at one
Hi
I made the terible, but not unknown, mistake to untar the src into usr. To save
the system I used the upgrade function. I am running 3.9.
After the upgrade all is ok again except that I can't run any programs. The
command startkde doesn't work anymore and other programs such as mc doesn't
70 matches
Mail list logo
