OpenBGPd: don't announce a specified prefix to a peer

Hi, I'm sure there is a way to not announce a specified prefix (learned via iBGP or OSPF) to a eBGP peer. But I'm not sure what the filter line should look like. Could someone give me a push in the right direction? Regards, Falk

Re: Problem with resolution on LCD Benq G900W

On 2008-08-27, Tomas Bodzar [EMAIL PROTECTED] wrote: Temporary solution for now is change resolution to [EMAIL PROTECTED] by xrandr and then restart of fvwm(1). I must do it everytime I start X.Screen is moved to left by OSD for now,so OpenBSD is default on whole screen and Mandriva

ospfctl reload does not add virtual interfaces

Hi all, I'm setupping a carp/pfsync firewall with ospf. We've have 40 vlans, and we plan to add other later. Everything is working as expected, except one thing. From time to time we have to add new vlans to the setup, the procedure would be to create the relevant hostname.vlanxxx,

Re: OpenBGPd: don't announce a specified prefix to a peer

Hi, is there a way to dynamically deny prefixes learned via iBGP / IGP or have I to specify all the prefixes manually? Regards, Falk

Re: ospfctl reload does not add virtual interfaces

On 2008-08-27, Marco Matarazzo [EMAIL PROTECTED] wrote: # ospfctl reload # tail /var/log/messages Aug 27 11:36:39 sfw2 ospfd[12857]: configuration reload failed Adding a vlan and reloading works here on -current. ISTR some problem where if you tried to reload, and there was some type of config

Još samo 4 dana letnja hit ponuda

Poštovani, Posebna letnja ponuda za 2 Sweet Dream jastuka od memorijske pene po objedinjenoj ceni od 1990,00 RSD traje još do 31. avgusta! Samo još 4 dana ove jastuke možete poručiti uz čak 23% popusta. Zato požurite, jer od 1. septembra - cena ova 2 jastuka će ponovo biti 2.580, RSD -

Very small bug in man page of Xorg(1)

Hi all, I can confirm it only on 4.3 -release and on webpage for -current http://www.openbsd.org/cgi-bin/man.cgi?query=Xorgapropos=0sektion=0manpath=OpenBSD+Currentarch=i386format=html In section OPTIONS,part -disableVidMode there is a sentence : Disable the the parts... - double

not a tty

Hi, Could somebody please point me in the right direction? I am setting up a chroot environment in openbsd-4.3 and I expect a shell with a tty. I think I narrowed it down to: as root: r=/tmp/root mkdir $r cd $r mkdir -p bin cp /bin/sh bin mkdir -p usr/bin cp /usr/bin/tty usr/bin mkdir -p

Altq number of queues

Hi, Are there any side effects of changing the number of HSFC queues from 64 to 512? What are the implications of such configuration? Thanks in advance

Re: not a tty

On Wed, Aug 27, 2008 at 02:41:48PM +0200, Leo Baltus wrote: Hi, Could somebody please point me in the right direction? I am setting up a chroot environment in openbsd-4.3 and I expect a shell with a tty. I think I narrowed it down to: as root: r=/tmp/root mkdir $r cd $r mkdir -p

Re: Altq number of queues

2008/8/27 Fabio Almeida [EMAIL PROTECTED]: Hi, Are there any side effects of changing the number of HSFC queues from 64 to 512? What are the implications of such configuration? Did you mean HFSC, as in Hierarchical Fair Service Curve? --ropers

Re: question about Bob Beck's greyscanner

2008/8/27 Raimo Niskanen [EMAIL PROTECTED]: On Tue, Aug 26, 2008 at 06:04:22PM -0300, Jose Fragoso wrote: Hi, I am running spamd on a OpenBSD 4.1 box with the greyscanner.41 running every 10 minutes. Recently I noticed the following log entry: Aug 26 15:47:58 gwint greytrapper[11467]:

Re: not a tty

On Wed, 27 Aug 2008 14:54:06 +0200, Otto Moerbeek wrote Likely /tmp is mounted nodev I don't think so. I can replicate Leo's exact sequence when /tmp is mounted dev. If it is mounted nodev, you get warning messages that there is no controlling tty when you start the shell. With dev, you get

Re: IPSEC VPN between OpenBSD and Linux (OpenSwan)

This config works for me: OpenBSD 4.3 as GW and Debian Linux with OpenSWAN as client, and the package ike is installed under Linux, too. OpenBSD: ike esp from any to 172.16.1.98 quick auth hmac-sha1 enc aes group modp1024 psk IMTEHLINUXCLIENT Linux: /etc/ipsec.conf version 2.0 cono,
g setup

Re: not a tty

Josh Grosse wrote: On Wed, 27 Aug 2008 14:54:06 +0200, Otto Moerbeek wrote Likely /tmp is mounted nodev I don't think so. I can replicate Leo's exact sequence when /tmp is mounted dev. If it is mounted nodev, you get warning messages that there is no controlling tty when you start the

Re: Need some information...

While I appreciate the limitations of funds and of technology choices, these - by definition - limit your synchronization choices and will probably impose a set of reasonably hard and quantifiable limits on how close you can get to realtime. This can be modeled but only with intimate knowledge

Re: : question about Bob Beck's greyscanner

On Wed, Aug 27, 2008 at 02:57:42PM +0200, ropers wrote: 2008/8/27 Raimo Niskanen [EMAIL PROTECTED]: On Tue, Aug 26, 2008 at 06:04:22PM -0300, Jose Fragoso wrote: Hi, I am running spamd on a OpenBSD 4.1 box with the greyscanner.41 running every 10 minutes. Recently I noticed the

Re: question about Bob Beck's greyscanner

Hi, This is my configurations of the greyscanner: $SCAN_INTERVAL = 600; $DNS_SOCK_MAX=50; $SUSPECT_TUPLES = 6; $MAX_DOMAINS = 8; $MAX_SENDERS_RATIO = 0.85; My idea was to be a bit more conservative than the default configuration. Is there any inconsistency in the above set of parameters?

Re: not a tty

chroot $r /bin/sh tty not a tty Where I am going wrong? I'll bet $r is on a filesystem mounted with the nosuid option. Miod

Re: IPSEC VPN between OpenBSD and Linux (OpenSwan)

Dirk Mast wrote: This config works for me: Hi, OpenBSD 4.3 as GW and Debian Linux with OpenSWAN as client, and the package ike is installed under Linux, too. The openswan package is not sufficient to get a working IPsec between Linux and OpenBSD ? OpenBSD: ike esp from any to

Re: OpenBGPd: don't announce a specified prefix to a peer

On 2008-08-27, smartTERRA NOC [EMAIL PROTECTED] wrote: Hi, is there a way to dynamically deny prefixes learned via iBGP / IGP or have I to specify all the prefixes manually? Regards, Falk Communities.

Re: ospf unexpectedly changing to EXSTA

Jon Simola wrote: On Fri, Aug 8, 2008 at 2:17 AM, clifford bailey [EMAIL PROTECTED] wrote: Finally my ospf config: hello-interval 1 router-dead-time 2 Those timings might be a little agressive for VMs to handle, as missing a single hello could cause all sorts of excitement

Re: : : question about Bob Beck's greyscanner

On Wed, Aug 27, 2008 at 03:58:41PM +0200, Raimo Niskanen wrote: On Wed, Aug 27, 2008 at 02:57:42PM +0200, ropers wrote: 2008/8/27 Raimo Niskanen [EMAIL PROTECTED]: On Tue, Aug 26, 2008 at 06:04:22PM -0300, Jose Fragoso wrote: Hi, I am running spamd on a OpenBSD 4.1 box with the

Re: not a tty

chroot $r /bin/sh tty not a tty Where I am going wrong? I'll bet $r is on a filesystem mounted with the nosuid option. Err, I meant nodev here, of course. And this should work even if /var/run/dev.db is missing, though... Miod

Re: IPSEC VPN between OpenBSD and Linux (OpenSwan)

Laurent CARON wrote: Dirk Mast wrote: This config works for me: Hi, OpenBSD 4.3 as GW and Debian Linux with OpenSWAN as client, and the package ike is installed under Linux, too. The openswan package is not sufficient to get a working IPsec between Linux and OpenBSD ? OpenBSD:

Re: OpenBSD 4.3 network connectivity issues

2008/8/26 Chris [EMAIL PROTECTED]: I use wpi0 to get to the net and never had issues until now. I get IP from the DHCP pack of the ADSL modem. But can't connect to the net. If I ping mit.edu I get: ping: sendto: No route to host ping: wrote mit.edu 64 chars, ret=-1 then I have to do dhclient

Re: IPSEC VPN between OpenBSD and Linux (OpenSwan)

Dirk Mast wrote: Linux /etc/ipsec.conf: version 2.0 config setup ... (snip) Hi, I finally managed to get it up and working (without IKE). OpenBSD: /etc/ipsec.conf: ike esp from 10.50.0.0/24 to 192.168.9.0/24 peer PUBLIC_LINUX quick \ auth hmac-sha1 enc aes group modp1024 psk

OpebBSD 4.3 with ISAKMP CARP

Hi, Thanks to the help from this list I managed to set up a VPN between 2 machines (Linux OpenBSD). My next step is to provide high availability on the OpenBSD side. I did set-up pf, carp, sasync. Since my machines are having each one ip on the wan, one on the lan, and 2 carp ips (lan +

Re: not a tty

Op 27/08/2008 om 15:33:33 +0200, schreef Heinrich Rebehn : Josh Grosse wrote: On Wed, 27 Aug 2008 14:54:06 +0200, Otto Moerbeek wrote Likely /tmp is mounted nodev I don't think so. I can replicate Leo's exact sequence when /tmp is mounted dev. If it is mounted nodev, you get warning

Re: unconventional manual page categories found

On Tue, Aug 26, 2008 at 11:53:00PM +0200, Tobias Sarnowski wrote: And here's the promised tarball ;-) http://www.new-thoughts.org/man-patches.tar.gz Tobias Sarnowski wrote: Hello list, on indexing my openbsd manual pages I discovered 5 manual pages, which do not fit into the

Re: not a tty

On Wed, Aug 27, 2008 at 05:00:36PM +, Miod Vallat wrote: chroot $r /bin/sh tty not a tty Where I am going wrong? I'll bet $r is on a filesystem mounted with the nosuid option. Err, I meant nodev here, of course. And this should work even if /var/run/dev.db is missing,

Re: not a tty

On Wed, Aug 27, 2008 at 10:47:55PM +0200, Otto Moerbeek wrote: So in absense of dev.db, the function ttyname() will fail if the actual device node that is the controlling tty is not the same as the ones which oldttyname() scans. Let me rephrase that. In absense of dev.db, ttyname() will

4.2 on alphaserver trying to compile inspircd

I've been working with the InspIRCd group to try to get it working on OpenBSD again. The server I'm doing this on is OpenBSD 4.2 on an Alphaserver 1000 4/200. There is a header which has the following section: #ifdef __GNUC__ #define CUSTOM_PRINTF(STRING, FIRST) __attribute__((format(printf,

cwm(1) maximize vs. xrandr dualhead

macbook amd64 with aug.12 snapshots, inteldrm enabled in ukc (this situation exists either way tho) using macbook LCD and external LCD (dell 2001FP) via VGA cable. external LCD physically rotated 90degrees CW and situated directly above mac LCD. xrandr told to rotate the VGA

ospfd: redistribute statement per area

Hi, AFAIK I can only set the redistribute statement for the whole configuration, but not for a single area. Is there any gentle way to provide two areas, one redistributing all connected network, and another area only redistributing a default route? Regards, Falk

EuroBSDCon

Hi, Is anyone travelling from the UK to EuroBSDCon this year? -- Best Regards Edd http://students.dec.bournemouth.ac.uk/ebarrett

maybe OT 4 year anniversay of Chuck Yerkes death

I don't think it's off topic but others might. I'm writing this post to remember Chuck Yerkes, a long time contributor to the [EMAIL PROTECTED] list. http://www.sage.org/about/yerkes.html Chuck died 4 years ago today while riding his motorcycle.

apple xserve G4 'drive sled' wanted

Anyone have an Apple xserve G4 'drive sled' that they can donate? They are just too brutally expensive on ebay or elsewhere, it is totally ridiculous, but it would help get some important macppc (not just xserve) code into the tree quicker. Dale Rahn [EMAIL PROTECTED] needs it, in Illinois.

Re: maybe OT 4 year anniversay of Chuck Yerkes death

On Wed, Aug 27, 2008 at 04:32:34PM -0600, Diana Eichert wrote: Just wanted to remember you Chuck, take it easy wherever you are. think of him every time i go past

Re: OpenBGPd: don't announce a specified prefix to a peer

On Wed, Aug 27, 2008 at 04:18:07PM +, Stuart Henderson wrote: On 2008-08-27, smartTERRA NOC [EMAIL PROTECTED] wrote: Hi, is there a way to dynamically deny prefixes learned via iBGP / IGP or have I to specify all the prefixes manually? Regards, Falk Communities.

Re: Altq number of queues

On Wed, Aug 27, 2008 at 10:04:25AM -0300, Fabio Almeida wrote: Ooops Yes, I mean HFSC :) http://marc.info/?l=openbsd-pfm=105686547406316w=2 http://marc.info/?l=openbsd-pfm=105696331913195w=2 maybe it just fell off the radar, or maybe there turned out to be a good reason to not

Re: not a tty

27 August 2008 c. 17:33:33 Heinrich Rebehn wrote: Josh Grosse wrote: On Wed, 27 Aug 2008 14:54:06 +0200, Otto Moerbeek wrote Likely /tmp is mounted nodev I don't think so. I can replicate Leo's exact sequence when /tmp is mounted dev. If it is mounted nodev, you get warning messages

Re: Altq number of queues

Thanks Jared, I checked out the thread as you pointed :) But I would like to know if raising the number of queues to 512 and recompiling the kernel is an alternative or its better to keep the default values. Does anyone have a configuration with 512 or more queues? What is the correct way to

Re: Daily script leaving processes

On Mon, Aug 04, 2008 at 02:38:15PM +0200, Ivo van der Sangen wrote: When I tried to kill these processes I noticed that I culdn't kill the find processes that are apparently stuck in the kernel having WAIT status nfsrcvl. The obvious issue here is the nfs mount, but why does this cause the

Re: Role of the package system when following -current

On Mon, Aug 04, 2008 at 01:43:31PM -0400, aeonsystems.com wrote: when one follows -current aggressively (ie. one rebuilds everything at least monthly) should one opt to compile all software from ports, or is the package system still useful and reliable? My guess is that installing all

Re: Role of the package system when following -current

On Wed, Aug 27, 2008 at 10:04:08PM -0400, jared r r spiegel wrote: On Mon, Aug 04, 2008 at 01:43:31PM -0400, aeonsystems.com wrote: when one follows -current aggressively (ie. one rebuilds everything at least monthly) should one opt to compile all software from ports, or is the

Re: 4.2 on alphaserver trying to compile inspircd

I've been working with the InspIRCd group to try to get it working on OpenBSD again. The server I'm doing this on is OpenBSD 4.2 on an Alphaserver 1000 4/200. There is a header which has the following section: #ifdef __GNUC__ #define CUSTOM_PRINTF(STRING, FIRST)

Re: 4.2 on alphaserver trying to compile inspircd

On Wed, Aug 27, 2008 at 3:22 PM, Stefan Johnson [EMAIL PROTECTED] wrote: I've been working with the InspIRCd group to try to get it working on OpenBSD again. The server I'm doing this on is OpenBSD 4.2 on an Alphaserver 1000 4/200. There is a header which has the following section: #ifdef

How much RAM is needed for cvs(1)?

Hi all, I tried # cd /usr # export [EMAIL PROTECTED]:/cvs # cvs -d$CVSROOT checkout -P xenocara and after few minutes get Out of memory.I have 256MB RAM.That was running on tty0, on tty1 was only lynx with OBSD page.Before that I made checkout of src and every- thing OK.

Re: How much RAM is needed for cvs(1)?

On Thu, Aug 28, 2008 at 7:23 AM, Tomas Bodzar [EMAIL PROTECTED] wrote: Hi all, I tried # cd /usr # export [EMAIL PROTECTED]:/cvs # cvs -d$CVSROOT checkout -P xenocara and after few minutes get Out of memory.I have 256MB RAM.That was running on tty0, on tty1 was only lynx with

Re: How much RAM is needed for cvs(1)?

On Thu, Aug 28, 2008 at 06:23:13AM +0100, Tomas Bodzar wrote: Hi all, I tried # cd /usr # export [EMAIL PROTECTED]:/cvs # cvs -d$CVSROOT checkout -P xenocara i did a while sleep ps loop somefile while doing a fresh checkout of xenocara and see the following as max values