Re: Routing all traffic through IPSEC VPN

On Tue, 2011-04-12 at 19:53 -0700, Matt S wrote: Hello @misc: I am up against a stumper. I have a Site-to-Site IPSEC VPN working beautifully. However, I would like the remote site to route all of its traffic through the VPN. After googling, I seemed to come up with a suggestion to

Gli articoli della rubrica COSTUME E SOCIETA'

[IMAGE] Se non sei ancora iscritto alla Newsletter di NanniMagazine clicca QUI /TR Facebook: Facebook Diventa Fan RSS: d Sottoscrivi gli RSS Newsletter Nr. 17 Aprile 2011 Le altre rubriche:  Costume  Tech life  Donne  Famiglia [IMAGE] NanniMagazine h un periodico di informazione

Re: Citrix ICAclient hangs whole PC with latest i386 PC

On Mon, Apr 11, 2011 at 6:10 PM, Paul Irofti p...@irofti.net wrote: On Mon, Apr 11, 2011 at 09:24:30AM +0200, Tomas Bodzar wrote: Hi all, I have: $ ./wfica -version Citrix Receiver for Linux Version 11.100.158406 Copyright 1998-2010 Citrix Systems, Inc. All rights reserved. Copyright (c)

Is VPN initiation by traffic possible?

Hi, One of my clients is a major bank. We need to exchange data a few times a day at different intervals, and they're insisting that we initiate the VPN on demand with relevent traffic. It works from their end. Tunnel is down, they send a ping, first packet is dropped as the tunnel is

Re: Is VPN initiation by traffic possible?

On 04/13/11 05:19, nemir nemirius wrote: Hi, One of my clients is a major bank. We need to exchange data a few times a day at different intervals, and they're insisting that we initiate the VPN on demand with relevent traffic. It works from their end. Tunnel is down, they send a ping,

relayd ignores table interval and timeout

Hi list, I am trying to configure different interval and timeout values in relayd.conf. But relayd ignores the table interval and timeout options. Here is my relayd.conf host1=10.0.0.1 host2=10.0.0.2 host_ext=192.168.0.1 interval 5 timeout 3000 table host_table { $host1 $host2 } relay

Re: /dev/pf permission for squid 3.2.0.6 on openbsd 4.8

2011/4/8, Indunil Jayasooriya induni...@gmail.com: Hi list, I am trying to test squid 3.2.0.6 on OpenBSD 4.8 (amd64) in transparent mode. I can browse internet. But, I get the below error. 2011/04/08 17:43:11 kid1| Intercept.cc(305) PfInterception: PF open failed: (13) Permission denied

Lettre du mercredi 06 avril 2011

B Docteur Doublier-Villette Chemin du Relais St RochB B B B B B 26400 Vaunaveys-la-RochetteB B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B B 04 75 25 11 88 ville...@lunivers.info ( mailto:ville...@lunivers.info; ) B B B Lettre du

Hospedaje Web y Correos desde us$29.95/año.

No puede ver la imagen correctamente? Si quiere ver una versiC3n online de este anuncio haga clic en el siguiente link: http://enviomasivodemails.net/mail/display.php?M=176106C=3b8f013c96f99e5cd04 5b4d41ddadf85S=4L=1N=1 Abril - 2011 Mantener SuscripciC3n Eliminar SuscripciC3n Le ofrecemos

Re: /dev/pf permission for squid 3.2.0.6 on openbsd 4.8

Hi, This link may help: http://wiki.squid-cache.org/ConfigExamples/Intercept/OpenBsdPf Thanks, On Wed, 13 Apr 2011 16:12:51 +0700, Muhammad Muntaza m.munta...@gmail.com wrote: 2011/4/8, Indunil Jayasooriya induni...@gmail.com: Hi list, I am trying to test squid 3.2.0.6 on OpenBSD 4.8

l2tpd

does openbsd have l2tpd-daemon in packages or ports?

Just curious: what happens on tcpdump -nei pfsync0?

Hello all, just curious on a strange behaviour of an active/active firewall configuration: when I do a tcpdump -nei pfsync0 to watch what sort of state updates are passed and do a tail -f /var/log/messages I see that in the moment the command is issued the VHID CARP interfaces on that

Wildest Africa Tour

Dear Sir / Madam I have this agent that has booked a very interesting tailor-made b10 Day Wildest Africab tour. He already has 4 people on the tour and still marketing to his other clients, as per the below dates, the closing date is 15 June 2011. I am looking to try and get a full group and

Re: l2tpd

On 2011-04-13, pavel pocheptsov lilit-aibo...@mail.ru wrote: does openbsd have l2tpd-daemon in packages or ports? see /usr/src/usr.sbin/npppd, it is NOT built by default yet. it would probably be helpful to run -current (or at least refer to HOWTO_PIPEX_NPPPD.txt from -current, the one in 4.8

Re: Is VPN initiation by traffic possible?

On 2011-04-13, Scott McEachern sc...@blackstaff.ca wrote: On 04/13/11 05:19, nemir nemirius wrote: Hi, One of my clients is a major bank. We need to exchange data a few times a day at different intervals, and they're insisting that we initiate the VPN on demand with relevent traffic. It

Re: l2tpd

On Wed, Apr 13, 2011 at 8:11 PM, pavel pocheptsov lilit-aibo...@mail.ru wrote: does openbsd have l2tpd-daemon in packages or ports? http://openports.se

Re: Routing all traffic through IPSEC VPN

Hi Claudiu: Thank you for your reply. I did try your suggestion to do a route add A.B.C.D.E isp gateway and unfortunately it did not work so well. I lost connectivity to the branch altogether over the VPN. At least I have console access :) Once I removed the route, I regained

Re: Is VPN initiation by traffic possible?

On 04/13/11 09:38, Randal L. Schwartz wrote: Scott == Scott McEachernsc...@blackstaff.ca writes: Scott It's called port knocking. Google is your friend here. And if you recommend or use port knocking, you're an amateur at crypto. If adding 8 sniffable bits to your effective key length makes

Re: l2tpd

On 13 April 2011 14:11, pavel pocheptsov lilit-aibo...@mail.ru wrote: does openbsd have l2tpd-daemon in packages or ports? http://lmgtfy.com/?q=l2tpd+openbsd

Re: /dev/pf permission for squid 3.2.0.6 on openbsd 4.8

On 2011-04-08, Reyk Floeter r...@openbsd.org wrote: On Fri, Apr 08, 2011 at 03:25:55PM +0530, Indunil Jayasooriya wrote: I am trying to test squid 3.2.0.6 on OpenBSD 4.8 (amd64) in transparent mode. I can browse internet. But, I get the below error. # chgrp _squid /dev/pf # chmod g+rw

Re: l2tpd

On Wed, Apr 13, 2011 at 3:21 PM, Edho P Arief edhopr...@gmail.com wrote: On Wed, Apr 13, 2011 at 8:11 PM, pavel pocheptsov lilit-aibo...@mail.ru wrote: does openbsd have l2tpd-daemon in packages or ports? http://openports.se Before start of pointing to some service it's useful to test if

Re: Routing all traffic through IPSEC VPN

On 12 April 2011 23:53, Matt S maschwa...@yahoo.com wrote: Hello @misc: I am up against a stumper. I have a Site-to-Site IPSEC VPN working beautifully. However, I would like the remote site to route all of its traffic through the VPN. After googling, I seemed to come up with a suggestion

Is monit broken in OpenBSD -current ?

Hello, I've tried to use monit on my OpenBSD snapshot Which is: # uname -ap OpenBSD openbsd.eject.name 4.9 GENERIC.MP#814 i386 Intel(R) Atom(TM) CPU D425 @ 1.80GHz (GenuineIntel 686-class) # pkg_info -v monit Information for inst:monit-4.10.1p1 I tried to run it with out of package config

Re: l2tpd

On Wed, Apr 13, 2011 at 9:33 PM, Tomas Bodzar tomas.bod...@gmail.com wrote: It looks cool to provide devs-like answer to users, but there is a big difference - they know what they are talking about ;-) sorry, I was bored tonight and figured that since he asked in ports or packages, I tried to

Re: Routing all traffic through IPSEC VPN

Christiano: Thanks for your help. So, if I am understanding correctly, I need to create the following routes on the branch office router (OpenBSD): route change -net 0.0.0.0/0 172.16.254.2 #I tried using 10.40.60.1 as the gateway and I got a network unreachable error route add -host

Re: Oxford PCI-e serial card support?

On Fri, 25 Mar 2011 14:07:09 -0600 Mark Leonard wrote: Hi, I've recently purchased a 16-port PCI-e serial card with Oxford UARTs. OpenBSD 4.8 detects the Oxford chips, but doesn't seem to be able to use the 'unknown product 0xc308'. This thread

请确认你订阅eTradeChannel.net的资讯

d= e%=o h/7g9e;d;%d8gh?g;f%g!.h.$d= h.ieTradeChannel.netgh5h./c g!.h.$h.i h%d;%d8 h?g;f foh/7e$ e6e h44d8 d;%d8h?g;e0f5h'e(o http://subscriber.ReasonableSpread.com/ConfirmOptIn.aspx?a=5351b=33A313D d8:d?ii
d8d8 df6e0d8 e?h
gh5h./og!.h.$e.f/ef

Re: Is VPN initiation by traffic possible?

Scott == Scott McEachern sc...@blackstaff.ca writes: Scott It's called port knocking. Google is your friend here. And if you recommend or use port knocking, you're an amateur at crypto. If adding 8 sniffable bits to your effective key length makes you significantly more secure, you've lost the

Re: Is VPN initiation by traffic possible?

Heya On Thu, Apr 14, 2011 at 3:09 AM, Scott McEachern sc...@blackstaff.cawrote: On 04/13/11 09:38, Randal L. Schwartz wrote: Scott == Scott McEachernsc...@blackstaff.ca writes: Scott It's called port knocking. Google is your friend here. And if you recommend or use port knocking,

Re: l2tpd

On Wed, Apr 13, 2011 at 5:58 PM, Edho P Arief edhopr...@gmail.com wrote: On Wed, Apr 13, 2011 at 9:33 PM, Tomas Bodzar tomas.bod...@gmail.com wrote: It looks cool to provide devs-like answer to users, but there is a big difference - they know what they are talking about ;-) sorry, I was

Re: Is VPN initiation by traffic possible?

You might consider a creative solution with Dead Peer Detection. Per ipsec.conf(4), you enable Dead Peer Detection by using an ike dynamic statement. Heya On Thu, Apr 14, 2011 at 3:09 AM, Scott McEachern sc...@blackstaff.cawrote: On 04/13/11 09:38, Randal L.

Re: Is VPN initiation by traffic possible?

Hello, I don't know if this will help you, but When passive is specified, isakmpd(8) will not immediately start negotiation of this tunnel, but wait for an incoming request from the remote peer. You can write a program that initialize connection, transmit your data and

Re: Routing all traffic through IPSEC VPN

On Wed, 2011-04-13 at 07:34 -0700, Matt S wrote: Hi Claudiu: Thank you for your reply. I did try your suggestion to do a route add A.B.C.D.E isp gateway and unfortunately it did not work so well. I lost connectivity to the branch altogether over the VPN. At least I have console access

Re: Routing all traffic through IPSEC VPN

Thank you for all of the help. I am effectively giving up on doing it this way. OpenVPN seems to have facilities to make it easier to achieve what I want to do. I appreciate all of the time and effort spent. On Wed, 2011-04-13 at 07:34 -0700, Matt S wrote: Hi Claudiu: Thank you for

Intel 10GbE SFP+ (82599) and vlan

hello eveyone, problem is that when i enable vlan on ix interface i can't ping other side. servers are identical and cross connected with twinax SFP+ cable. tried thru switches with other ix interface but same result. card is dual 10GbE intel SFP+ SR, but i'm not sure is it X520-D2 or

8-bit character in mg

Hi, I'm trying to use mg as my mail editor. However, I need some 8-bit characters for portuguese. In the man page, I saw I need to disable meta-key-mode. I did, but after each 8-bit character, I get an extra space. Is this an expected behavior? Thank you.

Re: Intel 10GbE SFP+ (82599) and vlan

Try to do ifconfig ix1 up (up in /etc/hostname.ix1) I've seen vlans not coming up until I do this on parent interface, although they appear active in ifconfig. Giannis On 14/04/11 02:43, Hrvoje Popovski wrote: hello eveyone, problem is that when i enable vlan on ix interface i can't ping

Re: Is VPN initiation by traffic possible?

Heya On Thu, Apr 14, 2011 at 8:05 AM, Matt S maschwa...@yahoo.com wrote: You might consider a creative solution with Dead Peer Detection. Per ipsec.conf(4), you enable Dead Peer Detection by using an ike dynamic statement. One thing that came to mind for

Computadoras Armadas - Diseño - Gamers - Hogar - Oficina - Pagos con Tarjeta.

Si no puede visualizar correctamente este newsletter haga click AQUI [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] *Los precio estan expresados en dslares estadounidades e incluyen IVA.**Las configuraciones son a modo

Re: Routing all traffic through IPSEC VPN

On Wed, Apr 13, 2011 at 02:53:29PM -0700, Matt S wrote: Thank you for all of the help. I am effectively giving up on doing it this way. OpenVPN seems to have facilities to make it easier to achieve what I want to do. I appreciate all of the time and effort spent. There should be no

Re: fans with iMac using 4.9 macppc

At 2011-04-11 15:36:37, Jan Stary wrote: On Apr 11 23:35:05, richo wrote: I installed 4.9-current last night on my G5 iMac 8,1 Years ago I had 4.4 running on it, and it was a simple case of a kernel rebuild with an extra module included to get the fans working (And governed) such that they'd