This basically works but there are incompatibilities between nat-t in OpenBSD
and that from certain vendors, notably cisco.
On 2011-11-13, Mik J mikyde...@yahoo.fr wrote:
Hello,
I would like to know if such configuration is possible.
LAN1
(192.168.10.0/24) -- OpenBSD .99 -- .254 Router IPx
Hi,
I've just set up a mail server with 5.0. I have put spamd in front (in
default greylisting mode). It works great following the man pages but
when I activate the spamd-setup entry in root's crontab, I receive the
following error by mail:
spamd-setup: ftp: Could not add blacklist
Same error message since one week on an old 4.6 install. But i didn't
find the origin yet...
Le 14/11/2011 10:13, Manuel Giraud a C)crit :
Hi,
I've just set up a mail server with 5.0. I have put spamd in front (in
default greylisting mode). It works great following the man pages but
when I
This has no 'make install' for some odd reason. I clearly should
become a packager.
On Mon, Nov 14, 2011 at 4:31 PM, Richard Toohey
richardtoo...@paradise.net.nz wrote:
On 14/11/2011, at 6:13 PM, John Tate wrote:
Device seems to be: Generic mmc2 DVD-R/DVD-RW.
cdrecord: This version of
On Mon, 14 Nov 2011 22:07:06 +1100, John Tate wrote:
This has no 'make install' for some odd reason. I clearly should
become a packager.
I don't see that happening soon given your confused posts here.
It seems to be about time you did some learning.
packages are provided and are installed by
Hi :)
I'm trying to do exactly this setup, between two OpenBSD boxes - 4.4 (central
office) and 4.9 (branch office).
With the following setup I can bring the tunnel up, but the networks can't
talk to each other:
Central ipsec.conf
-
ike passive esp tunnel from
On Mon, Nov 14, 2011 at 2:00 PM, Mentesan mente...@gmail.com wrote:
Hi :)
I'm trying to do exactly this setup, between two OpenBSD boxes - 4.4
(central
office) and 4.9 (branch office).
With the following setup I can bring the tunnel up, but the networks can't
talk to each other:
Central
I had the same problem, which I worked around by changing my
spamd.conf to use a local file instead of FTP, and downloading the
traplist.gz file in my daily.local.
That is, my spamd.conf now looks like this:
uatraps:\
:black:\
:msg=Your address %A has sent mail to a ualberta.ca
Hello!
In transitioning from isakmpd.conf to ipsec.conf I want to make the
configuration file simple and readable by using macros.
However, I seems like I can not make use of macros in the way that I want.
Example:
host_a=192.168.1.1
host_b=192.168.2.2
host_list={ $host_a $host_b }
Hello,
Thanks to both of you for your answer.
However I'm really confused
regarding where I should configure the OpenBSD ipsec gateway to use nat-t or
not.
The only this I'm aware of is
$ sysctl -a | grep udpencap
net.inet.esp.udpencap=1
net.inet.esp.udpencap_port=4500
But it just states the
Make install does nothing in /usr/ports/sysutils/dvd+rw-tools/, and
the ports is the tarball from
ftp://ftp.openbsd.org/pub/OpenBSD/5.0/ports.tar.gz - it does not error
there is simply no output. It does compile. I honestly think something
has been missed. As for my confused posts, well, it
I have dvd+rw tools and cdrecord still gives me this message...
cdrecord: This version of cdrecord does not include DVD-R/DVD-RW support
code.
cdrecord: If you need DVD-R/DVD-RW support, ask the Author for
cdrecord-ProDVD.
cdrecord: Free test versions and free keys for personal use are at
Out of curiosity, WHY should any make install in ports actually DO anything?
Seems like the object of ports is to make packages and packages are installed
by pkg_add.
If you want to be something, say a packager, it helps if you have at least a
slight clue what it is all about.
-Original
You might try reading your own message.
-Original Message-
From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of John
Tate
Sent: Monday, November 14, 2011 9:19 AM
To: Fubar
Cc: Richard Toohey; misc
Subject: Re: Burning DVDs
I have dvd+rw tools and cdrecord still gives
Am Sun, 13 Nov 2011 09:51:05 -0600
schrieb Ted Wynnychenko ted@comcast.net:
With 4.5, I had snort listening to pflog0, because I understood that
listening to the interface directly (e.g. bge0) would not work
since any packets dropped by pf would not be seen by snort.
pflog0 only shows the
Hi all,
I want to set-up a service redirector with relayd and the reply-to
feature of pf.conf, but I meet a problem: The reply-to pf rule is
matched, but there is no modification of the return traffic (the
firewall send the reply to the default gateway and not to the gateway
forced in the
Op Mon, 14 Nov 2011 15:28:43 +0100 schreef James J. Lippard
lippard-open...@discord.org:
I had the same problem, which I worked around by changing my
spamd.conf to use a local file instead of FTP, and downloading the
traplist.gz file in my daily.local.
That is, my spamd.conf now looks like
First of all, you should have taken this to ports@, not to misc@.
On Nov 14 16:13:34, John Tate wrote:
Device seems to be: Generic mmc2 DVD-R/DVD-RW.
cdrecord: This version of cdrecord does not include DVD-R/DVD-RW support code.
cdrecord: If you need DVD-R/DVD-RW support, ask the Author for
Hello,
I have a router (Host B in following picture) running with OpenBSD 4.7.
One phyiscal interface is bridged to a VLAN:
A simplified picture of it is:
(em2)
v
Host A---(vlan759)--Host B-Host C
^ ^
Hello Mik,
Sunday, November 13, 2011, 8:06:32 AM, you wrote:
MJ I would like to know if such configuration is possible.
MJ LAN1
MJ (192.168.10.0/24) -- OpenBSD .99 -- .254 Router IPx -- Internet --
IPy
MJ IPSec_GW (Vendor) -- LAN2 (192.168.20.0/24)
MJ As you can see the OpenBSD 4.9
MJ server
Hello,
Can anyone validate, or give some advice in this setup:
LAN (10.20/16) OpenBSD (public fixed IP) -- (public dynamic IP)
LAN ROUTER - OpenBSD - LAN (10.10.11/24)
There's a *need* to have that LAN ROUTER on the client side.
Let's call the first OpenBSD box Server and the
Hi all,
when dvdrecord or cdrecord doesn't work properly, you can use
growisofs -dvd-compat -use-the-force-luke=dao -Z
/dev/rcd1c=/home/francois/toto.iso command (juste adapt it to feel your
needs)
From: Tony Abernethy t...@servasoftware.com
Sent: Mon
On 2011-11-14, Tony Abernethy t...@servasoftware.com wrote:
Out of curiosity, WHY should any make install in ports actually DO anything?
The only reason it would do nothing, is if the package is already installed
* Tobias Crefeld t...@cataneo.eu [2011-11-14 17:13]:
Am Sun, 13 Nov 2011 09:51:05 -0600
However, when I upgraded to 4.9 and snort 2.9.1.x, I have noticed
that snort appears to see packets that are dropped by pf when it
listens on the interface directly (bge0).
snort's listening on
Yeah something else installed it, I guess cdrecord, which I believe is
horribly out of date but I skipped part of the manual about burning an
image with growisofs, I guess the name distracted. My problems are
gone, but it remains a fact the more familiar cdrwtools is horridly
out of date and
OpenBSD 5 i386
fxp0 - WAN interface to ISP - xxx.xxx.xxx.116
xl0 - WAN interface to head office via Cisco VPN - xxx.xxx.xxx.131
xl1 - LAN interface to internal network - 192.168.1.0/24
I need to route a small amount of FTP traffic to head office through a
second WAN connection, which connects to
Hi Gerard Lally
i think it won't work like this as you said :
match out on $ext_if1 from $lan_net nat-to ($ext_if1)
pass in on $int_if proto tcp from $lan_net to 123.456.789.xxx \
port ftp route-to ($ext_if1 $ext_gw1)
pass in quick on $int_if inet proto tcp to port 21 \
I see that ii (FIFO-based 'irc it' IRC client) is in the packages,
but sic (ii's younger brother) is not. How can I suggest that
sic be made as a package for OpenBSD?
On 11/14/11 23:38, James Hozier wrote:
I see that ii (FIFO-based 'irc it' IRC client) is in the packages,
but sic (ii's younger brother) is not. How can I suggest that
sic be made as a package for OpenBSD?
You just did.Whether someone who creates ports will do it
is another question.
1328602
[IMAGE]
Internet Marketing Evolution 2011 Znica presentacisn:
Acompaqanos este 25 de Noviembre al evento que se ha posicionado como el
mas efectivo a nivel nacional en marketing digital, en el cual
conoceremos de manos de los expertos invitados la estrategia de Marketing
Digital
On 15/11/2011, at 6:03 PM, STeve Andre' wrote:
On 11/14/11 23:38, James Hozier wrote:
I see that ii (FIFO-based 'irc it' IRC client) is in the packages,
but sic (ii's younger brother) is not. How can I suggest that
sic be made as a package for OpenBSD?
You just did.Whether someone who
31 matches
Mail list logo