Hello misc, I'm a bit confusion with understanding such things.
I have a symmetrical channel to the Internet with 20 Mbits and
openbsd5.2 as gateway, with NAT.
Imagine I defined ALTQ on $ext_if and on $int_if.
Am I right that:
1) ALTQ on $ext_if will be applied for upstream channel (i.e. upload
2013/3/1 lilit-aibolit lilit-aibo...@mail.ru:
Hello misc, I'm a bit confusion with understanding such things.
[...]
Or am I totally wrong? Because I read man, faq, ca(REMOVED)el.org,
Bad move.
--
May the most significant bit of your life be positive.
Hello Misc !
I have a strange problem, and google doesn't help me.
I want to make an IPSec+GRE tunnel with OSPF. For now, OSPF over GRE is
perfectly working (ipv4+ipv6).
I have a problem with IPSec, and I don't find how to resolve it.
It's a fresh OpenBSD 5.2 image.
The error is the following:
Hi,
Am 01.03.2013 um 15:24 schrieb Leonardo Santagostini lsantagost...@gmail.com:
Im facing maybe a misbehavior in my OpenBSD 5.2. This machine is
virtualized with KVM with 2 CPU and 4 Gb RAM
Im running 5.2 GENERIC#278 i386
The point is:
tld relay rule as show in my config is working
Hello Reyk, sorry for the inconsistencies, they was for hide the real
name (for protecting internal things).
Here comes the config with the homework well done (sorry again)
ext_if=pcn0
set fingerprints /etc/pf.os
set optimization aggressive
# match on $ext_if all scrub (no-df)
# Genero las
Hello Reyk,
After probing using my browser without proxy all worked fine. I tried
with 2 different proxies (one ISA and one Squid) without luck.
Th proxy gives to me a Zero sized reply, maybe proxy doesnt like DSR
Sorry for bother you all :)
Saludos / Regards
Leonardo Santagostini
I'm doing the rdr-to on both interfaces. But, I have other ports that rdr
just fine internally, so that's why I think something else is going on. For
example, I have ssh on 6699 and I can access that both internally and
externally.
On Thu, Feb 28, 2013 at 11:46 PM, Andy Bradford
Andy, We can see the result of running
tcpdump -n -e -ttt -i pflog0 host 192.168.1.70
Thanks
2013/3/1 Matt Morrow cmorrow...@gmail.com
I'm doing the rdr-to on both interfaces. But, I have other ports that rdr
just fine internally, so that's why I think something else is going on. For
Hello misc, I'm a bit confusion with understanding such things.
I have a symmetrical channel to the Internet with 20 Mbits and
openbsd5.2 as gateway, with NAT.
Imagine I defined ALTQ on $ext_if and on $int_if.
Am I right that:
1) ALTQ on $ext_if will be applied for upstream channel (i.e.
Hello,
If You are using only redirections, source host will receive SYN-ACK
from 192.168.1.70, but there was not previously SYN to this address, so
source host will send TCP Reset. Solution may be:
pass in on $int_if proto tcp from $int_if:network to any port 80 rdr-to
192.168.1.70
pass out on
queues_for_download=small big
queues_for_upload=how about you go try it first and post a real problem
altq on $ext_if hfsc bandwidth 20Mb queue { $queues_for_download }
altq on $int_if hfsc bandwidth 20Mb queue { $queues_for_upload }
Oops. Of course, swap download for upload in all this.
On 2013-03-01, Loïc Blot loic.b...@unix-experience.fr wrote:
Hello Misc !
I have a strange problem, and google doesn't help me.
I want to make an IPSec+GRE tunnel with OSPF. For now, OSPF over GRE is
perfectly working (ipv4+ipv6).
I have a problem with IPSec, and I don't find how to resolve
I was wondering if anyone knew of the current state of iked/carp/sasync.
I saw the discussion in October of 2012 on this list, in which Reyk
indicates that it is still under developemnt. I don't know who is
responsible for iked/ikectl/sasync code currently, but we would like to
move from isakmpd
Thanks everyone. Seems to be working from outside, so for now I'll just go
with the direct ip of the server when I need to access it internally.
On Fri, Mar 1, 2013 at 11:22 AM, Pawel Jurusz mailing.s...@gmail.comwrote:
Hello,
If You are using only redirections, source host will receive
Thanks for the reply Stuart, but:
- It's a test network, with an offline switch
- only the two routers are on the switch, with the good VLAN connected
by one LACP trunk (for each device)
- isakmp negotation is from the expected hosts
- the certificate are default certificates, generated by OpenBSD
On 2013/03/01 20:16, Loïc BLOT wrote:
Thanks for the reply Stuart, but:
- It's a test network, with an offline switch
- only the two routers are on the switch, with the good VLAN connected
by one LACP trunk (for each device)
- isakmp negotation is from the expected hosts
- the certificate
Hello,
I use an OpenBSD box for my uplink router.
I recently added a second uplink, but if the two nics are configured
to use dhcp, the boot process hangs on syslogd start. Booting with one
of the two external nic cable unplugged let the process going to the
end.
Have you any tips to
Hi,
I installed a new disk to my small home server in order to have a
backup of the previous disk. The backup is intended to run during
late night hours using rsync.
First time, I rsynced some system directories to the second disk and
it worked quickly.
Now, I'm trying to rsync a big encrypted
On 03/01/13 19:16, Luis P. Mendes wrote:
Hi,
I installed a new disk to my small home server in order to have a
backup of the previous disk. The backup is intended to run during
late night hours using rsync.
First time, I rsynced some system directories to the second disk and
it worked
Is there any google summer code project in obsd community?
-Shoufu
20 matches
Mail list logo