Il 26/09/23 17:30, Claudio Jeker ha scritto:
On Tue, Sep 26, 2023 at 05:13:46PM +0200, Andreas Kähäri wrote:
On Tue, Sep 26, 2023 at 04:59:22PM +0200, Alessandro Baggi wrote:
Hi list,
running this python3 script:
#!/usr/bin/env python3
import psutil
pids = psutil.pids()
for i in pids
Il 26/09/23 17:13, Andreas Kähäri ha scritto:
On Tue, Sep 26, 2023 at 04:59:22PM +0200, Alessandro Baggi wrote:
Hi list,
running this python3 script:
#!/usr/bin/env python3
import psutil
pids = psutil.pids()
for i in pids:
p = psutil.Process(i)
with p.oneshot():
print(str(i
Hi list,
running this python3 script:
#!/usr/bin/env python3
import psutil
pids = psutil.pids()
for i in pids:
p = psutil.Process(i)
with p.oneshot():
print(str(i) + " " + p.name())
The result start with:
0 swapper
1 init
536 smtpd
868 ksh
...
This process does not appear in
Il 26/09/23 13:50, Dave Voutila ha scritto:
Alessandro Baggi writes:
Hi list,
I'm trying to install OpenBSD 7.3 on a VM (Linux KVM) but when it
starts to install sets I got panic and "syncing disk... 8 8 8 8 ..."
until it reboot automatically.
Can you share the panic and
Hi list,
I'm trying to install OpenBSD 7.3 on a VM (Linux KVM) but when it starts
to install sets I got panic and "syncing disk... 8 8 8 8 ..." until it
reboot automatically.
This is a simple installation, no disk encryption, default OpenBSD layout...
The VM has VNC Server as "graphic"
Il 21/09/23 13:47, Stuart Henderson ha scritto:
On 2023-09-21, Alessandro Baggi wrote:
Hi list,
I'm trying to read I/O read and write value. Currently I'm using iostat
but I can't understand if the speed in MB/s is relative to write or read
ops.
In+out combined.
There is a way to get
Hi list,
I'm trying to read I/O read and write value. Currently I'm using iostat
but I can't understand if the speed in MB/s is relative to write or read
ops. There is a way to get these 2 values separately?
Thank you in advance.
Alessandro.
Il 19/09/23 16:51, Denis Fondras ha scritto:
Le Tue, Sep 19, 2023 at 03:13:21PM +0200, Alessandro Baggi a écrit :
Hi list,
there is a way to check if OpenBSD runs on VM or physical hardware?
Something like in sysctl or similar.
Thank you in advance.
You may want to check the `hw
Hi list,
there is a way to check if OpenBSD runs on VM or physical hardware?
Something like in sysctl or similar.
Thank you in advance.
Il 09/09/23 16:54, Otto Moerbeek ha scritto:
On Sat, Sep 09, 2023 at 04:45:51PM +0200, Alessandro Baggi wrote:
Hi list,
when using unbound on OpenBSD 6.5 in the default configuration unbound comes
with root.hints file.
Upgrading to OpenBSD 7.3 I noticed that root.hints is not more supplied
Hi list,
when using unbound on OpenBSD 6.5 in the default configuration unbound
comes with root.hints file.
Upgrading to OpenBSD 7.3 I noticed that root.hints is not more supplied
but unbound manual page says:
"root-hints:
read the root hints from this file. Default is nothing, using
Il 08/09/23 19:54, Marc Espie ha scritto:
On Fri, Sep 08, 2023 at 06:36:57PM +0200, Alessandro Baggi wrote:
Il 08/09/23 18:24, Peter N. M. Hansteen ha scritto:
On Fri, Sep 08, 2023 at 10:01:45AM +0200, Alessandro Baggi wrote:
I've a problem. I need to upgrade OpenBSD from 6.5 to 7.3
Il 08/09/23 18:24, Peter N. M. Hansteen ha scritto:
On Fri, Sep 08, 2023 at 10:01:45AM +0200, Alessandro Baggi wrote:
I've a problem. I need to upgrade OpenBSD from 6.5 to 7.3 on an APU2D. This
is a firewall.
The problem is that I cannot find older ISO of OpenBSD. Can someone point me
Il 08/09/23 10:12, Herbert J. Skuhra ha scritto:
On Fri, 08 Sep 2023 10:01:45 +0200, Alessandro Baggi wrote:
Hi list,
I've a problem. I need to upgrade OpenBSD from 6.5 to 7.3 on an
APU2D. This is a firewall.
The problem is that I cannot find older ISO of OpenBSD. Can someone
point me
Hi list,
I've a problem. I need to upgrade OpenBSD from 6.5 to 7.3 on an APU2D.
This is a firewall.
The problem is that I cannot find older ISO of OpenBSD. Can someone
point me in the right direction?
Thank you in advance.
Il 15/04/2017 16:15, Alessandro Baggi ha scritto:
Il 15/04/2017 11:20, Stuart Henderson ha scritto:
On 2017-04-15, Alessandro Baggi <alessandro.ba...@gmail.com> wrote:
this morning I'm upgrading my obsd firewall 5.8 to 5.9.
5.9 is out of support now. I'd strongly recommend moving
Il 15/04/2017 11:20, Stuart Henderson ha scritto:
On 2017-04-15, Alessandro Baggi <alessandro.ba...@gmail.com> wrote:
this morning I'm upgrading my obsd firewall 5.8 to 5.9.
5.9 is out of support now. I'd strongly recommend moving to 6.1 which
was released last week.
When I try to c
Il 15/04/2017 10:12, Andreas Kusalananda Kähäri ha scritto:
On Sat, Apr 15, 2017 at 09:58:00AM +0200, Alessandro Baggi wrote:
Hi there,
this morning I'm upgrading my obsd firewall 5.8 to 5.9.
All processes gone fine but when running pkg_add -u I get that "unable to
connect or
Hi there,
this morning I'm upgrading my obsd firewall 5.8 to 5.9.
All processes gone fine but when running pkg_add -u I get that "unable
to connect or login to ftp.openbsd.org". This is on $PKG_PATH.
When I try to connect to ftp.openbsd.org from shell using ftp I got
connection refused. The
Il 02/12/2016 23:30, Erling Westenvik ha scritto:
On Fri, Dec 02, 2016 at 02:43:01PM +0100, Alessandro Baggi wrote:
Il 02/12/2016 00:47, OpenBSD lists ha scritto:
Alessandro Baggi wrote:
Il 01/12/2016 17:01, Marko Cupać ha scritto:
On Thu, 1 Dec 2016 15:59:41 +0100
Alessandro Baggi
Il 02/12/2016 00:47, OpenBSD lists ha scritto:
Alessandro Baggi wrote:
Il 01/12/2016 17:01, Marko Cupać ha scritto:
On Thu, 1 Dec 2016 15:59:41 +0100
Alessandro Baggi <alessandro.ba...@gmail.com> wrote:
Hi list,
I've installed some years ago OpenBSD 5.8 on apu with 3 nics.
I've
Il 01/12/2016 17:01, Marko Cupać ha scritto:
On Thu, 1 Dec 2016 15:59:41 +0100
Alessandro Baggi <alessandro.ba...@gmail.com> wrote:
Hi list,
I've installed some years ago OpenBSD 5.8 on apu with 3 nics.
I've tried to search but no look. What is the EOL for OpenBSD 5.8?
Thanks in a
Hi list,
I've installed some years ago OpenBSD 5.8 on apu with 3 nics.
I've tried to search but no look. What is the EOL for OpenBSD 5.8?
Thanks in advance.
Il 15/12/2015 17:41, Jan Stary ha scritto:
On Dec 15 17:07:59, alessandro.ba...@gmail.com wrote:
Hi list,
I've a firewall on an apu1D running OpenBSD.
Today during a simple management, I've noticed that the system is up since 1
day and 23 hours. Running "cat authlog" I see that the last two
Hi list,
I've a firewall on an apu1D running OpenBSD.
Today during a simple management, I've noticed that the system is up
since 1 day and 23 hours. Running "cat authlog" I see that the last two
logged session are:
Dec 2 at 12 and today.
Running "last" I see:
myuser (current session) (still
by admins because it's making the applications which
doesn't comply strictly to fail
-Message d'origine-
De : owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] De la part de
Alessandro Baggi
Envoyé : mercredi 2 décembre 2015 12:45
À : misc@openbsd.org
Objet : OpenBSD + pf + DPI
Hi list,
I
Hi list,
I don't know how to start to make Deep Packet Inspection. My interest is
OpenBSD and pf related.
Anyone has already used on OpenBSD? It is possibile on OpenBSD with
shipped (base/ports) software?
Every tips are appreciated.
Thanks in advance.
pages but seems that this is not
supported. The only useful command is on unbound-control that can help
to add/remove zone and data for zone.
Thanks in advance.
Il 24/11/2015 20:00, Christopher Sean Hilton ha scritto:
On Mon, Nov 23, 2015 at 12:24:53PM +0100, Alessandro Baggi wrote:
Hi list
Hi list,
I've switched from Obsd 5.3 from Pfsense to try it. Now I want come back
to Obsd. I prefer it.
Today, the last version is 5.8 and from 5.6 named was replaced from nsd
and unbound.
The first is only authoritative and the other is
ntag, den 23.11.2015, 12:24 +0100 schrieb Alessandro Baggi:
Today, the last version is 5.8 and from 5.6 named was replaced from
nsd
and unbound.
The first is only authoritative and the other is
recursive/forwarder/caching/validating/authoritative.
Right. Except that unbound is not rea
Hi list,
I've an APU1D where I want install OpenBSD 5.8 amd64. The only option
that I have is install from console.
I've downloaded install58.fs and modified /etc/boot.conf adding:
set tty com0
(saved)
During boot it recognizes obsd install media then print this message:
switching to com0
ALIX installs in the past, I vaguely remember that I had to change
this from 115200 to 9600 in the ALIX BIOS ...
Jan
On Sun, Nov 22, 2015 at 05:13:23PM +0100, Alessandro Baggi wrote:
Hi list,
I've an APU1D where I want install OpenBSD 5.8 amd64. The only option that I
have is install from console
Il 22/11/2015 17:22, Alexander Salmin ha scritto:
I have a similar setup. Kill your screen, and connect again, usually
works for me.
On 2015-11-22 17:13, Alessandro Baggi wrote:
set tty com0
Thanks alexander,
problem not solved, after restarting session I don't have output.
Il 22/11/2015 17:44, Mike Bregg ha scritto:
On 2015-11-22 09:13, Alessandro Baggi wrote:
Hi list,
I've an APU1D where I want install OpenBSD 5.8 amd64. The only option
that I have is install from console.
I've downloaded install58.fs and modified /etc/boot.conf adding:
set tty com0
(saved
Hi list,
I'm plannig to setup a squid proxy for a network with about 120 User.
I have not great experience with proxying network that has over 20 user.
For this scenario, is better transparent or not-trasparent proxy?
I've searched on the web but can't get real experience pros and cons
with
On 03/10/2013 12:49 PM, Jiri B wrote:
On Sun, Mar 10, 2013 at 12:38:35PM +0100, Alessandro Baggi wrote:
Hi list,
I'm plannig to setup a squid proxy for a network with about 120 User.
I have not great experience with proxying network that has over 20 user.
For this scenario, is better
On 03/10/2013 05:21 PM, Sven Thomsen wrote:
Hi,
but if squid has problems (bad configuration, machine failure without
failover) there are 120 pcs, that try to communicate with a failure
proxy. At this point, how to solve? With transparent I can remove
redirect rule and forward web traffic
NAT for packets coming from vpn net on local_if.
Tue, 16 Oct 2012 13:08:23 -0600 Ð¾Ñ Luis Coronado lcoron...@ticoit.com:
No, you need to have that route rule in place @snapgear in order to get
the
reply from the server.
-luis
On Tue, Oct 16, 2012 at 12:52 PM, Alessandro
Hi list,
i'm setting up a vpn with OpenVPN on OpenBSD 5.1 amd64. (Not IPSec
because I still do not know how to use well, this will be the next study).
My configuration is 1:N. No problem with ca, key, cert creation.
I've this scenario:
1 firewall (Snapgear) not openbsd and managed by other
, and -i options might be of
interest to you.
I use pkg_add -a -u
On Mon, Sep 17, 2012 at 10:56 AM, Alessandro Baggi
alessandro.ba...@gmail.com mailto:alessandro.ba...@gmail.com wrote:
Hi list,
sorry for late, but you are talking about update, and I've a
question about this.
I'm
ah, sorry
but when run pkg_add -a -u I must give also
ftp://ftp.openbsd.org/pathamd64repo/... ?
On 09/18/2012 07:56 PM, Alessandro Baggi wrote:
Hi Robert,
thanks for the tips.
If I give -u without parameters, it will update all system or only
installed packages?
Another, it's useful
Hi list,
sorry for late, but you are talking about update, and I've a question
about this.
I'm installing software precompiled using pkg_add -r
ftp://ftp.openbsd.org/../openvpn-version.tgz
How to see if there are update/security fix for openvpn?
From Ports ml?
Thanks in advance.
On
Hi list,
today, I've logged on my openbsd box, and when I change the root
password I get this:
$ uname -pmrsv
OpenBSD 5.1 GENERIC.MP#207 amd64 amd64
$ whoami
userlog
$ echo $USER
userlog
$ su
Password:
# passwd
Changing local password for userlog.
New password:
Password unchanged.
# echo
Ok zz
i will give a try with i386.
On 07/22/2012 06:10 PM, z...@sdf.org wrote:
On Fri, Jul 20, 2012 at 07:29:03PM +0200, Alessandro Baggi wrote:
There is someone that has started obsd on kvm and avoid this problem?
This problem is kvm related?
Another, someone has tried obsd 5.1 on ESX?
I
Hi list,
today I've installed OpenBSD 5.1 amd64 on a kvm (linux slackware) kvm
version is 1.0.1.
Starting machine with 4 core, and bsd.mp it crash.
Disabling mpbios see only one core and not smp.
Then, I've updated kvm to 1.1.1 but the results are the same.
There is someone that has started
On 01/08/2012 06:02 PM, Nico Kadel-Garcia wrote:
On Sun, Jan 8, 2012 at 6:01 AM, Tomas Bodzartomas.bod...@gmail.com wrote:
On Sun, Jan 8, 2012 at 11:42 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
On 01/08/2012 11:38 AM, Tomas Bodzar wrote:
On Sun, Jan 8, 2012 at 11:16 AM
Hi there,
I would buy an Ethernet card usb, and I've found the Dlink dub-e100.
It is supported on OpenBSD 5.0?
Someone has ever used it?
Thanks in advance.
On 09/30/2011 01:42 AM, Hugo Osvaldo Barrera wrote:
On 2011-09-28 23:07, Sales - OrangeWebsite.com wrote:
Hey,
We are experiencing problem with installing OpenBSD on our VPS
servers. We'd
hope you provided us some assistance how we could fix this. You can
see our
VPS details here at
Hi list.
I'm trying to use rc_script in rc.conf.local but without results.
In rc.conf.local I put this:
rc_scripts=clamd
but after reboot, clamd does not start.
I've tried also:
rc_scripts=clamd start
and
clamd_flags=
but without result.
Can someone point me in the right direction?
with the/stop/ argument at shut-
down.
What's the way?
On 09/24/2011 04:16 PM, Tomas Bodzar wrote:
On Sat, Sep 24, 2011 at 3:59 PM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list.
I'm trying to use rc_script in rc.conf.local but without results.
In rc.conf.local I put this:
rc_scripts
Hi Vijay,
I've put in my rc.conf.local, at the end of the file, this:
rc_scripts=clamd
but it does not work.
I've tried to start directly from /etc/rc.d/clamd start and it works.
I understand where is the problem...
On 09/24/2011 04:51 PM, Vijay Sankar wrote:
Quoting Alessandro Baggi
Nothing, I've also tried to use pkg_scripts=clamd
It does not work.
There some place where I can find some logs error? In /var/log I don't
see nothing.
On 09/24/2011 05:21 PM, William Yodlowsky wrote:
On 24 September 2011 at 17:23, Alessandro Baggialessandro.ba...@gmail.com
wrote:
I've
pinpoint your issue.
I can confirm that rc_scripts work for me (and pkg_scripts do not) on
4.9 AMD64 from the CD Release.
Quoting Alessandro Baggi alessandro.ba...@gmail.com:
Nothing, I've also tried to use pkg_scripts=clamd
It does not work.
There some place where I can find some logs error
On 09/24/2011 08:35 PM, Vijay Sankar wrote:
Quoting Alessandro Baggi alessandro.ba...@gmail.com:
kernel version is:
kern.version=OpenBSD 4.9 (GENERIC.MP) #819: Wed Mar 2 06:57:49 MST 2011
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
On 09/24/2011 07:15 PM, Vijay
I've tried the rdrnat without results and I can't put in other vlan, I'm
trying this at home. Other issue?
Thanks in advance
On 09/05/2011 19:06, Stuart Henderson wrote:
If possible, put the proxy server on a different vlan.
If you can't, try the method in
Hi list. I've a question about positioning a proxy server into the LAN.
I've tried this in dmz (also in transparent mode + rdr pf), and works
great, but now I'm trying to put this proxy in LAN.
Also in this case it works, but when I try to set it in transparent
mode, and put rdr rules on the
Hi list. I'm making a program that maps some ip address to a specified
dns. My problem is relative to CNAME record.
Supposing we have google ip, generated from a program, and we don't know
that this ip is pointing to www.google.it. This program try to get
hostname and give that the specified ip
Il 06/04/2011 08:25, Jan Stary ha scritto:
On Apr 05 19:06:40, Alessandro Baggi wrote:
Ok, but my app must take those packet from the net for other
operation.
Huh? tpcdump/pcap also takes those packet from the net of course.
For this purpose I can also build my own structure to see
arp
Il 06/04/2011 15:26, Jan Stary ha scritto:
of of course
For some obscure reason :D, not really, to avoid problem as poisoning
for insecure services.
:
On Apr 04 21:03:58, Alessandro Baggi wrote:
Hi list. I'm coding a little program with libpcap that captures ARP
packet.
Why? tcpdump arp
In this program I try to cast an arphdr struct pointer to
the packet, to read ARP packet parameters, and in this point I have
the problem.
tcpdump -e arp
Hi list. I'm coding a little program with libpcap that captures ARP
packet. In this program I try to cast an arphdr struct pointer to the
packet, to read ARP packet parameters, and in this point I have the
problem.
This is the code of the callback pcap_loop function:
void mac(u_char *args,
Hi list. I'm looking for a software that performs controls based on MAC
ACL for access to the network and that possible detects ARP poisoning
and block it with pf.
There is this software for OpenBSD?
Thanks in advance.
Il 25/03/2011 14:28, R0me0 *** ha scritto:
here: http://www.openbsd.org/faq/pf/tagging.html
Is a good point to start your journey
Regards,
2011/3/25 Alessandro Baggi alessandro.ba...@gmail.com
mailto:alessandro.ba...@gmail.com
Hi list. I'm looking for a software that performs controls
On 01/03/2011 19:47, Francois Pussault wrote:
he network are unix-like and some unix computers
OpenVAS based on nessus
Hi list. I have a squid proxy with url filtering and file av scan
composed by OpenBSD 4.8 + squid-2.7-STABLE7 + squidGuard + havp, all
works fine but i'm not able to get https traffic scanned. To avoid this,
we can use squid-3.1.11 with ssl-bump feature.
At this point I've tried to set this
Il 11/02/2011 19:17, R0me0 *** ha scritto:
Hello Alessandro !
Try read this
If possible, coment after try :D
Regards,
spawn
2011/2/11 Alessandro Baggi alessandro.ba...@gmail.com
mailto:alessandro.ba...@gmail.com
Hi list. I have a squid proxy with url filtering and file av scan
Hi List, i had registered me to the security list:
security-annou...@openbsd.org since 9 Genuary 2011, but any email come
on my account. Some that had security list subscribtion, can tell me if
since 09/01/2001 at today there are mails?
Thanks in advance
Il 05/02/2011 20:35, Henning Brauer ha scritto:
* Alessandro Baggialessandro.ba...@gmail.com [2011-02-05 20:33]:
Hi List, i had registered me to the security list:
security-annou...@openbsd.org since 9 Genuary 2011, but any email
come on my account.
Some that had security list subscribtion,
On 01/06/2011 05:54 PM, Johan Fredin wrote:
On 2 jan 2011, at 10:42, Alessandro Baggi wrote:
Hi list and happy new year to all. Now, I've solve temporarly this problem
using ifstated, and master and backup work fine. For pfsync nic, in past I had
used a dedicated nic for pfsync but now
On 01/02/2011 03:03 AM, Patrick Lamaiziere wrote:
Le Fri, 31 Dec 2010 18:09:40 +0100,
Alessandro Baggialessandro.ba...@gmail.com a icrit :
To exclude also pf rules problem, I've tried a rule set as:
match...nat-to...
pass all
but the problem persists.
Other Issue?
Hmmm Ok, I
On 12/31/2010 05:45 PM, Patrick Lamaiziere wrote:
Le Thu, 30 Dec 2010 19:58:21 +0100,
Alessandro Baggialessandro.ba...@gmail.com a icrit :
these are my pf rules for carp and pfsync:
pass in quick proto pfsync
pass in quick proto carp
..
block in all
...
And in output?
Hi list. I've installed two firewall, 1 master and 1 backup. Trying some
test to see if carp and pfsync works, I get this issue: fw master works,
all network connection works, then I disconnect che external interface
cable of fw1 and carp0 go in INIT, carp1 in BACKUP and carp2 in BACKUP,
on fw
On 12/30/2010 08:43 PM, Johan Fredin wrote:
On 30 dec 2010, at 19:58, Alessandro Baggi wrote:
Hi list. I've installed two firewall, 1 master and 1 backup. Trying some
test to see if carp and pfsync works, I get this issue: fw master works, all
network connection works, then I
On 12/23/2010 10:48 PM, Johan Beisser wrote:
On Thu, Dec 23, 2010 at 10:43 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Please post your pf.conf, ifconfig output and dmesg. There may be
another issue not addressed.
I still need your pf.conf.
ext=egress
int=rl0
On 12/24/2010 10:25 AM, Alessandro Baggi wrote:
On 12/23/2010 10:48 PM, Johan Beisser wrote:
On Thu, Dec 23, 2010 at 10:43 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Please post your pf.conf, ifconfig output and dmesg. There may be
another issue not addressed.
I still need
On 12/19/2010 07:49 PM, Johan Beisser wrote:
On Sun, Dec 19, 2010 at 9:12 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list. I've a little question about pfsync. Supposing to have two
firewall, with 3 nic, one for lan, one for wan and one for DMZ, and
supposing a similar
On 12/22/2010 01:18 AM, Stuart Henderson wrote:
On 2010-12-19, Alessandro Baggialessandro.ba...@gmail.com wrote:
Hi list. I've a little question about pfsync. Supposing to have two
firewall, with 3 nic, one for lan, one for wan and one for DMZ, and
supposing a similar scenario:
firewall 1
On 12/23/2010 06:43 PM, Johan Beisser wrote:
On Thu, Dec 23, 2010 at 9:19 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list, I've tried to use the groups field for pfsync. I've changed in my
pf rules, the wan interface ext=xl0 with ext=egress, then when I try to
get a fault
On 12/19/2010 07:49 PM, Johan Beisser wrote:
On Sun, Dec 19, 2010 at 9:12 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list. I've a little question about pfsync. Supposing to have two
firewall, with 3 nic, one for lan, one for wan and one for DMZ, and
supposing a similar
Hi list. I've a little question about pfsync. Supposing to have two
firewall, with 3 nic, one for lan, one for wan and one for DMZ, and
supposing a similar scenario:
firewall 1 firewall 2
WAN: re0WAN: xl0
LAN: rl0 LAN: rl0
DMZ: rl1
?
thanks in advance
Stuart Henderson wrote:
On 2010-06-17, Alessandro Baggi alessandro.ba...@gmail.com wrote:
Hi stuart. Thanks for the reply. Can you give me a valid example to
understand this directive?
Reading man pages and on the web I understand that with match directive,
the quick keyword has
Hi misc.
I've a openbsd 4.7 firewall with 3 nic, one for lan, one for wan and one
for dmz. On the same machine I've a squid proxy, and in dmz i've a web
server.
My problem is when I get a request for the web server on dmz by a lan
client.
In my ruleset I've this rdr rules for http request:
rule will be
processed, settings take place and then redirected?
thanks in advance
Stuart Henderson wrote:
match is a modifier. the settings are remembered and applied to the
pass rule lower in the ruleset which permits the traffic to go through.
On 2010-06-17, Alessandro Baggi alessandro.ba
Hi list.
I've installed OpenBSD 4.7 and seen the upgrade guide with different
changes. My question is about redirect rules.
before the update a redirect rule was:
rdr on $int from $int:network to any port ftp - 127.0.0.1 port 8021
but with 4.7 update the thing has changed.
Now a valid rule
Hi list.
I've a question about pfsync. Suppose that I've two openbsd firewall
with carp e pfsync with this scenario:
fw 1:fw 2:
em0 rl0WAN
rl0 rl1 LAN
rl1
Stuart Henderson wrote:
On 2010-05-06, Alessandro Baggi alessandro.ba...@gmail.com wrote:
Hi there,
thanks for the reply. I've added in makefile -pthread, compiled and
runned squidclamav but
squid + squidclamav + squidguard problem persist.
Other issue?
I don't know what else
Hi there,
thanks for the reply. I've added in makefile -pthread, compiled and
runned squidclamav but
squid + squidclamav + squidguard problem persist.
Other issue?
thanks in advance
Stuart Henderson wrote:
On 2010-05-04, Alessandro Baggi alessandro.ba...@gmail.com wrote:
Hi there.
I've
Hi there.
I've a problem using squidguard under openbsd (4.4, 4.5, 4.6) with this
combination (squid + squidclamav + squidguard). The problem is that
after different hours that squidguard got not request, all squidguard
processes becomes zombies.
when the error show i get from
.
Alessandro Baggi wrote:
Simen Stavdal wrote:
and...
do you have the routing table for some of the hosts that can/cannot
ping each other?
Are there other gateways out of the networks, other than the openvpn
box?
S.
I'm trying openvpn in my internal network
Hi list! I'm setting up a vpn between two openbsd firewall:
This is the scenario:
FW1 FW2
$ext 192.168.1.33 $ext 192.168.1.2
$int 10.1.1.1 $int 192.168.7.1
$host 10.1.3.53
Johan Beisser wrote:
On Mon, Jan 25, 2010 at 5:45 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list! I'm setting up a vpn between two openbsd firewall:
This is the scenario:
FW1 FW2
$ext 192.168.1.33 $ext 192.168.1.2
Johan Beisser wrote:
On Mon, Jan 25, 2010 at 10:05 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Johan Beisser wrote:
Hi Johan. Thanks for the answer. I've reduced my pf.conf on client and
server side to:
ext=rl0
int=rl1
nat on $ext from $int:network - $ext:0
nat
Simen Stavdal wrote:
and...
do you have the routing table for some of the hosts that can/cannot
ping each other?
Are there other gateways out of the networks, other than the openvpn box?
S.
I'm trying openvpn in my internal network:
? Do they allow to be pinged?
What is your server.conf file for openvpn and the client conf file?
Simon.
Alessandro Baggi wrote:
Johan Beisser wrote:
On Mon, Jan 25, 2010 at 5:45 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list! I'm setting up a vpn between two openbsd firewall
Hi list. I've a OpenBSD firewall with proxy for home use. I've noticed
that when I'm going to surf on the web through squid proxy , my
bandwidth is minor of 1.5 mbps, when I don't use proxy I have all
bandwidth (7Mbps).
I've made some test, and when I download from the same workstation with
Marco Peereboom wrote:
try this:
net.inet.tcp.recvspace=256000
net.inet.tcp.sendspace=256000
On Sun, Jan 17, 2010 at 02:41:23PM +0100, Alessandro Baggi wrote:
Hi list. I've a OpenBSD firewall with proxy for home use. I've noticed
that when I'm going to surf on the web through squid proxy
Hi there. I've a problem with pf on OpenBSD 4.6
After different test, I've been reduced my pf.conf to those rules:
macros
set block-policy drop
match all scrub (no-df, random-id, reassemble tcp, max-mss 1440)
nat on $ext from $int:network - $ext:0
block log all
pass in on $int from any to
Ted Unangst wrote:
On Fri, Jan 15, 2010 at 3:33 PM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
If I remove reassemble tcp It works fine.
I've tried also with a pass all rules...but with the same result. It's
possible that a scrub with reassemble tcp option, blocks some packet?
What
Stuart Henderson wrote:
On 2009-12-01, Alessandro Baggi alessandro.ba...@gmail.com wrote:
Hi there, always with squidclamav and squidGuard Problem!!
I've tried to do another test. I've runned in a terminal only
squidclamav, that in configuration file recall squidGuard
John E.P. Hynes wrote:
On 12/03/2009 03:04 PM, Alessandro Baggi wrote:
j...@hytronix.com wrote:
Hi Alessandro,
I have managed to get Squid to crash all by itself. This is, in a way,
good, because it finally gave me some information that I think might be
helpful.
First, Are you running squid
1 - 100 of 104 matches
Mail list logo