Just a little addendum to your final post:
I use OpenBSD as my desktop environment (also MAC OS and Linux) and I
was looking for years for an outline application which I can use on
every OS.
Finally I switched from open to (paid) closed source *sigh* but now most
of my problems were solved.
ards
Andre
Am 15.05.18 um 05:15 schrieb Philipp Buehler:
Hello Andre,
Am 14.05.2018 13:38 schrieb Andre Ruppert:
I got the tips from this 2013 undeadly.org article:
Managing Individual IPsec Tunnels On A Multi-Tunnel Gateway
https://undeadly.org/cgi?action=article=20131125041429
Apparently I
Hello Philipp,
sorry for the late answer
Thanks for the hint with the cookies.
Works in my environment
I'm much happier now ;-)
Best regards
Andre
Am 15.05.18 um 05:15 schrieb Philipp Buehler:
Hello Andre,
Am 14.05.2018 13:38 schrieb Andre Ruppert:
I got the tips from this 2013
Remark below...
Am 14.05.18 um 13:38 schrieb Andre Ruppert:
Hello @misc,
I use a CARPed pair of 6.2 gateways as vpn access nodes, running "plain"
ISAKMPD/ipsec.
The peering vpn gateways have different brandings from OpenBSD, linux,
cisco to watchguard appliances etc...
Intero
Hello @misc,
I use a CARPed pair of 6.2 gateways as vpn access nodes, running "plain"
ISAKMPD/ipsec.
The peering vpn gateways have different brandings from OpenBSD, linux,
cisco to watchguard appliances etc...
Interoperability works most like a charm and is a no-brainer in most cases.
I
ade messages (decoded in wireshark as
"HTTP/1.1 101 Switching Protocols" packets) from the internal server are
replaced by relayd with packets with the RST-flag set directed to the
WAN client and the connection is closed.
My head-scratching question:
is this possible at all with relayd?
Or do I have to switch to nginx?
Regards
Andre Ruppert
smime.p7s
Description: S/MIME Cryptographic Signature
Fri, 16 Mar 2018 13:25:49 +0100
Janne Johansson <icepic...@gmail.com>:
> 2018-03-16 12:26 GMT+01:00 Andre Ruppert <a...@in-telegence.net>:
>
> > Hello @misc,
> >
> > after a nightly release upgrade of our VPN-Gateway(s) from 6.0 via
> > 6.1 to 6.2
ec-pfs=1
net.inet.ip.ipsec-soft-allocs=0
net.inet.ip.ipsec-allocs=0
net.inet.ip.ipsec-soft-bytes=0
net.inet.ip.ipsec-bytes=0
net.inet.ip.ipsec-timeout=86400
net.inet.ip.ipsec-soft-timeout=8
net.inet.ip.ipsec-soft-firstuse=3600
net.inet.ip.ipsec-firstuse=7200
net.inet.ip.ipsec-enc-alg=aes
net.inet.ip.ip
("set skip on em0"), but that didn't help
Any hints?
head-scratching regards
Andre Ruppert
smime.p7s
Description: S/MIME Cryptographic Signature
Hm, I got a relayd-problem with a similar config.
100% CPU load nearly all 10 days with 5.9,
same behavior all 3-4 weeks with 6.0.
Wrong-ordered relayd.conf too.
looks like this when running in trouble:
_relayd 33851 100.0 0.1 2004 4496 ?? Rp15Apr17 3363:59.52
relayd: relay
Hi,
Im running 6.0 amd64 on a pair of R210 with relayd, but these are R210 (II).
No kernel panics at all, and these systems are working in a live
environment...
Regards
Andre
Am 02.05.17 um 15:03 schrieb Mathieu BLANC:
On Wed, Mar 29, 2017 at 02:06:23PM +0200, Mathieu BLANC wrote:
It
o
>> provide an OpenBSD-version of their office suite. But they seem to have
>> none with some decent Unix/OpenBSD-knowledge, just Linux. Sigh...
>
> I would buy SoftMaker on OpenBSD.
Andre Ruppert
[demime 1.01d removed an attachment of type application/pkcs7-signature which
had a name of smime.p7s]
Hello again,
Date: 17.11.16 time: 18:32 - Christer Solskogen wrote:
> Try use bridge mode instead of NAT. I had the exact same problem on
> Windows 10 as a host.
>
> --
> chs
>
...that hit the point.
Tested on Mac OS and Win10 as host - same solution.
Thank You!
My former tested
r problems?
Every hint is welcome, I'm clueless... ;-)
best regards
Andre Ruppert
[demime 1.01d removed an attachment of type application/pkcs7-signature which
had a name of smime.p7s]
usage of blanks only.
Crunched it to a 1-liner and all worked...
Seems that the parsing is different at booting?
Andre
Am 02.10.15 um 10:37 schrieb Andre Ruppert:
Hello @list,
perhaps I'm stupid but I've got a problem with two CARPed gateways
running 5.7-amd64 stable.
Hardware:
two super
p0: state transition: INIT -> BACKUP
state transition: BACKUP -> MASTER
state transition: INIT -> BACKUP
state transition: BACKUP -> MASTER
No PF-ruleset-problem!
resulting question -
what the heck is going on here? ;-)
alternative: what did I forgot to configure?
Thanks for reading...
Andre Ruppert
porn syndicate, which should not? Or does that mean
that kiddie porn syndicate exists only in Eastern Europe, but not in -
let's say - New Zealand or Canada?
I guess this was intended to be a joke, but in my opinion it sucks.
--
Andre Ruppert
.
Media information between the endpoints is specified in SIP-SDP-packets
(session description protocol).
SDP-packets contain the original IPs of the VoIP-endpoints, and these
IPs won't be NATed!
Do you make use of an sip-proxy or an external STUN-server at least?
--
Andre Ruppert
Network
isakmpd.conf for other parameters ;-)
best regards
Andre Ruppert
in most of my Dell Equipment.
Again - no problems at all...
Regards
Andre Ruppert
!
Andre Ruppert
On Mon, Feb 7, 2011 at 10:50 AM, Andre Ruppert a...@in-telegence.net
wrote:
No problems - except UMTS, but I don't need it...
Can you provide the output of usbdevs -dv?
You're welcome ;-)
Controller /dev/usb0:
addr 1: high speed, self powered, config 1, EHCI root hub(0x),
Intel
Sorry, no chance
Regards
Andre Ruppert
-Clients in different locations. Ipsec stacks are not supportet.
So, at least H.323 VoIP technology would appreciate this diff :-)
Greetings
Andre Ruppert
http://www.oreillynet.com/pub/a/sysadmin/2007/02/15/evaluating_firewalls.html
...have fun...
greetings
Andre Ruppert
...and OpenBSD, of course...
sorry, I forgot
Andre
Am Mon, 22 Aug 2005 15:24:40 +0200
Ivo Dijkhuis [EMAIL PROTECTED] schrieben Sie:
Andre Ruppert wrote:
Hello to the list...
The problem: a long time running stable v3.4 OBSD VPN gateway
running behind a (german) SDSL line was replaced with a gateway
version 3.7(stable).
Now I got
v3.7 with v3.4 again :-((
Any suggestions or hints?
greetings
Andre Ruppert
I made the mistake when using tun-whatsoever?
All hints welcome ;-)
Andre Ruppert
for these cards? The price is nice and a
4port nic would be very handy.
re should almost certainly work with it. may not attach because the
id is missing, but that's easy to fix.
It worksI used this nic several times...re is right
--
Andre Ruppert
Technische Leitung
[EMAIL PROTECTED]
PGP
.
...would be too cheap for a real quad-nic :-)
--
Andre Ruppert
31 matches
Mail list logo