Re: OpenBSD File systems , on Flash / SSD CPE (in sites with uncontrolled power (CPE customer sites)

We had a similar challenge. My advice would be to leave all the filesystems as is - and add the 'sync' flag. It slows down disk access - but makes the filesystem resilient to power outages. See sync option - https://man.openbsd.org/mount On Tuesday, 29 November 2022 at 09:03:28 am AWST, Yo

Re: spurious synproxy warning from pfctl

  pass *in* proto tcp from any to mail.example.com \                 port { 25 80 110 143 443 587 993 } synproxy state How hard can that be? A message saying synproxy is applied inbound and not outbound is necessary for those which might assume that synproxy is being applied eitherbound. You

Re: Recommendations on Buffer Space for Busy Unbound Resolver Service for a network

Hi Tom, I would recommend debugging using "unbound-control stats_noreset" and referencing the unbound configuration documentation at https://www.nlnetlabs.nl/documentation/unbound/unbound.conf/ -Original Message- From: owner-m...@openbsd.org On Behalf Of Tom Smyth Sent: Wednesday, 2

Re: pf, relayd, TCP keep alive and NAT, oh my!

Hi Cameron, As a first guess, I would consider changing / implementing "set optimization". This made massive difference on our customers satellite internet connection. man pf.conf set optimization environment Optimize state timeouts for one of the following network

Re: NAT on same interface as vlan on OpenBSD 6.8

Hi Kenneth, It was staring me in the face and I did not see it. I shot myself in the foot and didn’t realize it. Thanks heaps for your support. From: Kenneth Gober Sent: Monday, 10 May 2021 11:49 PM To: Dirk Coetzee Cc: misc@openbsd.org Subject: Re: NAT on same interface as vlan on OpenBSD

NAT on same interface as vlan on OpenBSD 6.8

Hi All, I am hoping to create a pf.conf configuration that has VLAN’s and NAT via the same (physical) interface. The hardware is only capable of having a single Ethernet interface. vlan100 is an isolated network to setup servers and is connected to a switch that is setup for vlan100 and vlan

Re: vmm/vmd disk issue

It maybe possible that disk IO is saturated. (i.e. more writes than the physical disk could handle). -Original Message- From: owner-m...@openbsd.org On Behalf Of Jan Johansson Sent: Wednesday, 10 March 2021 6:21 AM To: misc@openbsd.org Cc: Mike Larkin ; Ian Darwin Subject: Re: vmm/vmd d

Re: OpenBSD Readonly File System

I guess it boils down to a matter of preference and business requirements. "slow writes" vs "no writes". -Original Message- From: Strahil Nikolov Sent: Friday, 12 June 2020 12:08 AM To: Dirk Coetzee ; Joe Barnett ; Vertigo Altair Cc: Misc Subject: Re: OpenBSD Rea

Re: OpenBSD Readonly File System

I have been in a similar situation of power being unreliable and no UPS, so I sympathize. This is how I have achieved RO filesystem (default partitions) 1. Add to /etc/fstab swap /dev mfs rw,-P=/dev,-s=32m 0 0 2. Create RO Script #!/bin/sh UP=$(( $(date +%s) - $(sysctl

Re: Unbound Notice: "sendto failed: No buffer space available"

FWIW: We experienced "sendto failed: No buffer space available" as well. QOS is not configured, but the firewall is connected to a satellite link that drops between 5-10% packets average. The explanation fits in with our situation. -Original Message- From: owner-m...@openbsd.org On Be

Re: [/ is full] How to delete junk in /dev ?

Sometimes I have made the mistake of dd if=/dev/zero of=/dev/sd2c - instead of dd if=/dev/zero of=/dev/rsd2c - or worse dd if=/dev/zero of=/dev/sdc. These kind of errors have filled /dev (or ultimately /) Play over from my Linux days. -Original Message- From: owner-m...@openbsd.org On

pf.conf assistance

Hi All, Without *block return label "block stateless traffic"* and *pass # establish keep-state*, my NAT / redirect rules from external into LAN do not work. Neither do rules that permit RDP to Windows Workstations on Tun0 interface. FWIW: Wireguard uses this tun0 interface. TCPDump shows the