On Fri, Apr 07, 2006 at 12:26:45PM -0400, Barry, Christopher wrote:
Thanks much for your answers. By 'soft', I mean a controlled
reboot/shutdown where the power remains on even though the OS has
obviously stopped running. I have not experienced any actual failures of
anything, so I do
On Mon, Mar 06, 2006 at 09:09:35PM +0100, RedShift wrote:
[EMAIL PROTECTED] ~]$ nslookup
www.wideopenbsd.org
www.wideopenbsd.org A 129.128.5.191
129.128.5.191
Name: openbsd.sunsite.ualberta.ca
Address: 129.128.5.191
www.openbsd.org
www.openbsd.org A
On Mon, Feb 06, 2006 at 05:04:09PM +0100, mgEDV.net wrote:
hi,
if i, for example setup scrub max-mss 1462 in my pf.conf,
where can i see these values have been set? is there any
command that views the current scrub rules/states?
btw., anybody had a look on my other posting regarding the
On Sun, Jan 01, 2006 at 01:50:58AM +, Karl O. Pinc wrote:
man 5 ifstated.conf says:
The init block is used to initialise the state and is executed each
time the state is entered.
But this does not seem to be true if you use 'init-state' to enter the
state. Or maybe there's something
On Wed, Dec 28, 2005 at 10:31:56PM +0100, Srebrenko Sehic wrote:
Try to increase kern.maxclusters. It is possible that the box crashed
due to network buffer shortage. pedro@ commited a fix to both
-currentand 3.8-STABLE which increases buffer on-the-fly without
panic.
Also, run a netstat -m
On Wed, Dec 28, 2005 at 10:31:56PM +0100, Srebrenko Sehic wrote:
Try to increase kern.maxclusters. It is possible that the box crashed
due to network buffer shortage. pedro@ commited a fix to both
-currentand 3.8-STABLE which increases buffer on-the-fly without
panic.
Also, run a netstat -m
One of my carp masters crashed last night. Fortunately, the slave
immediately picked up and nobody was the wiser.
Hardware: Dell Poweredge 1850 (2.8Ghz Xeon, 1G RAM, 1x 36G U360 15K RPM
SCSI, 2x onboard em, 1x dual intel em card, 1x quad intel em card,
attached 16x usb serial console device)
On Thu, Nov 17, 2005 at 10:02:46PM +1100, Alex Strawman wrote:
Traffic shouldn't even be getting OUT on the backup in this situation.
i agree - there is no correct solution without using an ip addr for
each real interface.
would be nice to for example use an external ntp server to sync
On Tue, Nov 15, 2005 at 02:39:59PM -0800, Christian Petro wrote:
OpenBSD 3.6
/etc/pf.conf
When a table, and corresponding rule is defined using:
table LimitedAccess persist { 192.168.1.16, 192.168.1.17 }
block out quick on $ExtIf inet proto { tcp, udp } from LimitedAccess
to any
On Tue, Nov 15, 2005 at 04:59:50PM -0800, Christian Petro wrote:
What is the rest of the pf.conf? Without that, I can only guess.
-jon
set loginterface fxp1
set limit { states 9, frags 9 }
set optimization conservative
set block-policy drop
scrub in all
Prior to the official 3.8 release I had been running a modified version
of GENERIC that simply had MROUTING turned on. Everything worked fine
-- the firewall would route multicast packets between interfaces. There
were the occassional errors that I chalked up to the fact that perhaps
MROUTING
On Mon, Nov 14, 2005 at 06:27:35PM -0700, Joe Barnett wrote:
The machine is running 3.8 from the CDs, GENERIC kernel, etc.
pf.conf follows (any critique of the rules and is welcome...):
#
# pf.conf -- Pf ruleset
On Mon, Nov 14, 2005 at 10:38:21PM -0500, Mathieu Sauve-Frankel wrote:
On Mon, Nov 14, 2005 at 07:23:35PM -0500, Jon Hart wrote:
Prior to the official 3.8 release I had been running a modified version
There is no net.inet.ip.mforwarding in 3.8-release, only in -current.
If you are running
On Thu, Nov 10, 2005 at 09:31:15PM -0500, Nick Holland wrote:
I'd have prefered that a more experienced person answer this one, but
they don't seem to have, so be forewarned: everything I say here might
be wrong. However, through the glory of mail lists, if I say something
wrong, fifty people
On Fri, Nov 04, 2005 at 02:57:35AM +, Ryan McBride wrote:
On Thu, Nov 03, 2005 at 06:11:20PM -0500, Jon Hart wrote:
1) used to determine that a particular carp packet is intended for
you carp host?
carp(4) does a number of validity checks before treating the packet a
real
Greetings,
We've all probably had or seen the carp error similar to:
carp0: incorrect hash
In most cases that I've seen on this and other lists it was because of
something obvious like a mismatched pass or two supposed carp partners
using different vhid's.
I've taken a look at the code but
On Mon, Oct 24, 2005 at 10:48:03AM -0400, Monah Baki wrote:
Solved it,
had to switch
pass in quick on $int_if all
pass out quick on $int_if all
to
pass in quick on $int_if all keep state
pass out quick on $int_if all keep state
Is there any particular reason you are using 'quick'
On Wed, Oct 19, 2005 at 12:56:44PM -0400, Jon Hart wrote:
On Wed, Oct 19, 2005 at 12:10:35PM -0400, Brian A. Seklecki wrote:
The Intel IPMI on the motherboard may be to blame. It's always up/on and
listening.
Also, see my thread in freebsd-questions@ about Dells with Intel em(4
I've got a snapshot from October 6, 2005 running on a Dell PE 1850.
Nothing overly special. 3.2Ghz Xeon, 2G RAM, dual onboard Intel
PRO/1000MT, Intel PRO/1000QP in the 64-bit/133mhz PCI-X slot, and a 36G
U320/15K RPM SCSI disk. dmesg at the end of the email. The most
relevant bits from the
On Thu, Aug 04, 2005 at 08:28:49AM -0400, Monah Baki wrote:
Hi all,
Implementing carp, I have 2 net4801's that seem to be synchronizing, when I do
a ifconfig -a on the secondary I see carp0 on the slave becomes Master when
the primary goes down.
The internal machines are working fine
On Mon, Jul 11, 2005 at 06:54:28AM +0200, Matteo Mancini wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi *,
I've to build an high performance openbsd firewall with ids included.
I think to use the server in subject, does any one have tried it??
For a price that is in the same
On Thu, Jul 21, 2005 at 03:19:48PM -0400, Brad wrote:
Note, there are cards that are supported that are not listed in the
man page. It's hard to have an exact list when there are so many cards
out there and sometimes even different revisions with the same name
and different chipsets. The
On Fri, Jul 22, 2005 at 04:06:33PM +0200, Henning Brauer wrote:
can sombody just GET one and stuff it in a machine? chances are good
supporting them is as easy as adding the IDs to pcidevs.
I tried contacting syskonnect about an evaluation unit which they
mention on their site but the mail
On Sat, Jun 11, 2005 at 10:13:10PM +1000, Z L wrote:
I downloaded /3.7/i386 and want to create a bootable CD. So first I
need to make a bootable ISO image and then burn the image in a CD.
I did mkisofs -r -b ~/openbsd/3.7/i386/cdrom37.fs -c boot.catalog
-o openbsd.iso. It doesn't seem to
24 matches
Mail list logo
