is is part of the problem.
How do I get incoming traffic via vmx2 to return out via vmx2 and visa
versa incoming traffic via vmx4 to return out vmx4
Regards, Lars.
Ah, ok... and then you assign the IP address to that vport... thanks...
will try that out later.
On Tue, Dec 19, 2023 at 2:42 PM Zé Loff wrote:
>
> On Tue, Dec 19, 2023 at 02:25:01PM +0100, Lars Bonnesen wrote:
> > That is exactly what I want.
> >
> > Ah, veb... althou
wrote:
> On Tue, Dec 19, 2023 at 09:33:18AM +0100, Lars Bonnesen wrote:
> > I have a physical switch with a number of VLANs and a NIC connected to a
> > wireless setup. I want to have those two separated except for one
> > particular VLAN that I want on the physical switch
not work.
Regards, Lars.
as possible about packages it
really shouldn't care about.
On Wed, Feb 15, 2023 at 5:52 PM Stuart Henderson
wrote:
> On 2023-02-15, Lars Bonnesen wrote:
> > lbo@PLOSLOL2VPN:/etc$ pfctl -s info
> > Status: Enabled for 0 days 00:06:49 Debug: err
>
I think that I am now hitting a bottleneck somewhere else.
Thanks for the help so far... I might come back thirsty for more later...
(-:
Regards, Lars.
On Wed, Feb 15, 2023 at 4:13 PM Lars Bonnesen
wrote:
> lbo@PLOSLOL2VPN:/etc$ pfctl -s info
> Status: Enabled for 0 days 00
wrote:
> On Wed, Feb 15, 2023 at 01:01:10PM -, Stuart Henderson wrote:
> > On 2023-02-15, Lars Bonnesen wrote:
> > > One says:
> > >
> > > # pfctl -s info
> > > Status: Enabled for 0 days 10:56:43 Debug: err
> > >
> > &
0.0/s
synproxy 00.0/s
translate 00.0/s
no-route 00.0/s
What does that tell us?
Regards, Lars.
On Wed, Feb 15, 2023 at 9:16 AM Otto Moerbeek wrote:
> On
ere are many discussions about
this, and what I can summarize is that apart from a security perspective,
hyperthreading should be left enabled
How to get better performance?
Regards, Lars.
Installed zabbix-agent
but when doing "./zabbix_agentd -d start", I get:
ERROR: value of parameter "TLSConnect" requires support of encrypted
connection with PSK but support for PSK was not compiled in
How do I add support for Preshared key?
Regards, Lars.
How many physical NICs can you add to an OpenBSD host (vmx)
I am asking because I am running an OpenBSD on a VMware host but apparently
OpenBSD can only see 8 of them.
Can I raise the limit somehow?
Regards, Lars.
cess port on a switch
Can anyone guide me in the right direction, thx?
Regards, Lars.
On Wed, Jan 4, 2023 at 7:24 AM Lars Bonnesen
wrote:
> Thanks for your replies. It has been Xmas and I have been delayed, but I
> have now read up upon it. I am going for the tpmr(4). We are going to
> repli
Which 1Gbit USB 3.0A NIC is performing best with obsd 7.2?
I am aware of the hardware list, but I am asking personal experience from
users in here
Regards, Lars.
a WireGuard connection with one OBSD on each site, and I am planning to
tunnel tpmr through this - I guess that tpmr itself is not encrypted in any
way?
Regards, Lars.
On Fri, Dec 16, 2022 at 4:30 PM deich...@placebonol.com <
deich...@placebonol.com> wrote:
> I've run L2 over an IPsec tun
the same, I would
rather deploy one OpenBSD on each site and have that task handled by
OpenBSD.
Each site should be able to use the other site gateway over a
L2-network.and VMs on each site should be able to see each other as they
are on the same LAN
Where to start reading?
Regards, Lars.
. The resistors have to be in the right range to work,
but there is some flexibility as to the specs:
https://rumorscity.com/2013/12/06/how-to-create-dummy-plugs-for-your-graphics-cards/
Though a form dummy HDMI plug might be the best approach if it's likely
to get jostled or moved.
/Lars
on this
USB-port?`
Regards, Lars.
Ok, I am sorry... I found the port openvpn_bsdauth
via-env never worked, but using via-file and tmp-dir, I am now able to auth.
Does a similar solution exist for additional MFA-solutions? Google Auth?
Regards, Lars.
On Mon, Aug 15, 2022 at 7:47 PM Lars Bonnesen
wrote:
> Setting
something wrong?
Regards, Lars.
need to install the Authen::PAM
module) (@INC contains: /usr/at /etc/openvpn/auth-pam.pl line 30.
Googled som non-OpenBSD ways to install the Authen::PAM module, but they
all failed. Anyone has succeeded in this?
Regards, Lars
On 7/11/22 12:25, Denis Fondras wrote:
[snip]
I use Protectli devices : https://eu.protectli.com/
Are all the network interfaces available?
What was the installation process like and where there any special
obstacles to be aware of?
/Lars
w.echothrust.com/blogs/using-openbgpd-distribute-pf-table-updates-your-servers
/Lars
share a relayd.conf
example for me?
Regards, Lars.
Is it no longer important to group block/pass in/out for speed optimization?
I see many "modern" pf.conf where everything is mixed more or less randomly
Regards, Lars.
That did it... thanks!
On Wed, Apr 29, 2020 at 10:42 PM Sebastian Benoit
wrote:
> Lars Bonnesen(lars.bonne...@gmail.com) on 2020.04.29 21:58:27 +0200:
> > In earlier obsd versions I have been having success with this in
> > hostname.vlan703
> > inet 172.18.11.9 255.255.255
as expected. If I do a tcpdump, I can find the packages reaching
vmx2, but they are never passed on to vlan703
How to to if I have configured a trunk on a switch, I want to configure say
VLAN id 703 on a vmx device?
And while we are at it, what if the switch is an access port?
Regards, Lars.
has an unacceptable license.
> If something like it were to be used on OBSD it would have to be
> written from scratch with a BSD license and it has already been
> discussed at length on this list how hard that is.
> Besides it is not really necessary. ZFS is overly complex and not
> needed in mos
ook
> up direct LDAP access, for example.
>
>
> On Wed, Mar 25, 2020 at 7:48 AM kasak wrote:
>
>>
>> 25.03.2020 02:06, Lars Bonnesen пишет:
>> > Hi. I am having a project on setting up Samba to work as a replacement
>> for
>> > MS AD.
>>
Hi. I am having a project on setting up Samba to work as a replacement for
MS AD.
I would prefer to do it on OpenBSD, but how is the implementation of Samba
on OpenBSD? Is it enhanced in a way that will cause any known problems that
would not be on say... CentOS?
Regards, Lars.
to try either 6.6 or (from snapshots) 6.6-current?
/Lars
$ signify -C -p /etc/signify/openbsd-66-base.pub -x SHA256.sig bsd.rd
Signature Verified
bsd.rd: OK
$ diff /bsd.rd bsd.rd; echo $?
0
-
Octeon ubnt_e100# fatload usb 0 ${loadaddr} bsd.rd
reading bsd.rd
b.b.b.b to myname so that it reads:
dhcp
inet x.x.x.x b.b.b.b
and if so, how do I make sure that mygate does not get overwritten from
dhcp?
Regards, Lars.
OpenBSD 6.4
Putty just reports "Authenticating with public key "XXX" from agent" and
then I am disconnected. If I run sshd with -ddd, I get the following
output. I can't seem to get any error, and therefor I can't tell what is
wrong. Anyone has any idea? Thanks
debug2: load_server_config:
a socket.
See httpd.conf(5) That way you can keep the chroot lean.
/Lars
an use while loop if
you have your key in the ssh-agent.
while ! ssh -t foobar.example.org 'tmux a || tmux'; sleep 1; done;
/Lars
to debug the issue? Using different usb ports on the system
makes no difference.
Any hint is highly apprechiated
Thanks and regards
Lars
OpenBSD 6.3-current (GENERIC.MP) #55: Thu May 31 07:21:36 MDT 2018
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem
continue to handle everything pertaining to appearance.
So something more-or-less similar to the change below would keep the
presentation in the CSS and leave the programming to handle the
structure.
/Lars
[1] https://www.w3.org/TR/css-device-adapt-1/#example-0efe9d5c
-
Index: src
On 2018-03-05, Stuart Henderson wrote:
> On 2018-03-05, Lars Noodén wrote:
>> I'm not able to get sshd(8) to use alternative loglevels, such as Debug3.
>>
>> When sshd(8) starts, it goes through the normal reporting regardless
>> of which LogLevel is set in sshd_conf
correctly from the configuration file:
# /usr/sbin/sshd -T | grep -i loglevel
loglevel DEBUG3
Invoking sshd(8) with -d, -dd, -ddd produces increased logging though,
just not to the log file.
Is this worth a formal report?
/Lars
=
[ using 735440 bytes of bsd ELF symbol table ]
Copyrigh
2018-02-25 10:00 GMT+01:00 Stuart Henderson :
>> Feb 24 22:50:09 zipper pppd[83506]: Connect: ppp0 <--> /dev/cuaU0
>
> Do you have other serial devices from this, or just cuaU0? Try others if you
> have them.
I do have cuaU0 - 3 but trying the other ones gives me:
Failed to
by lars, uid 0
Feb 24 22:50:09 zipper pppd[83506]: Connect: ppp0 <--> /dev/cuaU0
Feb 24 22:50:39 zipper pppd[83506]: LCP: timeout sending Config-Requests
Feb 24 22:50:39 zipper pppd[83506]: Connection terminated.
Feb 24 22:50:41 zipper pppd: Exit.
Sadly pppd debug and chat -v are not as verbose
x-rlimit.c
So is two the limit?
/Lars
On 7/18/17, Stuart Henderson wrote:
> On 2017-07-17, Lars Noodén wrote:
>> I'm looking to refurbish an old device and will probably add a network
>> card to it. Are there any reasons based on the current drivers or the
>> hardware itself to choose sis(4) or vr(4) over one or
added:
net.inet.gre.allow=1
net.inet.gre.wccp=1
net.inet.mobileip.allow=1
Lets say that openBSD public IP is 1.2.3.4 local IP 10.77.1.2 and LAN is
10.77.1.0/24 - PPTP server is 10.77.1.106
How would my PPTP lines look in pf.conf?
Help is greatly appriciated.
Regards, Lars.
I'm looking to refurbish an old device and will probably add a network
card to it. Are there any reasons based on the current drivers or the
hardware itself to choose sis(4) or vr(4) over one or the other on
i386 -curren?
Regards,
Lars
On 3/20/17, Darren Tucker :
> On Sun, Mar 19, 2017 at 11:47 PM, Lars Noodén wrote:
>> Looking at a recent snapshot, see dmesg at the bottom, I have two
>> questions about OpenSSH logging.
>>
>> 1) The entry in sshd_config(5) for MaxAuthTries states the fol
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
...
So, yes, that does allow the maximum number of log-ins.
Thanks.
Regards,
Lars
>> 2) The client gets disconnected before MaxAuthTries is reached. If I
>> have it set to 6, I get 5 only tries:
>
> Your log level isn't high enough to see it, but I suspect you have a
> failed pubkey attempt before the password attempts. You should be
> able to see it if you add "-vvv" to the
get only one less than what was set in MaxAuthTries
instead of the full sequence. Is there any way to get the full number
of MaxAuthTries log in attempts?
Regards,
Lars
[ using 595272 bytes of bsd ELF symbol table ]
Copyright (c) 1982, 1986, 1989, 1991, 1993
The Regents of t
(httpd)
www 4775 0.0 0.3 644 1832 ?? Isp1:31PM0:00.04 httpd: server
(httpd)
I've checked the page on following -current and see no annotations
regarding httpd(8)
What have I missed?
Regards,
Lars
OpenBSD 6.0-current (GENERIC) #31: Wed Jan 25 00:19:58 MST 2017
dera
ess fails almost immediately. Is there a document I should
be reading that explains the output, or have I come to the right place
to report what happens?
Screenshot:
https://imgur.com/a/zvyYV
- ---
Lars Lehtonen
iQEcBAEBAgAGBQJX2K7gAAoJEIE31HTrywTy3PoH/3CHLr69n0oZRNLVrrCWkxAs
3c/P0TkrqHTIgvlAdbjhIwYy
are reserved by OpenBSD and should not be
changed or used?
Of the pins reserved, what are their purposes?
Regards,
Lars
[1] Figure: "65 Possible Digital I/Os" http://beagleboard.org/Support/bone101
[2] Table 10. "P8 Mux Options Modes 4-7" BONE_SRM.pdf
-
OpenBSD 6.0-current (G
the system is currently running Linux. If
there is interest in a Linux dmesg I can provide it.
regards
Lars
dropped the fan requirement and am running the stock i3 fan
in a mini-itx case Chieftec Compact IX-01B. If noise is more important
to you I would drop the msata requirement and use a standard size ssd.
Good luck
Lars
when I was in
the process. I used 'exfalso' for that, which was a manual and very
tedious process.
http://lists.einval.com/pipermail/abcde-users/2015-June/000162.html
regards
Lars
, the variable CVS_RSH won't pass options on to ssh.
But you can force MD5 hashes in ssh_config using FingerprintHash for
that particular host for all occasions including cvs use.
regards,
/Lars
to
disable radeondrm on the weekend to see if it helps.
have a great day
Lars
picked a resolution during boot that doesn't work
with your monitor. If this is the cause, you could disable radeondrm
with config(8)..
1024x768 is not the native resolution but I assume my sceen would be
able to display it anyway. I can confirm this tonight.
Thanks
Lars
is a bit difficult to
understand, so I am not sure I understand parameters. Any hints what I
need to configure differently?
thanks a lot for any tips
have a great day
Lars
Here is my dmesg:
OpenBSD 5.6-stable (GENERIC.MP) #3: Thu Dec 11 11:20:31 CET 2014
r...@dumper.lan:/usr/src/sys/arch
fails. This is from a recent snapshot.[2]
Is this the expected behavior for host-based authentication?
Regards,
/Lars
[1]
debug1: userauth-request for user foo service ssh-connection method none
[preauth]
debug1: attempt 0 failures 0 [preauth]
debug1: userauth-request for user foo service ssh
On Wed, 4 Mar 2015, Stefan Sperling wrote:
On Wed, Mar 04, 2015 at 05:06:57PM +0200, Lars Nooden wrote:
The only other strange symptom is that the machine locks up hard every
week or two requiring a powercycle or hardware reset to restart. I can
find nothing in the logs anywhere near
at?
Regards,
/Lars
TM) Integrated Processor by AMD PCS (AuthenticAMD 586-class) 500 MHz
cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX,MMXX,3DNOW2,3DNOW
real mem = 536363008 (511MB)
avail mem = 515227648 (491MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0
you will need to buy i7-4000
with 4Ghz. But this one is 3 times the price of the i3. If you put the
i3 on a board with C22x chipset, you can also use ECC RAM with the i3.
my 2ct
Lars
not fail this time. But shortly after the mouse worked again the
copy operation stopped and I got the error messages at the end of the
dmesg.
I am subscribed to the list and I hope someone finds this interesting
and is able to read something out of the stuff below.
Have a great day
Lars
On 16.12.2014 05:48, Rod Whitworth wrote:
Any happy users? Absolute haters who have really tried hard?
(Description of problem?)
Yep, running a basic setup (fdm, dovecot, roundcube, opensmtpd) on 5.6
-STABLE (and 5.5 -STABLE before that) without hassle.
have a nice day
Lars
seem to fall out of the target group for this. As I don't share your
obvious enthusiasm and just don't care - so many rock stars rise and
fall.
Lars
. It seems to be
just hype
Lars
for some details:
http://marc.info/?l=openbsd-portsm=135345716931800w=2
regards
Lars
for
software from a to f while http://ftp2.eu.openbsd.org/pub/OpenBSD/5.6/
is completely missing the packages folder.
I just wanted to give a heads-up here.
Thanks
Lars
how to roll back
the one file (acphy.c) but not how to identify the others that were part
of the same commit. How do I spot which file(s) to try from that commit?
Regards,
/Lars
missed that I need to set for Ethernet? I don't see anything
that stands out in the man page lii(4) or on the web page plus56.html
Regards,
/Lars
kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pms0
On Mon, 24 Nov 2014, Lars Nooden wrote:
I've been trying to move from 5.4 to 5.6 on an old machine. Neither
5.6-release from the CD nor 5.6-current from the recent snapshots seem
to be able to use the Ethernet device. During power up, the link status
light is on, but then as the kernel
this!! ;-)
have a great day
Lars
/transition/bsdcan2014/desktop.html
regards
Lars
with
ifconfig on the yeeloong. And I can connect to this network with
another platform. The cabled interface (rl0) works fine.
What do I need to change to get urtw0 to finish connecting and show a
status of 'active' ?
Regards,
/Lars
[ using 487264 bytes of bsd ELF symbol table ]
Copyright (c) 1982, 1986
of the files). They also contain wrong checksums so signify
fails on the sets.
I think the correct answer to this is - Yes, that's old crap - wait for
the next snapshot, right?
Regards
Lars
but probably doesn't fit your power consumption requirements
(roughly 40 Watts with 2 drives)
Sincerely,
Martijn van Duren
Have a nice day
Lars
Hi Zé,
On 12.09.2014 19:22, Zé Loff wrote:
Oh, in that case, I agree with Lars. I have a APU (the 2Gb) model
running a bunch of light services for my small lan (pf, dhcpd, unbound,
nsd, ntpd, wifi AP), and apart from heating a lot (passive cooling
through the enclosure) it runs fine.
Have
On 12.09.2014 21:25, Josh Grosse wrote:
Lars, it should fly. I'm running roundcube and an imap server on an
Alix.2 (500Mhz Geode), using SSL, with a 4GB flash card as its back
end store. It's not speedy, but it gets the job done for a single
user.
Thanks Josh, I have an Alix as a router
at least this team. As you said, at
some point we have to trust somebody, because nobody needs so many
woodworkers.
Thanks
Lars
where the
confussion comes in... but can someone clarify for me the above?
Regards, Lars.
,
/Lars
OpenBSD 5.5-beta (GENERIC.MP) #223: Wed Jan 22 08:59:22 MST 2014
t...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU T5600 @ 1.83GHz (GenuineIntel 686-class) 1.84 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36
needed to sleep for a few
seconds at the beginning for the keyboard to reconnect first.
Regards,
/Lars
I agree this is a very good idea, instant feedback and gratification.
Nevertheless, I've just now donated CAD 100.- and invite everybody
else to do the same.
Kind regards
Lars
kernel /bsd. But...
Rebooting... and the system ends in limbo-mode.
I have to boot doing b /obsd
I can't figure out where the process goes wrong. Anyone?
Regards, Lars.
I'm getting a lot of watchdog timeouts on re0 with the i386 snapshots.
re0 is a Traverse Viking PCI ADSL card. Is there something I need to set
or tune on my end to stop the timeouts?
Regards,
/Lars
OpenBSD 5.4-current (GENERIC) #148: Tue Nov 12 15:18:10 MST 2013
dera...@i386
On Sun, 3 Nov 2013, Darren Tucker wrote:
[snip]
Also: it's not in 5.4 but it is in current: check out the Match keyword
for a more flexible method.
Cool. Were there any particular use cases in mind with 'exec' ?
Regards,
/Lars
ForceCommand internal-sftp -u 000
gives:
-rw-r--r-- 1 foo foo 29 Oct 23 10:36 umask000
What I was expecting for -u 000 would have been
-rw-rw-rw- 1 foo foo 29 Oct 23 10:35 umask000
What have I misconfigured?
Regards,
/Lars
to behave the same with the Subsystem option as well:
Subsystem sftp/usr/libexec/sftp-server -u 000
Regards,
/Lars
goes for setting IdentityFile in ssh_config.
This is with OpenSSH 6.3 from a recent snapshot on the client and
5.3-stable on the server.
regards,
/Lars
On Tue, 1 Oct 2013, Christian Weisgerber wrote:
Lars Noodén lars.noo...@gmail.com wrote:
Is there a way in ssh(1) to get the identity specified by -i to take
precedence over what is already in the agent?
IdentitiesOnly, see ssh_config(5).
--
Christian naddy Weisgerber
)
To: Amit Kulkarni amitk...@gmail.com
Cc: Lars Engblom lars.engb...@kimitotelefon.fi,misc misc@openbsd.org
Subject: Re: A suggestion for snapshots
On Fri, Sep 6, 2013 at 7:14 AM, Lars Engblom
lars.engb...@kimitotelefon.fiwrote:
Quite often the snapshot of the packages and the base system are out
Quite often the snapshot of the packages and the base system are out of
sync, because naturally, the base has to be built before packages.
For example in this moment, as I write this, Firefox can not be
installed in a new system installed from snapshots, as the packages are
compiled against
On Thu, 20 Jun 2013, Stuart Henderson wrote:
On 2013-06-19, Lars Nooden lars.noo...@gmail.com wrote:
On Wed, 19 Jun 2013, Reyk Floeter wrote:
Anyway, you should make sure to use divert-to instead of rdr-to in
your pf.conf. rdr-to is considered to be obsolete for userland
proxies (except
:
http_access allow all
...
http_port 127.0.0.1:3128 intercept
This occurs with in 5.3-stable on i386 with both squid/3.2.11 from ports
and with squid/3.2.7p0 from the CD, so what should I look at changing?
Regards,
/Lars
of divert-to.
Regards,
/Lars
a) you're wrong
b) you don't know what problem he is trying to solve.
On Tue, May 14, 2013 at 5:28 AM, Salim Shaw salims...@vfemail.net wrote:
OpenBSD is a server/router/network service OS, it's not designed for
desktops. OpenBSD is the pre-eminent platform for Firewalling, IPsec, IPv6.
on misc suggested ral(4) as better for an access
point. [2] The info on Wikipedia about drivers[3], if it's accurate,
suggests that ral has more help from the vendors.
Regards,
/Lars
[1] ath0 at pci0 dev 17 function 0 Atheros AR5413 rev 0x01: irq 15
ath0: AR5413 10.5 phy 6.1 rf 6.3
On Wed, 22 May 2013, Lars Nooden wrote:
[snip]
However, the remote machine is still able to use the forwarded port until
the connection is finally closed. The same syntax seems to shutdown
regular (-L) forwarded ports, just not for reverse (-R) forwarding. What
am I missing?
What I
is finally closed. The same syntax seems to shutdown
regular (-L) forwarded ports, just not for reverse (-R) forwarding. What
am I missing?
Regards,
/Lars
specified on the
comand line besides that or leaving them out of the agent in the first
place?
Regards,
/Lars
1 - 100 of 1005 matches
Mail list logo