Re: pgt firmware ...

://firmware.openbsd.org/firmware/5.0/pgt-firmware-1.2.tgz OR b) ftp http://firmware.openbsd.org/firmware/5.0/pgt-firmware-1.2.tgz pkg_add ./pgt-firmware-1.2.tgz Anything else is stupid. On 2012 Feb 26 (Sun) at 18:21:31 +0400 (+0400), Wesley M. wrote: :Try this : :add wget package

Re: pgt firmware ...

try fw_update (provided in OpenBSD 5.0) Wesley. On Sun, 26 Feb 2012 17:51:03 +1030, David Walker davidianwal...@gmail.com wrote: Hi. I'm trying to do: pkg_add http://firmware.openbsd.olg/firmware/pgt-firmware-1.2.tgz I get this: parsing pgt-firmware-1.2.tgz Bad pkg_db: No such file or

Re: pgt firmware ...

there are no devices to update - the conexant card is no longer attached. :] If you can think of a way to run this locally it'd be great. On 26/02/2012, Wesley M. open...@e-solutions.re wrote: try fw_update (provided in OpenBSD 5.0) Wesley. On Sun, 26 Feb 2012 17:51:03 +1030, David Walker davidianwal

Re: SSH Mastery -- New book by Michal Lucas!

Hi, I ordered a copy too ;-) Wesley. On Fri, 17 Feb 2012 17:27:49 -0700 (MST), Austin Hook aus...@computershop.ca wrote: Here's the entry I just finished adding to OpenBSD's books.html page clip SSH Mastery by Michael Lucas ISBN-13: 978-1470069711 ISBN-10: 1470069717

Re: vpn isakmpd ipsec, one side with only one interface

IP address: ike esp from 172.17.2.21/32 to 192.168.0.0/24 peer ip_fwA ... Then tell the FTP server to listen on the IP of the lo2 interface (172.17.2.21?) /m On 02/13/12 14:43, Wesley M. wrote: o;?Hi, I was using ipsec vpn between 2 OpenBSD Gateway. It worked very well. Here

Re: Re : vpn isakmpd ipsec, one side with only one interface

- Internet - RemoteFW - LAN 2 - SomeDevice My PC is connected to a LAN1 switch, and it's able to ssh SomeDevice. As you can see my OpenBSD has just one interface and the VPN is mounted between OpenBSD and RemoteFW. - Mail original - De : Wesley M. open...@e-solutions.re @ : Markus

vpn isakmpd ipsec, one side with only one interface

o;?Hi, I was using ipsec vpn between 2 OpenBSD Gateway. It worked very well. Here : ---rl0---[fwA]---rl1(internet)-sis1---[fwB with ftpd]---sis0--- Now we remove ftp services from fwB and put it on an other machine fwC with an internet connection (only one network card). is

The use of DUID

Hi, I have a question, i read faq 14 - Disk Setup (DiskLabel Unique Identifiers) . It is a pretty feature. We can start OpenBSD OS from the disk put anywhere(order). But what's about after a dump/restore Boot in single user : backup the disk using 'dump -0af /mnt/root.dump /dev/wd0a' ... When

Re: The use of DUID

Thank you for your explanation. I understand better. On Mon, 30 Jan 2012 12:05:58 -0500, Nick Holland n...@holland-consulting.net wrote: On 01/30/2012 11:10 AM, Wesley M. wrote: Hi, I have a question, i read faq 14 - Disk Setup (DiskLabel Unique Identifiers) . It is a pretty feature. We

error keyboad

Hi, I have a problem with my keyboard. I use OpenBSD 5.0 with Bind Patch, acpi is disabled in the kernel (because it hangs on Mtrr pentium...) When i was in the OpenBSD install script, i was able to have this ^ working. But now, at i can't do this ^, there's a bip when i try to have it. Any

Re: strange localhost address

see http://www.openbsd.org/errata50.html On Sat, 21 Jan 2012 09:01:35 +0100, Jan Stary h...@stare.cz wrote: On Jan 21 11:40:32, Wesley M. wrote: When i ping localhost it give me : 208.73.210.29 instead of 127.0.0.1 ! Where does it come from ? I don't understand. I use OpenBSD 5.0 with bind

Re: strange localhost address

On Sat, 21 Jan 2012 11:46:00 +0400, Wesley M. open...@e-solutions.re wrote: sorry, it was a stupid error. My hostname, there was an error in the name !! Again sorry. On Sat, 21 Jan 2012 11:40:32 +0400, Wesley M. open...@e-solutions.re wrote: Hi, I don't know where it comes from. I

strange localhost address

Hi, I don't know where it comes from. I just configured my iwi card using : iwi-firmware-3.1p1.tgz I can connect to my network, internet works. Therefore, i find a strange error : When i ping localhost it give me : 208.73.210.29 instead of 127.0.0.1 ! Where does it come from ? I don't understand.

use trap command in a script

Hi, I want to see a message on console when i send signal like HUP KILL INT and TERM using for example in a script manageprocess: #!/bin/ksh trap 'echo Kill detected!' 9 trap 'ctrl-c detected!' 2 run it with sudo sh manageprocess No message appear Therefore if i run manually this : trap

could not read firmware iwi-bss

I use OpenBSD 5.0 RELEASE on a notebook : twinhead F12DT There was a problem at startup, it hangs on MTRR pentium message. So i disabled acpi using config -ef /bsd Now i can boot. I'm trying to configure iwi0 interface. Wifi card : Intel PRO/Wireless 2200BG When i try ifconfig iwi0 : iwi0:

Re: could not read firmware iwi-bss

You re very funny!! Now it works like a charm, thank for your replies, i downloaded the iwi-firmare. And wiconfig is pretty cool !!! Thank you a lot ! On Wed, 18 Jan 2012 07:17:00 -0500, Richard Thornton wrote: why not use gnu/linux instead On Wed, Jan 18, 2012 at 6:18 AM, Wesley M

mailserv project

Hi, It will be famous if somebody can update mailserv project to work on the last version OpenBSD 5.0 Therefore it works like a charm on OpenBSD 4.8/4.9 Here the source : https://github.com/mailserv/mailserv/ Best regards, Wesley.

Re: mailserv project

On Mon, 16 Jan 2012 07:40:57 +0100, Tomas Bodzar tomas.bod...@gmail.com wrote: There's sendmail in base system and there's ongoing work on smtpd by OpenBDS devs (other components are in ports). Anyway you're welcome to start port see http://www.openbsd.org/faq/ports/index.html It is not an

Re: PF Snort tutorial

Hi, Perhaps, this can be helpful ;-) http://www.procyonlabs.com/guides/openbsd/snort/ Cheers, Wesley MOUEDINE ASSABY http://mouedine.net/ruleset50.aspx On Tue, 3 Jan 2012 17:56:13 -0500, Bentley, Dain dbent...@nas.edu wrote: ughthat's what I thought. I'm reading through some OSSEC docs

Re: PF Snort tutorial

Also, an idea, add scanlogd package, and do a small script to add ip in log to your pf table ;-) Cheers, Wesley MOUEDINE ASSABY http://mouedine.net/ruleset50.aspx On Tue, 3 Jan 2012 17:56:13 -0500, Bentley, Dain dbent...@nas.edu wrote: ughthat's what I thought. I'm reading through some

Re: create a backup of an online server

In fact, -1- i want to copy the mail server system to another machine. I suppose rsnaphot or a dump/restore in single user? is a good choice... -2- And keep emails synchronized between the 2 mail server using rsync, this step is ok. Thank you very much for all your replies. Cheers, Wesley.

create a backup of an online server

Hi, I want to backup our mailserver(4.7) in production. I read : http://www.openbsd.org/faq/faq10.html#DupFS Can i do this wd1(my backup disk) : mount /dev/wd1a /mnt dump -0auf /mnt/etc_backup /dev/wd0a ... same for wd0d and wd0e ... Or do i need absolutely to do it in Single User? Or

Re: kernel panic (mii_phy_setmedia) on mac mini A1347 (bge device unknown)

thank's, small forget ;-) I will try it . On Fri, 23 Dec 2011 11:51:33 +0100, Mike Belopuhov m...@crypt.org.ru wrote: On Fri, Dec 23, 2011 at 11:43 AM, Wesley M. open...@e-solutions.re wrote: Hi, So i installed a fresh OpenBSD 4.9 to try to patch the files : brgphy.c and miidevs I have

Re: kernel panic (mii_phy_setmedia) on mac mini A1347 (bge device unknown)

Thank you very much. It works, i can now use bge0 on the mac mini. (OpenBSD 4.9) Wesley.

Re: trendnet ethernet usb

Dec 2011 03:07:56 +1100, Jonathan Gray j...@goblin.cx wrote: The man page is not an exhaustive list, include the full dmesg with the device plugged in for a start and the output of ifconfig axe0 media On Wed, Dec 21, 2011 at 04:24:58PM +0400, Wesley M. wrote: i read man page axe(4) there's

newfs, fsck slow

Hi, When i do a newfs on HD 500Go , it takes much more times using OpenBSD 4.9 instead of 5.0 RELEASE. Same problem using fsck -y dev. Why ? Machine : mac mini model : A1347 Thank you very much for your replies. Cheers, Wesley.

trendnet ethernet usb

I plug on my OpenBSD 4.9 (fresh install) :Ethernet USB Device, trendnet TU2-ETG It detects axe0, i configured it using dhcp, it doesn't work. Manually also doesn't work. Pf disabled, no traffic out any issue ? Here dmesg | grep axe0 : axe0 at uhub5 port 2 configuration 1 interface 0 ASIX

Re: trendnet ethernet usb

tried on OpenBSD 5.0 : same problem ifconfig show : media : Ethernet none (none) On Wed, 21 Dec 2011 16:04:36 +0400, Wesley M. open...@e-solutions.re wrote: I plug on my OpenBSD 4.9 (fresh install) :Ethernet USB Device, trendnet TU2-ETG It detects axe0, i configured it using dhcp, it doesn't

Re: trendnet ethernet usb

i read man page axe(4) there's no my model trendnet TU2-ETG :( So i suppose that it is not compatible :( Wesley. On Wed, 21 Dec 2011 16:10:35 +0400, Wesley M. open...@e-solutions.re wrote: tried on OpenBSD 5.0 : same problem ifconfig show : media : Ethernet none (none) On Wed, 21 Dec 2011

kernel panic (mii_phy_setmedia) on mac mini A1347

Hi, I tried to install OpenBSD 4.9 on an Apple mac mini (new generation). Model : A1347 Core i5, thunderbolt Technology, HD 500Go At installation using 4.9 RELEASE : It takes a long time to format slides. At the reboot : i have a kernel panic just after starting network So i tried to use

kernel panic (mii_phy_setmedia) on mac mini A1347 with trace and ps picture url

Hi, I tried to install OpenBSD 4.9 on an Apple mac mini (new generation). Model : A1347 ; Core i5, thunderbolt Technology, HD 500Go At installation using 4.9 RELEASE : It takes a long time to format slides. At the reboot : i have a kernel panic just after starting network So i tried to use

Re: kernel panic (mii_phy_setmedia) on mac mini A1347 with trace and ps picture url

On Mon, 19 Dec 2011 10:33:56 -0200, Daniel Bolgheroni dan...@cria.org.br wrote: On Mon, Dec 19, 2011 at 04:10:16PM +0400, Wesley M. wrote: Here is the ps message : http://i43.tinypic.com/mkufyo.jpg Here is the trace message : http://i40.tinypic.com/25syfxf.jpg Have you tried to disable

Re: kernel panic (mii_phy_setmedia) on mac mini A1347 with trace and ps picture url

+, Stuart Henderson s...@spacehopper.org wrote: It's committed so wait for new snaps and you can avoid this step. On 2011/12/19 17:10, Wesley M. wrote: Hi Stuart, I tried this : boot -c at boot prompt (startup) I have this message : kbc cmd word write error just after. And i can't use

Re: roundcubemail on openbsd 5.0

user userx@domainx userx Thank you for your replies and your help. Wesley M. PS : OpenBSD 5.0 / rouncubemail package 0.5.3p1 Original Message Subject: Re: roundcubemail on openbsd 5.0 Date: Wed, 14 Dec 2011 21:35:49 + From: Stuart Henderson s...@spacehopper.org To: Wesley M

Re: roundcubemail on openbsd 5.0

the records directly. Regards. On 14/12/2011 06:33, Wesley M. wrote: Hi, I use sendmail 8.14.15 with virtusertable and procmail for multiple domains and dovecot 2.0; and Apache (chrooted in /var/www) MAILDIR : /var/mailserver/%u/ IMAP/POP3/IMAPS/POP3S works. I just want

Re: roundcubemail on openbsd 5.0

Hi, I use sendmail 8.14.15 with virtusertable and procmail for multiple domains and dovecot 2.0; and Apache (chrooted in /var/www) MAILDIR : /var/mailserver/%u/ IMAP/POP3/IMAPS/POP3S works. I just want : At the Roundcube login page, type user1@domain1 and send emails from this email

roundcubemail on openbsd 5.0

Hi, I use sendmail with procmail(for maildir) and dovecot on OpenBSD 5.0 And a virtusertable /etc/mail/virtusertable for multiple domains. All works fine, i can send and receive emails. When i use roundcube, if i type a username, try to send an email, it is from username@localhost So, i modified

Re: roundcubemail on openbsd 5.0

I tried this : cp /etc/mail/virtusertable /var/www/roundcubemail/ And changed in /var/www/roundcubemail/main.inc.php this line to $rcmail_config['virtuser_file'] = '/roundcubemail/virtusertable'; Add a new user. Try it, only works with his username, and when i try to send emails, it comes from

maildir in sendmail

I noticed that sendmail use by default mbox : /var/mail/%u Is there a easy way to have maildir ? without procmail feature ? Or there's no other way except using procmail ? I don't want to use procmail, because, i will need a second large slide /home. I just want that all emails are in

Re: maildir in sendmail

weren't you? It comes with its own delivery agent, which can be fed over LMTP, and supports maildir/mbox/mdbox etc using the same choice of directory layout as dovecot pop3/imap daemons. On 2011-12-08, Wesley M. open...@e-solutions.re wrote: I noticed that sendmail use by default mbox : /var/mail

USB to ethernet adapter

Hi, I'm going to build a small firewall with proxy cache for web. Using an Apple Mac mini. For the second ethernet, i will use : - Trendnet TU2-ETG OR Apple MC704ZM. What is better ? using trendnet or Apple Adapter ? And is it enough stable to use a USB Adapter ? Thank you very much for your

roundcubemail packet

Hi, I have the following error : Check DB config DSN (write): NOT OK(MDB2 Error: connect failed) Make sure that the configured database exists and that the user has write privileges DSN: mysql://roundcube:pass@localhost/roundcubemail Using http://mailserver_ip/roundcubemail/installer/ I have

Re: roundcubemail packet

Thank you very much. It works. Except i can't connect to my imap server. :-( I use dovecot. Ports are opened. ?? On Mon, 05 Dec 2011 21:15:08 +1300, Richard Toohey richardtoo...@paradise.net.nz wrote: On 5/12/2011, at 9:03 PM, Wesley M. wrote: Hi, I have the following error : Check

Re: roundcubemail packet

: On Mon, 05 Dec 2011 12:38:46 +0400 Wesley M. open...@e-solutions.re wrote: Thank you very much. It works. Except i can't connect to my imap server. :-( I use dovecot. Ports are opened. ?? again,search your roundcube config file for 'localhost' pattern, and replace it with 127.0.0.1

Re: roundcubemail packet

,smtps} So my configuration : OpenBSD 5.0 dovecot-2.0.13p5 roundcubemail-0.5.3p1 sendmail mysql-server php On Mon, 5 Dec 2011 13:18:02 +0200, Gregory Edigarov g...@bestnet.kharkov.ua wrote: On Mon, 05 Dec 2011 14:56:20 +0400 Wesley M. open...@e-solutions.re wrote: Hi, Thank you

Re: roundcubemail packet

, 2011 at 11:56 AM, Wesley M. open...@e-solutions.re wrote: Hi, Thank you for your reply. Already done. But still doesn't work. I have connection error on imap server I have 3 users created, with 3 2 domains hosted. 993, 143 dovecot ports (imaps,imap) listen OK. ? Please, try to connect

Re: roundcubemail packet

mailserver dovecot: imap(wesley): Disconnected: Logged out bytes=29/399 On Mon, 5 Dec 2011 14:10:03 +0200, Gregory Edigarov g...@bestnet.kharkov.ua wrote: On Mon, 05 Dec 2011 15:47:23 +0400 Wesley M. open...@e-solutions.re wrote: in my /etc/dovecot/dovecot.conf i added this line : mail_location

Re: roundcubemail packet

Hi, First, thank you for your email. I use it at work, a purchased version(75$) (allard mail server) : v4.7.6 I want to build my own mail server with sendmail, because, mailserv doesn't work on OpenBSD 5.0, for example : there's no dovecot-sieve ; dovecot 2 is a big update; and especially install

sendmail(failed)

Hi I upgraded my mailserver to OpenBSD 5.0 Now at startup i have : Starting Network Daemons : sshd sendmail(failed) inetd failed ? why ? Normal ? And in rc.local we have a script that execute postfix with the option set-permissions If i do : netstat -anf inet ; i can see that the box listen well

Re: sendmail(failed)

Change in startup procedure for Postfix and exim: The base OS has moved to using scripts in /etc/rc.d to start all daemons. The script for sendmail does not function fully for alternative MTAs (in particular it will display failed at startup, although the daemon will still be started, and

original sendmail.cf, mc ?

Hi, I use OpenBSD 5.0 I know the *.mc files are in : /usr/share/sendmail/cf/ And sendmail.cf file is in /etc/mail, but it comes from which mc file ? I just want to modify the origin mc file to allow me to send email from a real domain instead of his hostname. Or perhaps, there an easiest way

Re: original sendmail.cf, mc ?

Thank you very much for your help ! Now all works fine. I just configured the smart host my mc file. On Thu, 24 Nov 2011 10:12:17 +0100, Antoine Jacoutot ajacou...@bsdfrog.org wrote: On Thu, Nov 24, 2011 at 09:54:17AM +0100, Paul de Weerd wrote: Looking more closely at how I set this up,

Re: What is wrong with this pf config

Hi, Please read again : http://www.openbsd.org/faq/pf/example1.html Or you can take a look here : http://mouedine.net/ruleset5.aspx Cheers, Wesley On Mon, 21 Nov 2011 19:15:06 +1100, John Tate j...@johntate.org wrote: I am having troubles with this pf configuration, it seems when loaded

opensmtpd

Hi, I seen http://www.opensmtpd.org Does exist a stable version ? can we put it on production ? And what's about your handbook : https://www.poolp.org/OpenSMTPD/ Possible to have this hanbook in french ? Thank you very much for replies. All the best, Wesley M.

optimize adsl bandwidth

Hi, I use OpenBSD 5.0, what is better between use prio or altq on em0 priq bandwidth 200Kb queue {q_def,q_pri} ? I explain : altq on em0 priq bandwidth 200Kb queue {q_def,q_pri} queue q_def priority 1 queue q_pri priority 7 priq(default) ... pass out on egress inet proto tcp queue(q_def,q_pri)

jeu de règles PF/ PF Ruleset - OpenBSD 5.0

Hi, See here : http://mouedine.net/ruleset5.aspx (with divert/tag use) All the best, Wesley MOUEDINE ASSABY

Re: jeu de règles PF/ PF Ruleset - OpenBSD 5.0

Je prends note ;-) Merci. On Fri, 4 Nov 2011 19:37:46 +0100, hvom .org hvom@gmail.com wrote: Le 4 novembre 2011 19:14, Wesley M. open...@e-solutions.re a C)crit : Hi, See here : http://mouedine.net/ruleset5.aspx (with divert/tag use) All the best, Wesley MOUEDINE ASSABY Faire

Re: limit ftp download

. On Thu, 03 Nov 2011 07:04:04 +0100, Camiel Dobbelaar c...@sentia.nl wrote: On 3-11-2011 6:07, Wesley M. wrote: I suppose it is because traffic are redirect to 127.0.0.1 (ftpproxy) sample of my pf.conf: ... anchor ftp-proxy/* pass in on $lan inet proto tcp from $limithost \ to port 21

Re: Packet Tagging issues with NAT in pf OBSD 4.9

Hi, try this sample _int = re0 _ext = fxp1 int_net = 192.168.200.0/24 set block-policy drop set skip on lo match in all scrub (no-df max-mss 1440) match out on $_ext inet from $int_net to any nat-to (egress) block log all pass in on $_int inet proto udp from $int_net to any port domain pass in on

Re: limit ftp download

I tried this : added a second ftpproxy_flags in my /etc/rc.conf.local So in the file, we have : ftpproxy_flags=-q ilimit # Listen by default on 8021 ftpproxy_flags=-q istd # It doesn't work, it use the last line in /etc/rc.conf.local : istd queue I suppose that it doesn't listen on the same

Full ruleset Packet filter OpenBSD 5.0

Hi, See here : http://mouedine.net/ruleset49.aspx (with divert/tag use) All the best, Wesley MOUEDINE ASSABY

post-Altq

Hi, What's about the post-Altq ? See here : http://bsdly.blogspot.com/2011/07/anticipating-post-altq-world.html Does someone have any news about that? Cheers, Wesley.

limit ftp download

Hi, I'm using OpenBSD 5.0 I'm testing traffic shapping using altq. I can limit a user (his Ip address) to a 160Kb/s, it works great. But when this user try to download a file using ftp, he downloads it at 1024Kb/s. I suppose it is because traffic are redirect to 127.0.0.1 (ftpproxy) sample

Re: NIDS on OpenBSD

to view alerts provided by scanlogd. Any idea ? cheers, Wesley. On Wed, 19 Oct 2011 09:31:35 +0400, Wesley M. open...@e-solutions.re wrote: Hi, I use OpenBSD 4.9, i'm looking for a good nids. I found scanlogd in ports, works very well. But is there a way to work this last one with pf

Re: NIDS on OpenBSD

firewall, we can play with QoS/IP,Ports filter/NAT/ Src NAT/ Statefull/Load Balancing/scrub But it is not a NIDS. ;-) All the best, Wesley M. On Wed, 19 Oct 2011 10:05:33 +0300, Gregory Edigarov g...@bestnet.kharkov.ua wrote: I think it is bad practice to use something that's not even

NIDS on OpenBSD

Hi, I use OpenBSD 4.9, i'm looking for a good nids. I found scanlogd in ports, works very well. But is there a way to work this last one with pf ? For example add the ip-address detected by scanlogd to a Blacklist table ? Also, is there a way to have a web monitor to view alert? Perhaps,

Re: Help setting up a PF NAT gateway

Hi, see my sample, it is well explained. http://mouedine.net/ruleset49.aspx All the best, Wesley MOUEDINE ASSABY www.mouedine.net On Mon, 10 Oct 2011 17:38:26 +0200, Stefan Midjich sweh...@gmail.com wrote: Simplest of things but I'm failing miserably. $ sudo cat /etc/hostname.vic2 #

Re: problem routing

INTERNET--ADSL ROUTER--sis1OpenBSD_BOXsis2--LAN-(server,ISP_ROUTER,workstations) sis2:10.100.1.250 ISP_ROUTER:10.100.1.254 server:10.100.1.150 , gateway : 10.100.1.254 worskstations 10.100.1.0/24 , gateway : 10.100.1.250 I already tried isakmpd ikev1 vpn : ping 10.100.1.250 ok ssh ok can't ping

routing problem

Hi, I have at work: TS Server : 10.100.1.100 his gateway is 10.100.1.254 (router for private network) Firewall : 10.100.1.250 (OpenBSD 4.9, ADSL : sis0, Lan (10.100.1.0/24) :sis2 On the firewall, i can ping 10.100.1.100 and telnet 10.100.1.100 3389 - OK When i am at home, i connect to

Re: routing problem

On Wed, 28 Sep 2011 06:49:59 -0400, Nick Holland n...@holland-consulting.net wrote: On 09/28/11 03:13, Wesley M. wrote: Hi, I have at work: TS Server : 10.100.1.100 his gateway is 10.100.1.254 (router for private network) bzzt. Bad. (I'm guessing that's a windows terminal server) Yes

Re: routing problem

auth hmac-sha1 enc aes-256 group modp1024 \ quick auth hmac-sha1 enc aes-256 psk demokey On Wed, 28 Sep 2011 15:05:52 +0400, pavel pocheptsov lilit-aibo...@mail.ru wrote: what settings on client/home side? B ipconfig /all, route print..etc 28 Q
P5P=QQP1QQ 2011, 11:18 PQ Wesley M

Re: routing problem

On Wed, 28 Sep 2011 15:42:05 +0400, pavel pocheptsov lilit-aibo...@mail.ru wrote: 28 Q
P5P=QQP1QQ 2011, 15:28 PQ Wesley M. open...@e-solutions.re: The VPN is between a fictif ip address(gives by the_green_bow) to 10.100.1.0/24 Using VPN, i can ping 10.100.1.250 and use also ssh

configure lan ports and wifi like a switch

Hi, I use an appliance with OpenBSD 4.9, there are 3 network ports(sis0-2), and a wifi port (ral0) sis0 : egress (internet) sis1, sis2, ral0 : lan i configure a hostname.trunk0 : trunkport sis2 trunkport sis1 trunkport ral0 trunkproto loadbalance inet 10.100.1.50 255.255.255.0 hostname.sis1,

Re: IPsec+rdomain

Hi, I already had the same problem. You need to use a Ipsec VPN and NAT. See here : http://www.undeadly.org/cgi?action=articlesid=20090127205841 Becare with your pf.conf syntax * many changes on recent OpenBSD Release. Cheers, Wesley MOUEDINE ASSABY www.mouedine.net On Wed, 14 Sep 2011

Re: Starting popa3d ...

Hi, See the file /etc/inetd.conf cheers, Wesley MOUEDINE ASSABY On Tue, 13 Sep 2011 12:19:21 +0930, David Walker davidianwal...@gmail.com wrote: Hi. uname -rsv OpenBSD 5.0 GENERIC#39 I'm gearing up to use popa3d and testing it on a machine. I tried the following in rc.conf.local

vpn ike1 ok, but can't access workstation

Hi, I have a win7 with dynamic ip address connected using green Bow VPN. [road warrior][OpenBSD][192.168.0.0/24] The tunnel is opened. I can ping the OpenBSD(4.9) gateway(192.168.0.249), but no workstations in the lan. I try : tcpdump -nettti pflog0 report me nothing. I try : tcpdump -i

Re: Why aren't you running -current?

Hi, Need to cvs update and rebuild, so take time. And configuration file can change. Cheers, Wesley. i'm sorry :( don't be sorry, just tell me why, i am just curious.

ikev2

Hi, sorry to post again this. Is there someone who have already tried a vpn using ikev2 with EAP-MSCHAP-V2 support ? Thank you very much. Cheers, Wesley.M

Re: ftpd server

Hi, You will find your solution here : http://www.openbsd.org/faq/pf/ftp.html Best regards, Wesley MOUEDINE ASSABY http://mouedine.net/ruleset49.aspx On Tue, 30 Aug 2011 23:38:41 -0700, fqui nonez fquinon...@gmail.com wrote: Hello I have a ftpd server box, OBSD-4.9, and pflog shows:

vpn with a win7 workstation

Hi What is the best way to build a vpn between an OpenBSD 4.9 gateway and a Win7 workstation ? Thank you very much for your advices. All the best, Wesley M.

Re: vpn with a win7 workstation

Ok, thank you a lot for your replay. Have you ever try to use ikev2 ? using iked and so win7 have ikev2 support. I tried to use it (iked) but no success... :( If you can take a eye on it. Cheers, Wesley M. On Wed, 31 Aug 2011 19:07:49 +0800, Zak Elep zak.e...@orangeandbronze.com wrote: On Wed

iked

Hi, Is there someone already use iked to build a vpn with a win7 ? ... And of course an OpenBSD gateway. Thank you very much for your help and reply. All the best, Wesley. PS : I already read man pages iked; ikectl and iked.conf