hi
if you need somthing like that ... try ossec
www.ossec.net
holger
> Hi,
>
> I use OpenBSD 4.9, i'm looking for a good nids.
>
> I found
> "scanlogd" in ports, works very well.
>
> But is there a way to work this
> last one with pf ? For example add the ip-address detected by scanlogd to
> a
http://www.portwell.com/products/detail.asp?CUSTCHAR1=CAR-4003
>
> Your disk io will be slow as pciide does not support the
> ite 8213 yet.
should be not really a problem the box become work as firewall.
holger
> On Fri, Sep 23, 2011 at 11:01:13AM +0200, Holger Glaess wrote:
>&g
> On Fri, Sep 23, 2011 at 11:01 AM, Holger Glaess
> wrote:
>> hi
>> i allready download the snapshot from 22.9.
>>
>> i get this dmesg
>
> Is it dmesg from LiveCD, first boot after install or another one?
>
i create an boot cd form the snapshot and b
hi
i allready download the snapshot from 22.9.
i get this dmesg
# dmesg
OpenBSD 5.0-current (RAMDISK) #70: Thu Sep 22 12:02:43 MDT 2011
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/RAMDISK
real mem = 4285005824 (4086MB)
avail mem = 4161949696 (3969MB)
mainbus0 at root
bios0 at ma
.
it dosen't matter if you have an name that change the ip quickly ( DNS TTL
30 for example ) , or the dns reponse have multiple ip addresses.
i hope the explanation make clear what i do with the deamon.
holger
p.s. excuse my ugly english
> On 9 September 2011 08:54, Holger Glaes
hi
i wrote a perl daemon to handle all these situations.
he resolv the servername and add or delete the ip(s) to an spezific
table.
maybe it's time to work on a package for ports.
holger
> On 2011-09-08, Gerard Lally wrote:
>> Hi.
>>
>> First post. Beginner- to intermediate user.
>>
>> How do
Hi,
can someone exlain,how is status about this rfc?
Or in this case what kind,of funkions have openbsd to
protect ipv6 router advertisement?
Thanks Holger
> Hi list!
>
> I'm looking to setup my first Open BSD firewall in the near future, and I
> was hoping to get a little feedback from you about ideal specs for a first
> time machine.
>
> Below is a little about my situation.
>
> I plan to install the firewall physically between my router (Apple Time
hi
no , there is no weighting, but you can use the monitoring feature
with an own script that messure the load of the box .
if the load going over a limit the script give an exit 1
and relayd diden4t send traffic to this host.
holger
> Hi list,
>
> I'm planning to replace a GNU/Linux-driven lo
hi
i have an running 4.4 firewall cluster on sun x2200 m2 boxes with
additional PCIe quad card with intel chipset.
as switch i use hp 2824 or 3500 procurve witch the latest or close to the
latest firmware.
so, if i do a reboot of the master box i get trouble at the boot time,
the box can't set
hi
first all for the answer at my last question.
now can someone explain me what kind of error this is ?
Jul 17 05:59:56 sun-fw1 /bsd: pf: wire key attach failed on all: 89 in
wire: xxx.xx.xxx.xxx 224.0.0.5 1:0
carp wroks well but i had the problem that the rules dosen't really work,
first afte
> On Fri, Jul 17, 2009 at 10:35:03AM +0200, Holger Glaess wrote:
> | sorry ... for my bad ugly english i have less practice .
> |
> |
> | i talk about from a line with just "pass" nothing else.
> |
> |
> | example.
> |
> | pf.conf -
> |
>
> On Fri, Jul 17, 2009 at 09:59:51AM +0200, Holger Glaess wrote:
>
>> hi
>>
>> as an result of missconfiguration i found a line
>> with just an "pass".
>>
>> why did not detect the pfctl syntax parser a single lonely pass ?
>>
>> is
hi
as an result of missconfiguration i found a line
with just an "pass".
why did not detect the pfctl syntax parser a single lonely pass ?
is this commando first valid if they have options , parameter like
on interface from a to b ?
in my mind the parser have to bring at least a warning it kil
hi
i try to use the documented option -d with rlog but i get
rlog: unknown option -d
i did a look to the source and i didn't found the option.
maybe a bug ? or an outdated feature ?
i checked out the rlog.c file again and i got a .c file from 8.2.2008.
and the man file from 9.9.2007 .
i run
hi
i have a small problem with the ftp-proxy.
i run the the ftp-proxy for an incoming ftp-server .
he works very well but i diden see the remote ip addr in the ftp log,
just the ip from the firewall .
i think it is similar to the https frowarded-for think.
how can make the remote ip visible on
hi
Stuart Henderson wrote:
> On 2008-12-04, Holger Glaess <[EMAIL PROTECTED]> wrote:
>> hi
>>
>>
>> it is possible that the pfsync between 4.3 <-> 4.4 or between
>> sun 64 bit hardware to intel 64 bit hardware is not compatible ?
>>
>> i
hi
it is possible that the pfsync between 4.3 <-> 4.4 or between
sun 64 bit hardware to intel 64 bit hardware is not compatible ?
i can ping the boxes from both sides and i see the incoming
states updates by tcpdump.
but if i check the state table with pfctl -ss i see just
the carp , ospf state
hi
have someone experience to run this machines as firewall ?
i plan to replace my old hp dl 145 boxes with the sun t 1000 server.
i install an new 4.4 obsd and for now , the maschine runs wells
( i udpdate the src part by cvs and rebuild the kernel ).
now the box runs 4.4 stable .
what about
hi
in plan to replace my firewall boxes with new systems.
i have 6 aktive interfaces where are 3 internal networks ( 1Gbit )
an 2 where the internet traffic goes.
after the announcement of 4.4 release i prefer the sun T 1000 system
with 8 interfaces as replace box.
what are you thinking it is an
Nick Guenther wrote:
> On Wed, Oct 15, 2008 at 4:28 AM, Holger Glaess <[EMAIL PROTECTED]>
> wrote:
>>
>> and in this case how i can change the stacksize to more then 32M on
>> openbsd?
>>
>> i try in login.conf
>>:stacksize=64M:\
>>
Uwe Werler wrote:
> Am Wed, 15 Oct 2008 09:28:06 +0200 (CEST)
> schrieb "Holger Glaess" <[EMAIL PROTECTED]>:
>
>> hi
>>
>> which option i have to change that perl is able to ge more memory
>> resoruces ?
>>
>> i an script that works on
Uwe Werler wrote:
> Am Wed, 15 Oct 2008 09:28:06 +0200 (CEST)
> schrieb "Holger Glaess" <[EMAIL PROTECTED]>:
>
>> hi
>>
>> which option i have to change that perl is able to ge more memory
>> resoruces ?
>>
>> i an script that works on
hi
which option i have to change that perl is able to ge more memory resoruces ?
i an script that works on linux complete well but under openbsd ,
he start and then perl stop to work an left the memory.
if i disable some internal modules than he works.
if i see the the working script in top he
first box my whole network go's down.
my question is can i do carp loadblanacing on a multiple carp box ( 5 carp
interfaces ) ?
is this the right way to do lb carp like i ahead described ?
holger
Holger Glaess schrieb:
> hi
>
> i try today to use the ip loadbalancing f
hi
i try today to use the ip loadbalancing feature of carp.
basiclly there ist an working carp cluster with 5 carp interfaces on 2 boxes.
on host a:
hostname.carp0
inet 10.100.0.254 255.255.252.0 10.100.3.255 \
vhid 25 pass office2world group lan_if
hostname.carp1
inet 10.10.223.15 255.
hi
my hardeware are 2 pices of
hp dl 145 g2 2gb ram and a intel based 1gb quad interfaces card 1 sata hd.
this work as firewall system with 5 carp interfaces with up to 15 ip.
per box are 5 ethernet interfaces active. ( the system have 6 , the quad card
and 2 on board )
is is possible the the
on: "Stijn" <[EMAIL PROTECTED]>
Gesendet: 29.11.07 22:40:22
An: holger glaess <[EMAIL PROTECTED]>
Betreff: Re: ilo (ipmi) and serial console redirection
Hi,
At the boot> prompt can you enter "set tty com2"? Does it redirect
correctly now? If so add the command to /et
hi
i try to setup the last days the console redirection on al HP DL 145 G2 with
ipmi board ( ilo standard )
the most works i see the post bios output and the first lines of der boot
console of openbsd but there is a first error message
that the com0 is not aviable and this ist true.
the ipmi
hi
i did the carp ip loadbalancing setup as describe at the man page.
i did it on an full funktional carp cluster that means that carp an pf is ok.
host A:
inet 10.100.0.254 255.255.252.0 10.100.3.255 carpdev em0 vhid 25 pass
office2world link0 link1 group lan_if
inet alias 10.100.1.253 255.25
hi
i run the hoststated and ic have a small problem.
my config are
table hobbithosts {
#check http "/ldirector.html" code 200
check icmp
timeout 300
real port 443
host $hobbit_predmz_ip
}
service hobbit01 {
virtual host $hobbit_dmz_ip port 443 int
:57:03
An: misc@openbsd.org
Betreff: Re: hoststated
On Fri, 27 Apr 2007 08:57:16 +0200
holger glaess <[EMAIL PROTECTED]> wrote:
> hi
>
> i try to setup the hoststated daemon but it fail to start.
> i would to like setup an simple loadbalancer for http with 2 host.
> i add
hi
i try to setup the hoststated daemon but it fail to start.
i would to like setup an simple loadbalancer for http with 2 host.
i add also rdr-anchor "hoststated/*" to my pf.conf after the rdr rules.
thanks for your help
holger
here my config
#
# Macros
#
public_ip="10.10.223.100"
www1="10.
-Urspr|ngliche Nachricht-
Von: Jeff Nelson <[EMAIL PROTECTED]>
Gesendet: 09.08.06 02:37:53
An: misc@openbsd.org
Betreff: Re: sshd question
On Tue, Aug 08, 2006 at 10:04:03AM +0200, holger glaess wrote:
> i hope this list is the right one for my question .
>
> i look for
hi
i hope this list is the right one for my question .
i look for an funktion to limit the login by name AND ip range.
example.
root login ALLOW from www.xxx.yyy.zzz
deny from all
myname login ALLOW from all
deny from www.xxx.yyy.zzz
if there exist an feature / funktion of sshd to do this o
hi
i got after an cvs update to current an compiler error
/usr/src/sys/arch/amd64/compile/fw >make depend
mkdir -p /usr/src/sys/arch/amd64/compile/fw/lib/kern
depending the kern library objects
depending the compat library objects
sh /usr/src/sys/arch/amd64/compile/fw/../../../../kern/genassym.s
hi
my setup are
openBSD 3.9-stable (GENERIC) #1: Fri May 12 09:47:15 CEST 2006
2 boxes with 4 3com 100mbit cards ( xl )
2 interface per box run as bridge
/etc >more bridgename.bridge0
add xl0
add xl1
blocknonip xl0
blocknonip xl1
stp xl0
stp xl1
timeout 60
priority 12288
maxaddr 1000
up
( the
0e:b7
the interfaces works ! thanks all
holger
-Urspr|ngliche Nachricht-
Von: Jonathan Gray <[EMAIL PROTECTED]>
Gesendet: 23.05.06 18:06:44
An: holger glaess <[EMAIL PROTECTED]>
CC: misc@openbsd.org
Betreff: Re: HP HC340T pci-x card
On Tue, May 23, 2006 at 04:03:27PM +0
hi
i try to install this quad pci-x ethernet card that looks like an intel from hp.
in my starting dmesg i got
ppb3 at pci3 dev1 function 0 unknown vendor 0x12d8 product 0x01a7 rev 0x01
pci 4 at ppb3 bus 4
vendor "Intel", unknown product 0x10b5 (class network subclass ethernet, rev
0x03) at pc
hi
i try to use an interface group name together with altq in my firewall config .
example
ifconfig bge0 group wan_if
altq on wan_if cbq bandwidth 100Mb queue { std, www, ssh, admin }
if i try to aktivate this i got an syntax error from pfctl.
if i do the interface as macro and the altq li
hi
i have trouble with a lot of FIN_WAIT_2:FIN_WAIT_2 in my state table just for
https connections.
my system are
a HA bridged 3.8 firewall
some server in the DMZ
the http/https server are an hpux system with apache 2.0.55 and ssl
my rules are
pass quick on $wan_if proto tcp from any to por
hi
after a rebuild of the gcc compiler with this instruction
http://openbsd.org/faq/faq5.html#NewCompiler
a kernel build and a make build will be successful.
thanks to all for help.
holger
-Urspr|ngliche Nachricht-
Von: holger glaess <[EMAIL PROTECTED]>
Gesendet: 02.05.06 14:03
hi
i did an cvsup from 38 to 3.9 then everthing was documented ( cd
/usr/src/sys/arch/i386/conf ; config GENERIC ; cd ../compile/GENERIC ; make
depend )
to make shure if i did somthing wrong i got the whole source by ftp (src.tar.gz
and sys.tar.gz ) for 3.9
and get on both this error !
any clu
-Urspr|ngliche Nachricht-
Von: "tony sarendal" <[EMAIL PROTECTED]>
Gesendet: 26.04.06 18:46:31
An: misc
Betreff: Re: bgp(d) question
On 26/04/06, holger glaess <[EMAIL PROTECTED]> wrote:
>
> hi
> i need a small answer for an possiblity of bgp .
>
hi
i need a small answer for an possiblity of bgp .
i have
2 line provider ( 1 per location )
1 as with one large block (512 ips)
2 locations with an lan link between it ( let me say master and backup location
) .
so now the question
it ist possible to setup the bgp that they do an automatic s
-Urspr|ngliche Nachricht-
Von: Bihlmaier Andreas <[EMAIL PROTECTED]>
Gesendet: 24.04.06 17:16:44
An: misc@openbsd.org
Betreff: Re: advantages/disadvantages of kernel pppoe(4) vs userland pppoe(8)?
On Mon, Apr 24, 2006 at 11:44:25AM +0200, holger glaess wrote:
> Jonathan Thornb
-Urspr|ngliche Nachricht-
Von: "Melameth, Daniel D." <[EMAIL PROTECTED]>
Gesendet: 21.04.06 15:02:34
An:
Betreff: Re: advantages/disadvantages of kernel pppoe(4) vs userland pppoe(8)?
Jonathan Thornburg wrote:
> The firewall/router/nat box is (will be when I get this setup)
> an old 486
hi
i run here an similar setup with stable 3.8 on 2 dell 850 systems
i setup the bridge just with stp on both interfaces an decrease the
priority of the bridge on the master system one less the the priority on
the switch an 2 less at the slave.
i had since the first setup trouble but is go
101 - 148 of 148 matches
Mail list logo
