On 2020-11-16, Ian Timothy wrote:
> int_if = "em0"
>
> ext_if = "em1"
> ext_net = "23.X.X.128/29"
>
> gateway_ip_ext = "{ 23.X.X.129 }"
> gateway_ip_int = "{ 10.0.0.1 }"
>
> set skip on {lo, enc0}
>
> block return# block stateless traffic
> pass# establish keep-state
>
> pass out on
On 11/16/2020 12:08 AM, Paul B. Henson wrote:
I just updated one of my servers running 6.7 to 6.8, and am having a
problem with openldap. I have the intermediate cert and root CA in a
file referenced by the openldap config:
TLSCACertificateFile/etc/openldap/cabundle.crt
Under 6.7 with the
On 2020-11-16, Ian Timothy wrote:
> I’ve been a long time user of OpenBSD, but this is the first time I’m trying
> to setup a VPN. I’m not sure what I’m doing wrong, or what should be the next
> step to troubleshoot. I’ve probably reviewed every IKEv2 how-to I can find.
>
> I need to end up
> On 15 Nov 2020, at 20:57, Kenneth Gober wrote:
> On Sun, Nov 15, 2020 at 8:59 AM Mischa wrote:
>
>> On 15 Nov at 14:52, Otto Moerbeek wrote:
>>> fsck wil get slower once you start filling it, but since your original
>>> fs had about 104k files it expect it not getting too bad. If the speed
> Am 15.11.2020 um 22:33 schrieb Mihai Popescu :
>
> Hint: show some dhcpd configs.
>From /etc/dhcpd.conf:
- - -
subnet 172.16.11.0 netmask 255.255.255.0 {
option routers 172.16.11.1;
range 172.16.11.100 172.16.11.200;
}
subnet
On 2020-11-16, Brad Smith wrote:
> On 11/16/2020 12:08 AM, Paul B. Henson wrote:
>> I just updated one of my servers running 6.7 to 6.8, and am having a
>> problem with openldap. I have the intermediate cert and root CA in a
>> file referenced by the openldap config:
>>
>> TLSCACertificateFile
- Mail original -
> De: "sylvain saboua"
>
> After a full upgrade following the FAQ,
> and running the usual syspatch, pkg_add -u, pkg_check :
>
> dmesg highlights :
>
> random: boothowto does not indicate good seed
>
> cpu at mainbus0: not configured
> (see
>
After a full upgrade following the FAQ,
and running the usual syspatch, pkg_add -u, pkg_check :
dmesg highlights :
random: boothowto does not indicate good seed
cpu at mainbus0: not configured
(see
https://www.reddit.com/r/openbsd/comments/hab68w/how_can_i_enable_intel_hyperthreading_smt_back/
Hi,
i don't care greatly if another developer wants to add this, but i
advise against it. Talking to this person is a tedious job, he
seems to not understand very well what you say or to not really
listen. He is also quite bad at explaining stuff and it's hard to
figure out what he is driving
On 2020-11-16, Stuart Henderson wrote:
> Yes OpenLDAP is broken with TLS 1.3 server-side unless you have that
> commit (or build LibreSSL with TLS 1.3 server support disabled). As far
> as I can tell there's no method to disable TLS 1.3 via config.
...actually I have now added a workaround to
On 2020-11-15, Mihai Popescu wrote:
> Hello,
>
> In the scenario of building a router with APU4, one interface is for wan,
> the rest of three are free to use.
> What is the most sane and performance wise ( CPU load, interface load,
> etc.) way to tie together the remaining three interfaces as a
On 16/11/2020 04:49, Bodie wrote:
Can you show what is in /proc/cpuinfo in Linux host and possibly even
its dmesg?
Thanks for trying to help - sure, here's /proc/cpuinfo:
processor : 0
vendor_id : AuthenticAMD
cpu family : 16
model : 6
model name : AMD
> bridge(4), and add a vether ...
Reading thru man pages I see there are other options: switch, aggr, trunk,
etc.
I barely understand these, since IP is an ugly business.
My intention is to replace ISP router with something based on OpenBSD I can
configure myself. I see now that APU4 is too much,
On 2020-11-16, Mihai Popescu wrote:
>> bridge(4), and add a vether ...
>
> Reading thru man pages I see there are other options: switch, aggr, trunk,
> etc.
aggr and trunk are for combining two or more ports into a single uplink
(aggr only for LACP, trunk for various methods). Rither used to get
Recent snapshot install for amd64, first run reports the missing package
from firmware.
On Mon, Nov 16, 2020, 6:05 PM Stuart Henderson wrote:
>
> bridge (and theoretically switch but I never got it to do anything
> useful) make a group of ports act like a network switch (maybe with
> filtering between the ports).
>
I've been having issues with switch (4) as well... The reason I
On 16/11/2020 20:40, Philip Guenther wrote:
Looks like qemu fails to behave like a real AMD CPU by failing to handle
the wrmsr() for that errata. Also the kernel you're running it on is
failing to apply the errata itself (because otherwise OpenBSD won't be
trying to flip the bit itself). Go
On Sun, Nov 15, 2020 at 10:24 AM Gabriel Garcia wrote:
> I would like to run OpenBSD as stated on the subject - I have been able,
> however, to run it successfully with "-cpu Opteron_G2-v1", but I would
> rather use "-cpu host" instead. Also note that on an Intel host, OpenBSD
> appears to work
On Sun, Nov 15, 2020 at 06:20:52PM +, Gabriel Garcia wrote:
> Hi,
>
> I would like to run OpenBSD as stated on the subject - I have been able,
> however, to run it successfully with "-cpu Opteron_G2-v1", but I would
> rather use "-cpu host" instead. Also note that on an Intel host, OpenBSD
>
On 11/16/2020 6:52 AM, Stuart Henderson wrote:
...actually I have now added a workaround to the databases/openldap port
in 6.8-stable to disable TLS 1.3, so either rebuild or wait for -stable
packages and it should fix things.
Cool, I was actually already building from source in order to
Hello,
I'm not sure if this is a bug, or if it's just a pdksh thing, but I
stumbled upon some interesting behaviour when I was tinkering around
with quoting and using a poor mans array:
test=$(cat <<'__EOT'
# I'll choose not to close this quote
other_stuff
__EOT
)
echo "$test"
When I run
On 17.11.2020 05:04, Jordan Geoghegan wrote:
Hello,
I'm not sure if this is a bug, or if it's just a pdksh thing, but I
stumbled upon some interesting behaviour when I was tinkering around
with quoting and using a poor mans array:
test=$(cat <<'__EOT'
# I'll choose not to close this quote
On 17.11.2020 05:04, Jordan Geoghegan wrote:
Hello,
I'm not sure if this is a bug, or if it's just a pdksh thing, but I
stumbled upon some interesting behaviour when I was tinkering around
with quoting and using a poor mans array:
test=$(cat <<'__EOT'
# I'll choose not to close this quote
On Mon, Nov 16, 2020 at 06:37:50PM -0700, John McGuigan wrote:
> On Mon, Nov 16, 2020, 6:05 PM Stuart Henderson wrote:
>
> >
> > bridge (and theoretically switch but I never got it to do anything
> > useful) make a group of ports act like a network switch (maybe with
> > filtering between the
On 11/16/20 10:36 PM, Bodie wrote:
On 17.11.2020 05:04, Jordan Geoghegan wrote:
Hello,
I'm not sure if this is a bug, or if it's just a pdksh thing, but I
stumbled upon some interesting behaviour when I was tinkering around
with quoting and using a poor mans array:
test=$(cat <<'__EOT'
#
On 11/16/2020 2:30 AM, Stuart Henderson wrote:
Yes OpenLDAP is broken with TLS 1.3 server-side unless you have that
commit (or build LibreSSL with TLS 1.3 server support disabled). As far
as I can tell there's no method to disable TLS 1.3 via config.
Hmm, yah, you can disable old versions,
On 11/15/2020 10:18 PM, Brad Smith wrote:
I remember seeing this commit recently. Not sure if this is your problem
or not.
https://marc.info/?l=openbsd-cvs=160511882917510=2
That definitely looks like it, thanks for the pointer.
Buy a switch, and buy the APU4. Two ports don't get used, so what? It'll
be more reliable long term than a RPi4. A router with only one physical
port isn't a router, it's a host, no matter how many vlans you throw at it.
Cheers,
Noth
On 16/11/2020 18:06, Mihai Popescu wrote:
bridge(4), and
28 matches
Mail list logo
