Re: No DMA for Cyrix Cx5530 IDE?

[Michael Frost]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

Nick Holland [EMAIL PROTECTED]

Thanx a lot for your nice words, Nick! Sorry to say they didn't help me
anyway. I would recommend you to laugh even more on questions like those
I asked as to DMA support on a Cyrix Cx5530 IDE. In the meantime, I got
an helpful answer from a FreeBSD mail list. I will keep it for me.
;-))
iD8DBQFDU1GjE2msYDzXbgkRA8WVAJ9EU3ei/AAvRBSbV2cNp83EkHXp4wCcC+o0
W+bmT6uQ6vQsEQtFVfvjyVo=
=FyPZ
-END PGP SIGNATURE-

Re: 10 years T-shirt

[unixadmin99]

On 10/16/05, Ed Wandasiewicz [EMAIL PROTECTED] wrote:
 How about a hooded sweatshirt with a puffy logo on the back to celebrate
 10 years?

 Ed.

You can get a hooded top from Wim: https://kd85.com/notforsale.html
Though you could be branded anti-social in some parts of the UK for
wearing your hoodie:
http://news.bbc.co.uk/1/hi/england/kent/4534903.stm

--
~michael

Re: pf altq blocking ssh

[Henning Brauer]

* Dimitry Andric [EMAIL PROTECTED] [2005-10-10 20:51]:
 Reyk Floeter wrote:
  altq on $if cbq bandwidth 100Mb queue { all, local, http, ssh, rsets }
  use a different name instead of all, like std. all is a reserved
  keyword.
 
 Hmm, wouldn't it be nice to generate some warnings on 'misuse' of
 keywords such as this?

that's not how parsers work.

-- 
BS Web Services, http://www.bsws.de/
OpenBSD-based Webhosting, Mail Services, Managed Servers, ...
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)

Re: apm: connect error on IBM R50e

[Jason McIntyre]

On Sun, Oct 16, 2005 at 05:10:07PM +0200, Przemys3aw Nowaczyk wrote:
 hello misc@,
 I've just bought my shiny new IBM R50e notebook (model 1834-S5G), 
 installed latest snapshot (from 15th) and during startup I get:
 
 Loading...
 probing: pc0
 apm: connect error
  mem[628K 501M a20=on]
 disk: hd0+
  OpenBSD/i386 BOOT 2.10
 boot
 

i don't know much about the issues involved (i don't know anything about
them actually) but basically apm is not supported on this machine.

i have an r40e with the same issue, and it is a royal pain for a laptop ;(

jmc

Re: wireless pci card problem

[Benjamin A. Collins]

On Fri, Oct 14, 2005 at 10:29:01AM +0800, man Chan wrote:
 Hello,

 I got a pci wireless yesterday.  After the
 installation, the system reported that the following
 message:-

 rtw0 at pci0 dev 8 function 0 Realtek 8185 rev 0x20:
 irq 11
 rtw0: ver RTL8185,
 rtw0: could not recall EEPROM in 1us
 rtw0: could not recall EEPROM in 1us

 Does this mean that the card is not supported at the
 moment.  It is surecom 9321g/2A

I just got an email from surecom telling me that the chip in their
9321g is a ralink.  The docs are available here:
http://www.ralinktech.com/supp-1.htm

I think the chip is a RT2500, but I'm not certain.  Interesting that
rtw shows up in the dmesg.

bc
--
Benjamin A. Collins [EMAIL PROTECTED]

[demime 1.01d removed an attachment of type application/pgp-signature]

Re: Intel xSeries 336 boot failure

[Bryan Allen]

On Oct 16, 2005, at 10:52 PM, Stephen Nelson wrote:


I am having a problem booting an Intel xSeries 336 from cdrom. I have
tried both the 3.7 cd image and the latest snapshot image and both  
have

the same symptoms.


The same machine starts without a problem with Linux and Windows boot
cds. It has a p4 cpu, diskless, and dual broadcom BCM5721 gigabit
ethernet adapters.


Do the x366s come in P4 flavors? Looking at IBM's site suggests they  
only come in Xeon.


Our x336s boot the AMD64 image quite happily. On our boxes I had to  
drop RAM below 4GB, but after that everything was shiny.

--
Bryan Allen
[EMAIL PROTECTED]
http://bda.mirrorshades.net
Cyberpunk is dead. Long live cyberpunk.

Re: wireless pci card problem

[Stuart Henderson]

--On 17 October 2005 07:41 -0500, Benjamin A. Collins wrote:


I got a pci wireless yesterday.  After the
installation, the system reported that the following
message:-

rtw0 at pci0 dev 8 function 0 Realtek 8185 rev 0x20:
irq 11
rtw0: ver RTL8185,
rtw0: could not recall EEPROM in 1us
rtw0: could not recall EEPROM in 1us

Does this mean that the card is not supported at the
moment.  It is surecom 9321g/2A


I just got an email from surecom telling me that the chip in their
9321g is a ralink.


http://www.surecom-net.com/pd-wireless-9321-g_g1.htm says 
update:20050913 2A. I guess this means that the 2A was introduced 
last month and the specs are different to the older version, otherwise 
there'd be no need for an update.


Comparing with the version at archive.org shows the newer card has 
worse sensitivity and more output power. This could easily be 
consistent with a change of chipset.

Re: apm: connect error on IBM R50e

[Przemysław Nowaczyk]

Jason McIntyre wrote:


i don't know much about the issues involved (i don't know anything about
them actually) but basically apm is not supported on this machine.

i have an r40e with the same issue, and it is a royal pain for a laptop ;(

jmc


so what you want to tell is that it won't change..? that's a sad news.. 
actually I bought this machine to be on the road with OpenBSD.. and to 
be honest I thought that since other ThinkPads work great this won't 
have any issues either.. and now I begin to regret my choice..

Really nothing can bo done?

--
Przemyslaw Nowaczyk [EMAIL PROTECTED]
CS student @ Poznan University of Technology

Re: pf and linksys WRT55G not getting along

[Bob Ababurko]

Josh Webb wrote:
Unless you have a complex network with servers you want to keep in a 
DMZ, you don't need to link the routers the way you have. Having done 
the same thing not too long ago, here's what you'll probably want to do.


First, plug the cable modem into the Linksys and write down the DNS 
servers from the status page. There's a way to get them from the OBSD 
box, but I couldn't tell you how right off the top of my head.


Since the pf box will take care of the routing, you should plug its 
internal interface into the LAN switch on the Linksys. My Linksys is a 
diferent model (befw11s4), but I imagine yours does the same. If you 
ever have to do a full reset, it will default its internal IP address to 
192.168.1.1. To prevent it from confilcting with the pf box, set the 
internal interface on the pf box to 192.168.1.2. (The external one, of 
course, should be using DHCP). Go ahead and set the Linksys's internal 
IP address to 192.168.1.1 and turn off its DHCP server, the pf box can 
take care of that too.


Turn on the dhcp server on your pf box by editing rc.conf and replacing 
the dhcpd_flags's NO with opening and closing double quotes () Make 
sure you have also changed the NO to a YES on the pf entry.


Take a look at the example config files I attached.

After setting up your own dhcpd.conf and pf.conf, reboot the pf box.

Remember to either set the client system to use DHCP, or be sure to set 
its gateway to 192.168.1.2 and give it the DNS servers you wrote down 
before.


Also, be sure to read the PF User's Guide 
http://openbsd.org/faq/pf/index.html


And I would suggest Absolute OpenBSD as a good introduction. For a 
technical book, it's very readable. http://www.absoluteopenbsd.com/


Bob Ababurko wrote:


Hello-

I am in the process of setting up my first pf box.  I am embarrassed 
to say that I am having trouble even getting past the networking 
portion of my network.  The box I am configuring is going to be 
between my cable modem and my wireless routerso this is where my 
issues are coming from.  I cannot seem to get the routers to talk to 
each other.  except in one instance which I talk about below.  Here is 
a diagram of the network:


Internet (-Cable Modem- 24-52-224-246)/ hme0 (-pf box-) 
rl0/192.168.1.1   - 192.168.1.2(-Linksys WRT55G-) 
192.168.69.1  .oO))  192.168.69.50(wireless client(MAC OS X))


Ok, I hope that this will help more than hinder.
* I can communicate to the Internet from the pf box.
* I cannot ping the outside interface of the linksys(192.168.1.2) from 
the pf box.
* I cannot ping the inside interface(192.168.1.1) of the pf box from 
the MAC OS X(192.168.69.50)
* I can ping the outside interface(192.168.1.2) of the linksys from 
the MAC OS X(192.168.69.50)

***so basically the two routers are not talking


-The pf box is set up with:

net.inet.ip.forwarding=1


-and in pf.conf:

pass in log all keep state
pass out log all keep state


It seems that the routing tables would be incorrect, but I _think_ 
they are ok.


***Routing table on _pf box_

/root $netstat -r
Routing tables

Internet:
DestinationGatewayFlags Refs UseMtu 
Interface
default24-52-224-gate.knt UGS 938937  -   
hme0
24.52.224/23   link#1 UC  10  -   
hme0
24-52-224-gate.knt 0:50:57:1:37:2 UHLc10  -   
hme0

24-52-224-246.kntn localhost  UGHS00  33192   lo0
loopback   localhost  UGRS00  33192   lo0
localhost  localhost  UH  22  33192   lo0
192.168.1/24   link#2 UC  20  -   rl0
192.168.1.10:50:22:84:dc:6f   UHLc04  -   lo0
192.168.1.20:13:10:e:83:3cUHLc1  277  -   rl0
192.168.69/24  link#2 UCS 10  -   rl0
192.168.69.50  link#2 UHLc05  -   rl0
BASE-ADDRESS.MCAST localhost  URS 00  33192   lo0


**Notice that the MAC address of the linksys WRT55G(192.168.1.2) 
is in the routing table even though I cannot ping it.(Does this tell 
me something?)


**Also notice that I tried pinging my MAC OS X box(192.168.69.50) 
from the pf box before I pasted the output of netstat -r.  No success.




**Routing table on the Linksys WRT55G


Destination LAN IPSubnet MaskGatewayInterface
192.168.69.0255.255.255.00.0.0.0LAN  Wireless
192.168.1.0255.255.255.00.0.0.0WAN (Internet)
0.0.0.00.0.0.0192.168.1.1WAN (Internet)

***The firewall is turned off on the Linksys router.  Will this router 
just route traffic and let everything pass?



One interesting thing.  I can connect to the pf box(192.168.1.1) from 
the MAC OS X(192.168.69.50) via ssh.  This connection takes a very 
long time to establish though.  Almost like it was a dns timeout but 
it is 

ospfd.conf question

[stan]

I'm trying to do something that should be simple with ospfd from a snapshot
from last week.

I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
connect a single subnet to the corporate network. Corporate wans to move
from rip to ospf. I'v set up the following ospfd.conf file:


# $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $

# macros
# password=secret

# global configuration
router-id 170.85.113.111
# fib-update no
# spf-delay 1
# spf-holdtime 5

# auth-key $password
# auth-type none
# hello-interval 10
# metric 10
# retransmit-interval 5
# router-dead-time 40
# router-priority 1
# transmit-delay 1

# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
}


fxp0 is the external interface. The CARP interface is fxp1, and the
internal interface is fxp2. Presently I have pf off.

When I start ospfd I get the routes advertised by corporate, but they don't
see my route.

What am I doing wrong?

-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: apm: connect error on IBM R50e

[Edd Barrett]

On 17/10/05, Przemys3aw Nowaczyk [EMAIL PROTECTED] wrote:
 Jason McIntyre wrote:
 
  i don't know much about the issues involved (i don't know anything about
  them actually) but basically apm is not supported on this machine.
 
  i have an r40e with the same issue, and it is a royal pain for a laptop ;(
 
  jmc
 
 
 so what you want to tell is that it won't change..? that's a sad news..
 actually I bought this machine to be on the road with OpenBSD.. and to
 be honest I thought that since other ThinkPads work great this won't
 have any issues either.. and now I begin to regret my choice..
 Really nothing can bo done?

 --
 Przemyslaw Nowaczyk [EMAIL PROTECTED]
 CS student @ Poznan University of Technology



I have the same laptop. I do see the error, but as far as I know r50e is ACPI.

The battery light will flash orange when it is low. Apart from that I
have no idea what state the battery is in.

Best Regards

Edd

Re: pf and linksys WRT55G not getting along

[Keith Richardson]

Read the Networking FAQ and PF Users Guide.

http://www.openbsd.org/faq/index.html

Going off some comments you made (like trying to ping a wireless client 
from your firewall), you will also want to read up on Network Address 
Translation, which is what your wireless router is doing for all your 
wireless clients.  A high-level explanation is given in PF Users Guide 
but I would suggest reading more in-depth (There are links to the RFC's 
there)


http://www.openbsd.org/faq/pf/nat.html



Bob Ababurko wrote:

I cannot ping the inside interface(192.168.1.1) of the pf box from the 
MAC OS X(192.168.69.50)
* I can ping the outside interface(192.168.1.2) of the linksys from 
the MAC OS X(192.168.69.50)

***so basically the two routers are not talking




But later Bob Ababurko wrote:

One interesting thing.  I can connect to the pf box(192.168.1.1) from 
the MAC OS X(192.168.69.50) via ssh.

-and in pf.conf:



If you can connect to ssh port from 192.168.69.50 to 192.168.1.1, then 
communication is working, at least for TCP, port 23.

Re: apm: connect error on IBM R50e

[Jason McIntyre]

On Mon, Oct 17, 2005 at 03:27:12PM +0200, PrzemysE?aw Nowaczyk wrote:
 Jason McIntyre wrote:
 
 i don't know much about the issues involved (i don't know anything about
 them actually) but basically apm is not supported on this machine.
 
 i have an r40e with the same issue, and it is a royal pain for a laptop ;(
 
 so what you want to tell is that it won't change..? that's a sad news.. 
 actually I bought this machine to be on the road with OpenBSD.. and to 
 be honest I thought that since other ThinkPads work great this won't 
 have any issues either.. and now I begin to regret my choice..
 Really nothing can bo done?
 

i can't say that, since i don't know. maybe mickey or theo can tell us
the specific issue, but it's something to do with intel's choice of
hardware i think...

jmc

cvs usage question

[stan]

I;m trying to update the source tree on a 3.7 machine to current I did the
following (based upon my reading of the web site docs on this):

cd /usr/src
setenv [EMAIL PROTECTED]:/cvs
cvs -q get -P src

But all I got were these error messages:

cvs server: cannot find module `src' - ignored
cvs [checkout aborted]: cannot expand modules


What am I doing wrong?


-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: cvs usage question

[Przemysław Nowaczyk]

stan napisaE(a):

I;m trying to update the source tree on a 3.7 machine to current I did the
following (based upon my reading of the web site docs on this):

cd /usr/src
setenv [EMAIL PROTECTED]:/cvs
cvs -q get -P src

But all I got were these error messages:

cvs server: cannot find module `src' - ignored
cvs [checkout aborted]: cannot expand modules


What am I doing wrong?


I'm not sure.. but shouldn't you be doing this from the /usr directory, 
and not /usr/src..?


--
Przemyslaw Nowaczyk [EMAIL PROTECTED]
CS student @ Poznan University of Technology

Re: HFSC and PF docs

[jared r r spiegel]

On Mon, Oct 17, 2005 at 01:37:58AM -0200, Marcos Vinicius Buzo wrote:
 Hello, I am trying to find out some docs about HFSC scheduler and PF, but I
 did not found it anywhere, in the pf.conf man page and PF Users Guide there
 are no examples that cover HFSC usage, only PRIQ and CBQ.
 Does anybody know where I can find it ?

  searching through the archives gave you no info too?

  that's a bummer, i know i've babbled on about HFSC a few times on misc@
  and pf@, and trevor talbot has posted info as well, among others.

  jared

-- 

[ openbsd 3.8 GENERIC ( sep 27 ) // i386 ]

Re: apm: connect error on IBM R50e

[Przemysław Nowaczyk]

Edd Barrett napisa3(a):

On 17/10/05, Przemys3aw Nowaczyk [EMAIL PROTECTED] wrote:


Jason McIntyre wrote:


i don't know much about the issues involved (i don't know anything about
them actually) but basically apm is not supported on this machine.

i have an r40e with the same issue, and it is a royal pain for a laptop ;(

jmc




so what you want to tell is that it won't change..? that's a sad news..
actually I bought this machine to be on the road with OpenBSD.. and to
be honest I thought that since other ThinkPads work great this won't
have any issues either.. and now I begin to regret my choice..
Really nothing can bo done?




I have the same laptop. I do see the error, but as far as I know r50e is ACPI.

The battery light will flash orange when it is low. Apart from that I
have no idea what state the battery is in.

Best Regards

Edd


so there's a light in the tunel when ACPI will be supported on 
OpenBSD..? I read somewhere the it's under havy development right now, 
but does anybody know when it might come up for testing? I understand 
that there're lots of problems due to vendors don't stick to the 
standard, but is there any chance to see it in the near future..?


--
Przemyslaw Nowaczyk [EMAIL PROTECTED]
CS student @ Poznan University of Technology

Re: cvs usage question

[steven mestdagh]

On Mon, Oct 17, 2005 at 09:49:21AM -0400, stan wrote:
 I;m trying to update the source tree on a 3.7 machine to current I did the
 following (based upon my reading of the web site docs on this):
 
 cd /usr/src
 setenv [EMAIL PROTECTED]:/cvs
 cvs -q get -P src
 
 But all I got were these error messages:
 
 cvs server: cannot find module `src' - ignored
 cvs [checkout aborted]: cannot expand modules
 
 
 What am I doing wrong?

you don't need the equation sign:
setenv CVSROOT [EMAIL PROTECTED]:/cvs

or you need to use export if you use ksh.
use 'echo $CVSROOT' to see if this variable is set correctly.

Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
 I'm trying to do something that should be simple with ospfd from a snapshot
 from last week.
 
 I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
 connect a single subnet to the corporate network. Corporate wans to move
 from rip to ospf. I'v set up the following ospfd.conf file:
 
 
 # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
 
 # macros
 # password=secret
 
 # global configuration
 router-id 170.85.113.111
 # fib-update no
 # spf-delay 1
 # spf-holdtime 5
 
 # auth-key $password
 # auth-type none
 # hello-interval 10
 # metric 10
 # retransmit-interval 5
 # router-dead-time 40
 # router-priority 1
 # transmit-delay 1
 
 # areas
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
 }
 
 
 fxp0 is the external interface. The CARP interface is fxp1, and the
 internal interface is fxp2. Presently I have pf off.
 
 When I start ospfd I get the routes advertised by corporate, but they don't
 see my route.
 
 What am I doing wrong?
 

You're not advertising any routes with this setup. redistribute static
is probably what you are looking for.
Another option would be to use passive interfaces like

area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface fxp2 {
passive
}
interface carp0 {
passive
}
}

Side note: auth-type none is OK for testing but auth-type crypt should be
considered production.

-- 
:wq Claudio

Re: ospfd.conf question

[stan]

On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
  I'm trying to do something that should be simple with ospfd from a snapshot
  from last week.
  
  I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
  connect a single subnet to the corporate network. Corporate wans to move
  from rip to ospf. I'v set up the following ospfd.conf file:
  
  
  # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
  
  # macros
  # password=secret
  
  # global configuration
  router-id 170.85.113.111
  # fib-update no
  # spf-delay 1
  # spf-holdtime 5
  
  # auth-key $password
  # auth-type none
  # hello-interval 10
  # metric 10
  # retransmit-interval 5
  # router-dead-time 40
  # router-priority 1
  # transmit-delay 1
  
  # areas
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  }
  
  
  fxp0 is the external interface. The CARP interface is fxp1, and the
  internal interface is fxp2. Presently I have pf off.
  
  When I start ospfd I get the routes advertised by corporate, but they don't
  see my route.
  
  What am I doing wrong?
  
 
 You're not advertising any routes with this setup. redistribute static
 is probably what you are looking for.
 Another option would be to use passive interfaces like
 
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface fxp2 {
   passive
   }
   interface carp0 {
   passive
   }
 }

Could you explain what passive means in this context, please?

 
 Side note: auth-type none is OK for testing but auth-type crypt should be
 considered production.
 
While I agree completly, it's out of my control. This is what corporate is
using :-(

-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: ospfd.conf question

[stan]

On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
  I'm trying to do something that should be simple with ospfd from a snapshot
  from last week.
  
  I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
  connect a single subnet to the corporate network. Corporate wans to move
  from rip to ospf. I'v set up the following ospfd.conf file:
  
  
  # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
  
  # macros
  # password=secret
  
  # global configuration
  router-id 170.85.113.111
  # fib-update no
  # spf-delay 1
  # spf-holdtime 5
  
  # auth-key $password
  # auth-type none
  # hello-interval 10
  # metric 10
  # retransmit-interval 5
  # router-dead-time 40
  # router-priority 1
  # transmit-delay 1
  
  # areas
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  }
  
  
  fxp0 is the external interface. The CARP interface is fxp1, and the
  internal interface is fxp2. Presently I have pf off.
  
  When I start ospfd I get the routes advertised by corporate, but they don't
  see my route.
  
  What am I doing wrong?
  
 
 You're not advertising any routes with this setup. redistribute static
 is probably what you are looking for.
 Another option would be to use passive interfaces like
 
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface fxp2 {
   passive
   }
   interface carp0 {
   passive
   }
 }
 

Hmm, that seems to have gotten me close. Here's the new ospfd.conf file:


# $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $

# macros
# password=secret

# global configuration
router-id 170.85.113.111
# fib-update no
# spf-delay 1
# spf-holdtime 5

# auth-key $password
# auth-type none
# hello-interval 10
# metric 10
# retransmit-interval 5
# router-dead-time 40
# router-priority 1
# transmit-delay 1

# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface fxp2 {
auth-type none
passive
}
}

And when I start up the ospfd executbale now I get:


Script started on Mon Oct 17 10:38:04 2005
phfw1# ospfd -d
startup
rde: new announced net 0.0.0.0/0
rde: new announced net 170.85.106.128/25
rde: new announced net 170.85.106.143/32
rde: new announced net 170.85.113.0/25
rde: new announced net 170.85.113.99/32
rde: new announced net 192.168.254.0/24
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface carp0
if_fsm: event UP resulted in action START and changing state for interface 
carp0 from DOWN to WAITING
start_spf_timer: IDLE - DELAY
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
spf_calc: calculation started, area ID 0.0.0.120
spf_calc: calculation ended, area ID 0.0.0.120
spf_start_holdtimer: DELAY - HOLD
spf_timer: state HOLD - IDLE
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
if_act_elect: interface carp0 old dr none new dr 170.85.113.99, old bdr none 
new bdr none
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface carp0
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface carp0
if_fsm: event WAITTIMER resulted in action ELECT and changing state for 
interface carp0 from WAITING to DR
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
recv_packet: invalid checksum, interface carp0
recv_packet: authentication error, interface carp0
nbr_fsm: event HELLO_RECEIVED resulted in action START_INACTIVITY_TIMER and 
changing state for neighbor ID 170.85.115.1 from DOWN to INIT
nbr_fsm: event 2_WAY_RECEIVED resulted in action EVAL and changing state for 
neighbor ID 170.85.115.1 from INIT to EXSTART
if_act_elect: interface carp0 old dr 170.85.113.99 new dr 170.85.113.98, old 
bdr none new bdr 170.85.113.99
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface carp0
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface carp0
if_fsm: event NEIGHBORCHANGE resulted in action ELECT and changing state for 
interface carp0 from DR to BACKUP
nbr_fsm: event NEGOTIATION_DONE resulted in action SNAPSHOT and changing state 
for neighbor ID 170.85.115.1 from EXSTART to SNAPSHOT
nbr_fsm: event SNAPSHOT_DONE resulted in action SNAPSHOT_DONE and changing 
state for neighbor ID 170.85.115.1 from SNAPSHOT to EXCHANGE
recv_db_description: dupe

Re: cvs usage question

[Ikmal Ahmad]

This what I use.
cd /usr
cvs -d [EMAIL PROTECTED]:/cvs -q up -rOPENBSD_3_7 -P src

On 10/17/05, steven mestdagh [EMAIL PROTECTED] wrote:
 On Mon, Oct 17, 2005 at 09:49:21AM -0400, stan wrote:
  I;m trying to update the source tree on a 3.7 machine to current I did the
  following (based upon my reading of the web site docs on this):
 
  cd /usr/src
  setenv [EMAIL PROTECTED]:/cvs
  cvs -q get -P src
 
  But all I got were these error messages:
 
  cvs server: cannot find module `src' - ignored
  cvs [checkout aborted]: cannot expand modules
 
 
  What am I doing wrong?

 you don't need the equation sign:
 setenv CVSROOT [EMAIL PROTECTED]:/cvs

 or you need to use export if you use ksh.
 use 'echo $CVSROOT' to see if this variable is set correctly.

 Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm





--
Thanks  Regards,
Ikmal aka EvoIVGSR

http://www.leakage.org/
http://root.justdied.com/mylife/
http://www.openbsd.org.my/
http://mirrors.mybsd.org.my/

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 10:35:07AM -0400, stan wrote:
 On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
  On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
   I'm trying to do something that should be simple with ospfd from a 
   snapshot
   from last week.
   
   I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
   connect a single subnet to the corporate network. Corporate wans to move
   from rip to ospf. I'v set up the following ospfd.conf file:
   
   
   # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
   
   # macros
   # password=secret
   
   # global configuration
   router-id 170.85.113.111
   # fib-update no
   # spf-delay 1
   # spf-holdtime 5
   
   # auth-key $password
   # auth-type none
   # hello-interval 10
   # metric 10
   # retransmit-interval 5
   # router-dead-time 40
   # router-priority 1
   # transmit-delay 1
   
   # areas
   area 0.0.0.120 {
 interface fxp0 {
 auth-type none
 }
   }
   
   
   fxp0 is the external interface. The CARP interface is fxp1, and the
   internal interface is fxp2. Presently I have pf off.
   
   When I start ospfd I get the routes advertised by corporate, but they 
   don't
   see my route.
   
   What am I doing wrong?
   
  
  You're not advertising any routes with this setup. redistribute static
  is probably what you are looking for.
  Another option would be to use passive interfaces like
  
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  interface fxp2 {
  passive
  }
  interface carp0 {
  passive
  }
  }
 
 Could you explain what passive means in this context, please?
 

It's in the man page:
 passive
 Prevent transmission and reception of OSPF packets on this inter-
 face.

The interface is still considered part of OSPF and therefor a stub network
LSA is redistributed but no OSPF traffic is done on that interface. This
is nice to add some directly connected interfaces or loopbacks instead of
using redistribute connected.

-- 
:wq Claudio

Re: Compiling perl pkg_* to c

[Marc Espie]

On Fri, Oct 14, 2005 at 10:24:51AM +0200, Rickard Dahlstrand wrote:
 Hi,
 
 I'm working on a installation where I can't install perl and I need to
 be able to install packages using pkg_add, pkg_delete etc.
 
 There are two solutions to my problem:
 1. If anyone have a c-based pkg_add or pkg_delete that works, this would
 be great. (It seems like this was done in c a while back)

And C was abandonned because the tools were buggy, hard to fix, and really
hard to extend. The new tools do an incredible amount of work compared to
the old ones.  Rewriting the same thing in C is a *large* endeavor.
What's going on is only very superficially similar...


 2. Try to compile the perl-source into a c-application using perlcc.

The perlcc compiler is experimental at best, as your try shows. Good luck...

You haven't actually justfied at any point why you can't install perl, from
a technical point of view. Even if that's true, the new package tools support
installing stuff in a chroot, specifically so that you can prepare an 
installation in a full OpenBSD setup that you're going to reuse on a limited
setup later on...

Re: ospfd.conf question

[stan]

On Mon, Oct 17, 2005 at 05:16:20PM +0200, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 10:35:07AM -0400, stan wrote:
  On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
   On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
I'm trying to do something that should be simple with ospfd from a 
snapshot
from last week.

I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
connect a single subnet to the corporate network. Corporate wans to move
from rip to ospf. I'v set up the following ospfd.conf file:


# $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $

# macros
# password=secret

# global configuration
router-id 170.85.113.111
# fib-update no
# spf-delay 1
# spf-holdtime 5

# auth-key $password
# auth-type none
# hello-interval 10
# metric 10
# retransmit-interval 5
# router-dead-time 40
# router-priority 1
# transmit-delay 1

# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
}


fxp0 is the external interface. The CARP interface is fxp1, and the
internal interface is fxp2. Presently I have pf off.

When I start ospfd I get the routes advertised by corporate, but they 
don't
see my route.

What am I doing wrong?

   
   You're not advertising any routes with this setup. redistribute static
   is probably what you are looking for.
   Another option would be to use passive interfaces like
   
   area 0.0.0.120 {
 interface fxp0 {
 auth-type none
 }
 interface fxp2 {
 passive
 }
 interface carp0 {
 passive
 }
   }
  
  Could you explain what passive means in this context, please?
  
 
 It's in the man page:
  passive
  Prevent transmission and reception of OSPF packets on this inter-
  face.
 
 The interface is still considered part of OSPF and therefor a stub network
 LSA is redistributed but no OSPF traffic is done on that interface. This
 is nice to add some directly connected interfaces or loopbacks instead of
 using redistribute connected.

Thanks.

So, in my case by not listing the pfsync interface (which is fxp1) in the
ospfd.conf file at all. Neither will it be advertised, nor will traffic be
sent over it, right?

-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

SOLVED: Assigning static device names for USB devices

[Antti Harri]

On Mon, 17 Oct 2005, Alexander Yurchenko wrote:


On Mon, Oct 17, 2005 at 09:29:37AM +1000, Damien Miller wrote:


You could try making symlinks using hotplugd(8) attach and detach scripts,
but I'm not sure they get called for USB printers (haven't tried)


of course they will be called. add usbdevs | grep command to the attach
script to make a proper symlink.


Hotplugd and usbdevs were the right tools for this job.

For the archives here's how the dynamically updating symlink can be 
done for USB device: printers fall into class 0 (generic) and with the 
second parameter to the hotplugd's attach script one is able to get the 
device's name and model by using usbdevs -d.


Thanks for all who responded.

--
Antti Harri

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 10:57:41AM -0400, stan wrote:
 On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
  On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:

 
 Hmm, that seems to have gotten me close. Here's the new ospfd.conf file:
 
 
 # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
 
 # global configuration
 router-id 170.85.113.111
 
 # areas
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface fxp2 {
   auth-type none
   passive
   }
 }
 

config stripped a bit

 And when I start up the ospfd executbale now I get:
 
 
 Script started on Mon Oct 17 10:38:04 2005
 phfw1# ospfd -d
 startup
 rde: new announced net 0.0.0.0/0
 rde: new announced net 170.85.106.128/25
 rde: new announced net 170.85.106.143/32
 rde: new announced net 170.85.113.0/25
 rde: new announced net 170.85.113.99/32
 rde: new announced net 192.168.254.0/24
 orig_rtr_lsa: area 0.0.0.120
 orig_rtr_lsa: stub net, interface carp1
 orig_rtr_lsa: stub net, interface carp0
 if_fsm: event UP resulted in action START and changing state for interface 
 carp0 from DOWN to WAITING
 start_spf_timer: IDLE - DELAY
 recv_packet: invalid checksum, interface carp0
 recv_packet: authentication error, interface carp0
 spf_calc: calculation started, area ID 0.0.0.120
 spf_calc: calculation ended, area ID 0.0.0.120
 spf_start_holdtimer: DELAY - HOLD
 spf_timer: state HOLD - IDLE
 recv_packet: invalid checksum, interface carp0
 recv_packet: authentication error, interface carp0
 recv_packet: invalid checksum, interface carp0
 recv_packet: authentication error, interface carp0
 recv_packet: invalid checksum, interface carp0
 recv_packet: authentication error, interface carp0
...

That is not the config you pasted before. You are running OSPF
over carp here. This is nuts and will not work. You can not run any kind
of routing protocol over carp without major issues! If you have two
routers in front of a common network use carp towards that network and
OSPF to connect the two routers to the backbone.
If one router fails ospf will take care and adjust the routing table.
Currently I think you need to use redistribute static for that setup or
wait a couple of days till I fixed something.

 phfw1# op  ospfd -d
 startup
 orig_rtr_lsa: area 0.0.0.120
 rde: new announced net 0.0.0.0/0
 rde: new announced net 170.85.106.128/25
 rde: new announced net 170.85.106.143/32
 rde: new announced net 170.85.113.0/25
 rde: new announced net 170.85.113.99/32
 rde: new announced net 192.168.254.0/24
 orig_rtr_lsa: stub net, interface fxp2
 orig_rtr_lsa: stub net, interface fxp0
 if_fsm: event UP resulted in action START and changing state for interface 
 fxp0 from DOWN to WAITING
 start_spf_timer: IDLE - DELAY
 nbr_fsm: event HELLO_RECEIVED resulted in action START_INACTIVITY_TIMER and 
 changing state for neighbor ID 170.85.115.1 from DOWN to INIT
 nbr_fsm: event 2_WAY_RECEIVED resulted in action EVAL and changing state for 
 neighbor ID 170.85.115.1 from INIT to 2-WAY
 if_fsm: event NEIGHBORCHANGE resulted in action NOTHING and changing state 
 for interface fxp0 from WAITING to WAITING
 recv_packet: packet sent to wrong address 170.85.113.99, interface fxp0
 spf_calc: calculation started, area ID 0.0.0.120
 spf_calc: calculation ended, area ID 0.0.0.120
 spf_start_holdtimer: DELAY - HOLD
 recv_packet: packet sent to wrong address 170.85.113.99, interface fxp0
 spf_timer: state HOLD - IDLE
 recv_db_description: packet ignored in state 2-WAY, neighbor ID 170.85.115.1
 recv_packet: packet sent to wrong address 170.85.113.99, interface fxp0

I bet 170.85.113.99 is the carp IP.

...

 I;ve confirmes with ethreal that the invalid chcksum errors are indeed
 invalid checksums being sent by the router that I'm exchanging routes with.
 

Iiick!

 But if I chage the interfaces to carp0, and carp1, which are respectively
 the outside, and inside carp interfaces for this amchine, things don't
 work even this well:
 

As I said before don't run ospf over carp. It will not work. You can use
it fot the inside network but not for the one connected to the backbone.
 
 At this point in time I'm not even receiving the routes my neighber router
 is sending.
 

-- 
:wq Claudio

Re: Trying to play a DVD with ogle

[Edd Barrett]

  get a lot of multi-colored 'noise' in the form of small blocks.

Did you build from ports or use the binary pkg. I had problems with
the bin. Also can we see the terminal output of mplayer please?

Best Regards

Edd

Re: ospfd.conf question

[stan]

On Mon, Oct 17, 2005 at 05:41:20PM +0200, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 10:57:41AM -0400, stan wrote:
  On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
   On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
 
  
  Hmm, that seems to have gotten me close. Here's the new ospfd.conf file:
  
  
  # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
  
  # global configuration
  router-id 170.85.113.111
  
  # areas
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  interface fxp2 {
  auth-type none
  passive
  }
  }
  
 
 config stripped a bit
 
 
 That is not the config you pasted before. You are running OSPF
 over carp here. This is nuts and will not work. You can not run any kind
 of routing protocol over carp without major issues! If you have two
 routers in front of a common network use carp towards that network and
 OSPF to connect the two routers to the backbone.
 If one router fails ospf will take care and adjust the routing table.
 Currently I think you need to use redistribute static for that setup or
 wait a couple of days till I fixed something.

Ah, in retrospect this makes sense. So the externa; interfaces on these 2
machines don't need carp ata all. But I will still need it on the insid
as the machines on the internal network just have static routes in them.
So. I guess the gateway machines should each advertise their real
interfaces in the ospfd.conf file? Or should that be their carp interface?

 
 I bet 170.85.113.99 is the carp IP.

It is.

 
 ...
 
  I;ve confirmes with ethreal that the invalid chcksum errors are indeed
  invalid checksums being sent by the router that I'm exchanging routes with.
  
 
 Iiick!

Agreed!

 
  But if I chage the interfaces to carp0, and carp1, which are respectively
  the outside, and inside carp interfaces for this amchine, things don't
  work even this well:
  
 
 As I said before don't run ospf over carp. It will not work. You can use
 it fot the inside network but not for the one connected to the backbone.
  

So, my ospfd.conf file should look like this?


# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface carp1 {
auth-type none
passive
}
}

Or would this be better?

# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface fxp2 {
auth-type none
passive
}
}

The external interface is fxp0, and the internal one is fxp2. The
internal carp is carp1, and the outside one (carp0) will go away.

Thanks very much for taking the time to educate me on this.


-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 11:25:30AM -0400, stan wrote:
 On Mon, Oct 17, 2005 at 05:16:20PM +0200, Claudio Jeker wrote:
  On Mon, Oct 17, 2005 at 10:35:07AM -0400, stan wrote:
   On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
 I'm trying to do something that should be simple with ospfd from a 
 snapshot
 from last week.
 
 I have a pair of carp's firewall/gatway boxes (3.7 machines) and they
 connect a single subnet to the corporate network. Corporate wans to 
 move
 from rip to ospf. I'v set up the following ospfd.conf file:
 
 
 # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
 
 # macros
 # password=secret
 
 # global configuration
 router-id 170.85.113.111
 # fib-update no
 # spf-delay 1
 # spf-holdtime 5
 
 # auth-key $password
 # auth-type none
 # hello-interval 10
 # metric 10
 # retransmit-interval 5
 # router-dead-time 40
 # router-priority 1
 # transmit-delay 1
 
 # areas
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
 }
 
 
 fxp0 is the external interface. The CARP interface is fxp1, and the
 internal interface is fxp2. Presently I have pf off.
 
 When I start ospfd I get the routes advertised by corporate, but they 
 don't
 see my route.
 
 What am I doing wrong?
 

You're not advertising any routes with this setup. redistribute static
is probably what you are looking for.
Another option would be to use passive interfaces like

area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface fxp2 {
passive
}
interface carp0 {
passive
}
}
   
   Could you explain what passive means in this context, please?
   
  
  It's in the man page:
   passive
   Prevent transmission and reception of OSPF packets on this 
  inter-
   face.
  
  The interface is still considered part of OSPF and therefor a stub network
  LSA is redistributed but no OSPF traffic is done on that interface. This
  is nice to add some directly connected interfaces or loopbacks instead of
  using redistribute connected.
 
 Thanks.
 
 So, in my case by not listing the pfsync interface (which is fxp1) in the
 ospfd.conf file at all. Neither will it be advertised, nor will traffic be
 sent over it, right?
 

Yes.

-- 
:wq Claudio

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 12:00:38PM -0400, stan wrote:
 On Mon, Oct 17, 2005 at 05:41:20PM +0200, Claudio Jeker wrote:
  On Mon, Oct 17, 2005 at 10:57:41AM -0400, stan wrote:
   On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
  
   
   Hmm, that seems to have gotten me close. Here's the new ospfd.conf file:
   
   
   # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
   
   # global configuration
   router-id 170.85.113.111
   
   # areas
   area 0.0.0.120 {
 interface fxp0 {
 auth-type none
 }
 interface fxp2 {
 auth-type none
 passive
 }
   }
   
  
  config stripped a bit
  
  
  That is not the config you pasted before. You are running OSPF
  over carp here. This is nuts and will not work. You can not run any kind
  of routing protocol over carp without major issues! If you have two
  routers in front of a common network use carp towards that network and
  OSPF to connect the two routers to the backbone.
  If one router fails ospf will take care and adjust the routing table.
  Currently I think you need to use redistribute static for that setup or
  wait a couple of days till I fixed something.
 
 Ah, in retrospect this makes sense. So the externa; interfaces on these 2
 machines don't need carp ata all. But I will still need it on the insid
 as the machines on the internal network just have static routes in them.
 So. I guess the gateway machines should each advertise their real
 interfaces in the ospfd.conf file? Or should that be their carp interface?
 

Currently it does not matter because the result is the same. In near
future the state of the interface should be considered before announcing
it -- this is done for redistribute connected but not for stub networks.
If both routers announce the same network with the same metric it is not
fully defined how traffic will flow. In case of ciscos it will do per flow
round robin over the two routers and this may cause some issues. So to fix
this issue you should add an additional metric 50 or so to the internal
interface on the backup router. Like:

area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface carp1 {
passive
metric 50
}
}

In that case the backup is less preferred and so routing will be directed
directly to the master. This helps especially pfsync.

  
  As I said before don't run ospf over carp. It will not work. You can use
  it fot the inside network but not for the one connected to the backbone.
   
 
 So, my ospfd.conf file should look like this?
 
 
 # areas
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface carp1 {
   auth-type none
   passive
   }
 }
 
 Or would this be better?
 
 # areas
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface fxp2 {
   auth-type none
   passive
   }
 }
 
 The external interface is fxp0, and the internal one is fxp2. The
 internal carp is carp1, and the outside one (carp0) will go away.
 

I would use the carp1 interface. As soon as we make stub network
announcements dependent of the link state fail over will be more smooth
and will also track some cases that are currently unhandled.

 Thanks very much for taking the time to educate me on this.
 

-- 
:wq Claudio

Re: ospfd.conf question

[stan]

On Mon, Oct 17, 2005 at 06:38:26PM +0200, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 12:00:38PM -0400, stan wrote:
  On Mon, Oct 17, 2005 at 05:41:20PM +0200, Claudio Jeker wrote:
   On Mon, Oct 17, 2005 at 10:57:41AM -0400, stan wrote:
On Mon, Oct 17, 2005 at 04:12:48PM +0159, Claudio Jeker wrote:
 On Mon, Oct 17, 2005 at 09:39:01AM -0400, stan wrote:
   

Hmm, that seems to have gotten me close. Here's the new ospfd.conf file:


# $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $

# global configuration
router-id 170.85.113.111

# areas
area 0.0.0.120 {
interface fxp0 {
auth-type none
}
interface fxp2 {
auth-type none
passive
}
}

   
   config stripped a bit
   
   
   That is not the config you pasted before. You are running OSPF
   over carp here. This is nuts and will not work. You can not run any kind
   of routing protocol over carp without major issues! If you have two
   routers in front of a common network use carp towards that network and
   OSPF to connect the two routers to the backbone.
   If one router fails ospf will take care and adjust the routing table.
   Currently I think you need to use redistribute static for that setup or
   wait a couple of days till I fixed something.
  
  Ah, in retrospect this makes sense. So the externa; interfaces on these 2
  machines don't need carp ata all. But I will still need it on the insid
  as the machines on the internal network just have static routes in them.
  So. I guess the gateway machines should each advertise their real
  interfaces in the ospfd.conf file? Or should that be their carp interface?
  
 
 Currently it does not matter because the result is the same. In near
 future the state of the interface should be considered before announcing
 it -- this is done for redistribute connected but not for stub networks.
 If both routers announce the same network with the same metric it is not
 fully defined how traffic will flow. In case of ciscos it will do per flow
 round robin over the two routers and this may cause some issues. So to fix
 this issue you should add an additional metric 50 or so to the internal
 interface on the backup router. Like:
 
 area 0.0.0.120 {
   interface fxp0 {
   auth-type none
   }
   interface carp1 {
   passive
   metric 50
   }
 }
 
 In that case the backup is less preferred and so routing will be directed
 directly to the master. This helps especially pfsync.

Yes, I was trying to think that part through. This makes sense. Thanks.

 
   
   As I said before don't run ospf over carp. It will not work. You can use
   it fot the inside network but not for the one connected to the backbone.

  
  So, my ospfd.conf file should look like this?
  
  
  # areas
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  interface carp1 {
  auth-type none
  passive
  }
  }
  
  Or would this be better?
  
  # areas
  area 0.0.0.120 {
  interface fxp0 {
  auth-type none
  }
  interface fxp2 {
  auth-type none
  passive
  }
  }
  
  The external interface is fxp0, and the internal one is fxp2. The
  internal carp is carp1, and the outside one (carp0) will go away.
  
 
 I would use the carp1 interface. As soon as we make stub network
 announcements dependent of the link state fail over will be more smooth
 and will also track some cases that are currently unhandled.
 
ne more question if I might. please.

Now I get this startup message:

phfw1# ospfd -d
startup
rde: new announced net 0.0.0.0/0
rde: new announced net 170.85.106.128/25
rde: new announced net 170.85.106.143/32
rde: new announced net 170.85.113.0/25
rde: new announced net 170.85.113.99/32
rde: new announced net 192.168.254.0/24
orig_rtr_lsa: area 0.0.0.120
orig_rtr_lsa: stub net, interface carp1
orig_rtr_lsa: stub net, interface fxp0

Just to confirm I should not be announcing the 192.x network even though I
see this message, right?


-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: ospfd.conf question

[Claudio Jeker]

On Mon, Oct 17, 2005 at 12:56:33PM -0400, stan wrote:
 On Mon, Oct 17, 2005 at 06:38:26PM +0200, Claudio Jeker wrote:
  On Mon, Oct 17, 2005 at 12:00:38PM -0400, stan wrote:
   On Mon, Oct 17, 2005 at 05:41:20PM +0200, Claudio Jeker wrote:

...

 ne more question if I might. please.
 
 Now I get this startup message:
 
 phfw1# ospfd -d
 startup
 rde: new announced net 0.0.0.0/0
 rde: new announced net 170.85.106.128/25
 rde: new announced net 170.85.106.143/32
 rde: new announced net 170.85.113.0/25
 rde: new announced net 170.85.113.99/32
 rde: new announced net 192.168.254.0/24
 orig_rtr_lsa: area 0.0.0.120
 orig_rtr_lsa: stub net, interface carp1
 orig_rtr_lsa: stub net, interface fxp0
 
 Just to confirm I should not be announcing the 192.x network even though I
 see this message, right?
 

The message is a bit missleading. It acctually means that the following
networks have been added to the list of candidates for redistribute
(connected|static|default). You can verify with ospfctl show database
self-originated and ospfctl show database router to show which networks
you announce.

-- 
:wq Claudio

Re: pf and linksys WRT55G not getting along

[Josh Webb]

Bob Ababurko wrote:
So, are you saying that my wireless router will become an access point 
when I just use the switch?


Yes, once you turn off the Linksys router's dhcp server and don't plug 
anything into the WAN port, it will just act as a switch and WAP.

Very high interrupts on a supermicro machine.

[dormando]

Hey all,

Attached is a dmesg of one of a pair of supermicro based firewalls I
recently bought. I had set them up as a CARP/pfsync redundant pair of
frontend firewalls for our network. However, after they reached 15,000
interrupts per second (~ 110 megabits of our site traffic), they passed 90%
CPU usage through interrupts and stopped being useful.

The machines have two built-in BGE nics. I swapped in an Intel PRO/1000MT
Dual Port Server Nic into a PCI-X 133mhz PCI slot, but it made absolutely no
difference in the interrupt load. The current firewalls in place are freebsd
machines running on supermicro hardware with two em based built-in nics
running past 40k interrupts without passing 50% CPU load on interrupts. The
only error I can see in the dmesg was this:

pcibios0: no compatible PCI ICU found: ICU vendor 0x8086 product 0x2640
pcibios0: Warning, unable to fix up PCI interrupt routing
pcibios0: PCI bus #5 is the last bus

... which as far as I can read, is harmless, but potentially causing
higher interrupt load?

Any hints as to where I should look next would be great. I'm about to
install the latest -current snapshot on the machine to see if there's a
recent fix.

I'm about 95% sure this is the motherboard we're using:
http://www.supermicro.com/products/motherboard/P4/E7221/P8SCT.cfm I'll check
with the order guy and confirm the PO.

There's a 3.4ghz P4 CPU in it, the two built-in nics, and a single PCI-X
133mhz PCI port which I used for the dual port server nic from intel. SATA
harddrive for what it's worth. Running OpenBSD 3.7 as a PF firewall. I've
tried changing a bunch of BIOS options, disabling interrupts, etc. I haven't
compiled my own kernel or built the OS or anything.

Thanks,
-Dormando

[demime 1.01d removed an attachment of type application/octet-stream which had 
a name of supermicro-dmesg]

Re: apm: connect error on IBM R50e

[Theo de Raadt]

 On Mon, Oct 17, 2005 at 03:27:12PM +0200, PrzemysE?aw Nowaczyk wrote:
  Jason McIntyre wrote:
  
  i don't know much about the issues involved (i don't know anything about
  them actually) but basically apm is not supported on this machine.
  
  i have an r40e with the same issue, and it is a royal pain for a laptop ;(
  
  so what you want to tell is that it won't change..? that's a sad news.. 
  actually I bought this machine to be on the road with OpenBSD.. and to 
  be honest I thought that since other ThinkPads work great this won't 
  have any issues either.. and now I begin to regret my choice..
  Really nothing can bo done?
  
 
 i can't say that, since i don't know. maybe mickey or theo can tell us
 the specific issue, but it's something to do with intel's choice of
 hardware i think...

It saddens me; appears that at least some newer IBM laptops have removed
the legacy APM support.

Over the last few years IBM has been doing the best job of all laptop
vendors.  Instead of having an increasingly crummy APM implimentation as
other vendors have had, they instead had a proper and good shim doing
APM on top of the internal ACPI codebase, hence APM worked just fine.

If they have finally decided to stop shipping with a working APM, IBM
laptops are now off my list.  They are now no better than anything
else.

But this is typical; companies always shoot themselves in the foot.
There is such a great disconnect with minor (but very dedicated)
groups in their user base.  How modern of them..

pf and ospf

[stan]

What ports do I need to open up on a pf firewall to allow it to
send/recieve ospf?

-- 
U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong 
Terror 
- New York Times 9/3/1967

Re: apm: connect error on IBM R50e

[STeve Andre']

On Monday 17 October 2005 16:03, Theo de Raadt wrote:
  On Mon, Oct 17, 2005 at 03:27:12PM +0200, PrzemysE?aw Nowaczyk wrote:
   Jason McIntyre wrote:
   i don't know much about the issues involved (i don't know anything
about them actually) but basically apm is not supported on this
machine.
   
   i have an r40e with the same issue, and it is a royal pain for a
laptop ;(
  
   so what you want to tell is that it won't change..? that's a sad news..
   actually I bought this machine to be on the road with OpenBSD.. and
   to be honest I thought that since other ThinkPads work great this won't
   have any issues either.. and now I begin to regret my choice.. Really
   nothing can bo done?
 
  i can't say that, since i don't know. maybe mickey or theo can tell us
  the specific issue, but it's something to do with intel's choice of
  hardware i think...

 It saddens me; appears that at least some newer IBM laptops have removed
 the legacy APM support.

 Over the last few years IBM has been doing the best job of all laptop
 vendors.  Instead of having an increasingly crummy APM implimentation as
 other vendors have had, they instead had a proper and good shim doing
 APM on top of the internal ACPI codebase, hence APM worked just fine.

 If they have finally decided to stop shipping with a working APM, IBM
 laptops are now off my list.  They are now no better than anything
 else.

 But this is typical; companies always shoot themselves in the foot.
 There is such a great disconnect with minor (but very dedicated)
 groups in their user base.  How modern of them..

   The R series of ThinkPads are a little weird in some respects, and
I don't think were designed by IBM themselves, but possibly Acer or
another company.  This is like the i series ThinkPads, which were
not as good as the other more expensive units of the day.

   The flagship series T units should do apm just fine.  I briefly
tried a T41p and all seemed well, and the i386-laptop page seems
to confirm this with other T's.  The X series are good too according
to the ThinkPad snobs I know.

   But nothing beats my A31p, which they aren't making any more...

--STeve Andre'

Re: pf and ospf

[Claudio Jeker]

On Mon, Oct 17, 2005 at 04:32:26PM -0400, stan wrote:
 What ports do I need to open up on a pf firewall to allow it to
 send/recieve ospf?
 

pass proto ospf

OSPF is a IP protocol like UDP or TCP.

-- 
:wq Claudio

Re: apm: connect error on IBM R50e

[Matthew Weigel]

STeve Andre' wrote:

The R series of ThinkPads are a little weird in some respects, and
 I don't think were designed by IBM themselves, but possibly Acer or
 another company.

Like... Lenovo?
-- 
 Matthew Weigel
 hacker
 [EMAIL PROTECTED]

Re: Very high interrupts on a supermicro machine.

[dormando]

On 10/17/05, dormando [EMAIL PROTECTED] wrote:
 Hey all,

[...]

My apologies for mime'ing the dmesg :( I post here once a year or so.

It looks like the latest snapshot from the FTP does a lot better with
interrupts (about 150k pps before getting into the danger area), and
interrupts never go above 8k/sec. The dmesg for the latest snapshot
has this instead of the pcibios error:

pcibios0 at bios0: rev 3.0 @ 0xf/0xcb84
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfca20/336 (19 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00)
pcibios0: PCI bus #5 is the last bus

3.7 dmesg follows:

OpenBSD 3.7 (GENERIC) #50: Sun Mar 20 00:01:57 MST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.40GHz (GenuineIntel 686-class) 3.40 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,PNI,MWAIT,EST,CNXT-ID
cpu0: Enhanced SpeedStep 1700 MHz (1420 mV): unknown EST cpu, no
changes possible
real mem  = 2144837632 (2094568K)
avail mem = 1951232000 (1905500K)
using 4278 buffers containing 107343872 bytes (104828K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(d2) BIOS, date 04/07/05, BIOS32 rev. 0 @ 0xfa000
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
pcibios0 at bios0: rev 3.0 @ 0xf/0xcb84
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfca20/336 (19 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: no compatible PCI ICU found: ICU vendor 0x8086 product 0x2640
pcibios0: Warning, unable to fix up PCI interrupt routing
pcibios0: PCI bus #5 is the last bus
bios0: ROM list: 0xc/0x9400! 0xcc000/0x1800
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 MCH Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
em0 at pci2 dev 1 function 0 Intel PRO/1000MT DP (82546EB) rev 0x03:
irq 5, address: 00:04:23:bf:11:6c
em1 at pci2 dev 1 function 1 Intel PRO/1000MT DP (82546EB) rev 0x03:
irq 12, address: 00:04:23:bf:11:6d
vendor Intel, unknown product 0x0326 (class system subclass
interrupt, rev 0x09) at pci1 dev 0 function 1 not configured
vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05: aperture
at 0xd040, size 0x800
wsdisplay0 at vga1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
ppb2 at pci0 dev 28 function 0 Intel 82801FB PCIE rev 0x03
pci3 at ppb2 bus 3
bge0 at pci3 dev 0 function 0 Broadcom BCM5721 rev 0x11, unknown
BCM5750 (0x4101): irq 5 address 00:30:48:84:cd:ca
brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
ppb3 at pci0 dev 28 function 1 Intel 82801FB PCIE rev 0x03
pci4 at ppb3 bus 4
bge1 at pci4 dev 0 function 0 Broadcom BCM5721 rev 0x11, unknown
BCM5750 (0x4101): irq 12 address 00:30:48:84:cd:cb
brgphy1 at bge1 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
uhci0 at pci0 dev 29 function 0 Intel 82801FB USB rev 0x03: irq 9
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 10
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 10
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 5
usb3 at uhci3: USB revision 1.0
uhub3 at usb3
uhub3: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub3: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 29 function 7 Intel 82801FB USB rev 0x03: irq 9
ehci0: EHCI version 1.0
ehci0: companion controllers, 2 ports each: uhci0 uhci1 uhci2 uhci3
usb4 at ehci0: USB revision 2.0
uhub4 at usb4
uhub4: Intel EHCI root hub, class 9/0, rev 2.00/1.00, addr 1
uhub4: single transaction translator
uhub4: 8 ports with 8 removable, self powered
ppb4 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xd3
pci5 at ppb4 bus 5
pcib0 at pci0 dev 31 function 0 Intel 82801FB LPC rev 0x03
pciide0 at pci0 dev 31 function 1 Intel 82801FB IDE rev 0x03: DMA,
channel 0 configured to compatibility, channel 1 configured to
compatibility
pciide0: channel 0 disabled (no drives)
pciide0: channel 1 disabled (no drives)
pciide1 at pci0 dev 31 function 2 Intel 82801FR SATA rev 0x03: DMA,
channel 0 configured to native-PCI, channel 1 configured to native-PCI
pciide1: using irq 10 for native-PCI interrupt
wd0 at pciide1 channel 0 drive 0: Maxtor 6Y080M0
wd0: 16-sector PIO, LBA, 78167MB, 160086528 sectors
wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5

Re: apm: connect error on IBM R50e

[frantisek holop]

hmm, on Mon, Oct 17, 2005 at 02:03:46PM -0600, Theo de Raadt said that
 It saddens me; appears that at least some newer IBM laptops have removed
 the legacy APM support.

apparently all the notebooks/laptops are dropping apm sooner or later.
my first toshiba did not have apm at all, and it was a 2004 model..

the second one has apm, but no hybernation, no sleep, just some
light sleep, and the battery meter is not working...

so having apm can be just as useless as not having at all ;-)



before buying it's a good idea to try a bootcd...
of course most of the selling staff will not allow this.
or one might look for dmesgs on the internet before buying
a particular model.

-f
-- 
i'll mention you on my organ donor card.

Intel PRO/1000 MT Dual Port Server Adapter Issues

[Ken Gunderson]

Hello All:

I'm having some issues w/an Intel PRO/1000 MT Dual Port Server Adapter
in an OBSD-3.7 box.  The card is in the pci-x riser on one of
these puppies;

http://www.tyan.com/products/html/gt20b5151.html

Dmesg complains the The EEPROM Checksum Is Not Valid.  I've tested
the card in a Winblows machine and it works.  Any insights as to what
is going on here greatly appreciated.


Full dmesg follows:

OpenBSD 3.7 (GENERIC) #0: Fri Oct 14 03:11:48 MDT 2005
[EMAIL PROTECTED]:/mnt/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.20
GHz cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,PNI,MWAIT,EST,CNXT-
ID cpu0: Enhanced SpeedStep 1600 MHz (1388 mV): unknown EST cpu, no
changes possible real mem  = 1063755776 (1038824K) avail mem =
963338240 (940760K) using 4278 buffers containing 53288960 bytes
(52040K) of memory mainbus0 (root)
bios0 at mainbus0: AT/286+(ca) BIOS, date 05/13/05, BIOS32 rev. 0 @
0xfaee0 apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
pcibios0 at bios0: rev 3.0 @ 0xf/0xd6f4
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfd5a0/320 (18 entries)
pcibios0: bad IRQ table checksum
pcibios0: PCI BIOS has 19 Interrupt Routing table entries
pcibios0: PCI Exclusive IRQs: 3 5 7 10 15
pcibios0: no compatible PCI ICU found
pcibios0: Warning, unable to fix up PCI interrupt routing
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x9400! 0xef000/0x1000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 MCH Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
em0 at pci2 dev 3 function 0 Intel PRO/1000MT DP (82546EB) rev 0x01:
irq 10em0: The EEPROM Checksum Is Not Valid em0: Unable to initialize
the hardware em1 at pci2 dev 3 function 1 Intel PRO/1000MT DP
(82546EB) rev 0x01: irq 15em1: The EEPROM Checksum Is Not Valid em1:
Unable to initialize the hardware vendor Intel, unknown product
0x0326 (class system subclass interrupt, rev 0x09) at pci1 dev 0
function 1 not configured vga1 at pci0 dev 2 function 0 Intel E7221
Video rev 0x05: aperture at 0xfdf0, size 0x800 wsdisplay0 at
vga1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added
(80x25, vt100 emulation) ppb2 at pci0 dev 28 function 0 Intel 82801FB
PCIE rev 0x03 pci3 at ppb2 bus 3 ppb3 at pci0 dev 28 function 1 Intel
82801FB PCIE rev 0x03 pci4 at ppb3 bus 4
bge0 at pci4 dev 0 function 0 Broadcom BCM5721 rev 0x11, unknown
BCM5750 (0x4101): irq 5 address 00:e0:81:2f:f0:42 brgphy0 at bge0 phy
1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb4 at pci0 dev 28 function 2
Intel 82801FB PCIE rev 0x03 pci5 at ppb4 bus 5
bge1 at pci5 dev 0 function 0 Broadcom BCM5721 rev 0x11, unknown
BCM5750 (0x4101): irq 10 address 00:e0:81:2f:f0:43 brgphy1 at bge1 phy
1: BCM5750 10/100/1000baseT PHY, rev. 0 uhci0 at pci0 dev 29 function 0
Intel 82801FB USB rev 0x03: irq 3 usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 15
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 10
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 7
usb3 at uhci3: USB revision 1.0
uhub3 at usb3
uhub3: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub3: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 29 function 7 Intel 82801FB USB rev 0x03: irq 3
ehci0: EHCI version 1.0
ehci0: companion controllers, 2 ports each: uhci0 uhci1 uhci2 uhci3
usb4 at ehci0: USB revision 2.0
uhub4 at usb4
uhub4: Intel EHCI root hub, class 9/0, rev 2.00/1.00, addr 1
uhub4: single transaction translator
uhub4: 8 ports with 8 removable, self powered
ppb5 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xd3
pci6 at ppb5 bus 6
fxp0 at pci6 dev 2 function 0 Intel 82557 rev 0x10, i82550: irq 7,
address 00:e0:81:2f:f0:08 inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev.
4 pcib0 at pci0 dev 31 function 0 Intel 82801FB LPC rev 0x03
pciide0 at pci0 dev 31 function 1 Intel 82801FB IDE rev 0x03: DMA,
channel 0 configured to compatibility, channel 1 configured to
compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at
atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: QSI, CD-ROM
SCR-242, CXAC SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode
4, Ultra-DMA mode 2 pciide0: no compatibility interrupt for use by
channel 1 pciide1 at pci0 dev 31 function 2 Intel 

audio input on 3.7 GENERIC#453 sparc64

[Larry O'Neill (H.S.A.)]

Hi,
I'm haveing some trouble with trying to get audio input to work on
my Ultra60 machine. Audio playback is working no problem, but when I try
to take any input from /dev/audio:

mymachine$ dd if=/dev/audio of=recorded.raw
dd: /dev/audio: Device not configured
0+0 records in
0+0 records out
0 bytes transferred in 0.002 secs (0 bytes/sec)

Also, what reutrns form audioctl:

mymachine$ audioctl -a | head
name=SUNW,CS4231
version=b
config=onboard1
encodings=mulaw:8,alaw:8,slinear_le:16,ulinear:8,slinear_be:16,slinear:8*,ulinear_le:16*,ulinear_be:16*,adpcm:8
properties=full_duplex
full_duplex=0
fullduplex=0
blocksize=400
hiwat=163
lowat=1


which suggests an audiocs interface, but my dmesg tells me that it's not
audiocs, but audioce:

mymachine$ dmesg | grep audio
audioce0 at ebus0 addr 20-2000ff, 702000-70200f, 704000-70400f,
722000-722003 ipl 35 ipl 36: nvaddrs 0
audio0 at audioce0

I have been playing about with all of the parameters in mixerctl and
audioctl, but it doesnt seem to be making any difference, or it complains.
mixerctl only complains when I try to edit any of the record parameters:

mymachine$ mixerctl -av
inputs.dac=8,8 volume
inputs.dac.mute=off  [ on off ]
inputs.line=8,8 volume
inputs.line.mute=off  [ on off ]
inputs.mic=0 volume
inputs.mic.mute=on  [ on off ]
inputs.cd=8,8 volume
inputs.cd.mute=on  [ on off ]
monitor.monitor=7 volume
outputs.monitor.mute=on  [ on off ]
outputs.output=200,200 volume
outputs.output.mute=on  [ on off ]
record.record=0,0 volume
record.record.source=mic  [ cd mic dac ]
monitor.output=headphones  [ speaker line headphones ]
mymachine$ mixerctl monitor.monitor=8
monitor.monitor: 7 - 8
mymachine$ mixerctl record.record.source=dac
mixerctl: AUDIO_MIXER_WRITE: Invalid argument
mymachine$

whereas for anything I try to change in audioctl, I get:

audioctl: set failed: Invalid argument


I find it very strange that the audio output is ok, but the input not


any suggestions?
thanks
Larry

Re: Intel PRO/1000 MT Dual Port Server Adapter Issues

[Jason Dixon]

On Oct 17, 2005, at 8:59 PM, Damien Gardner Jnr wrote:
[ Redirecting back to misc@ where this belongs ]


From: Ken Gunderson [EMAIL PROTECTED]
To: pf@benzedrine.cx

I'm having some issues w/an Intel PRO/1000 MT Dual Port Server  
Adapter

in an OBSD-3.7 firewall.  The card is in the pci-x riser on one of
these puppies;
Dmesg complains the The EEPROM Checksum Is Not Valid.  I've tested
the card in a Winblows machine and it works.  Any insights as to what
is going on here greatly appreciated.


We had exactly the same problem with dual and quad versions of  
these same
cards - we ended up swapping to PCI cards and changing the  
motherboard to

something with enough PCI slots to support all the cards..  :\


If this is the case, I'm glad this became public.  I'm about to fork  
out for some of these.  Can anyone suggest any specific Gig-E dual  
port cards that work well with 3.7-3.8?  Vendor recommendations welcome.


Thanks,

--
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net

Re: HFSC and PF docs

[Marcos Vinicius Buzo]

Thanks for all your replies guys, I'll read about it and try to get it to
work :)


On 10/17/05, jared r r spiegel [EMAIL PROTECTED] wrote:

 On Mon, Oct 17, 2005 at 01:37:58AM -0200, Marcos Vinicius Buzo wrote:
  Hello, I am trying to find out some docs about HFSC scheduler and PF,
 but I
  did not found it anywhere, in the pf.conf man page and PF Users Guide
 there
  are no examples that cover HFSC usage, only PRIQ and CBQ.
  Does anybody know where I can find it ?

 searching through the archives gave you no info too?

 that's a bummer, i know i've babbled on about HFSC a few times on misc@
 and pf@, and trevor talbot has posted info as well, among others.

 jared

 --

 [ openbsd 3.8 GENERIC ( sep 27 ) // i386 ]

Re: Intel PRO/1000 MT Dual Port Server Adapter Issues

[Kenneth Oncinian]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

I concur, I have also the exact network card, and have no problem with
3.7.

- --snip--

em0 at pci0 dev 14 function 0 Intel PRO/1000MT DP (82546EB) rev
0x03: irq 10, address:00:04:23:b7:87:16
em1 at pci0 dev 14 function 1 Intel PRO/1000MT DP (82546EB) rev
0x03: irq 5, address: 00:04:23:b7:87:17

- --snip--


- --full dmesg--

OpenBSD 3.7 (RAMDISK_CD) #573: Sun Mar 20 00:27:05 MST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel(R) Pentium(R) 4 CPU 1.70GHz (GenuineIntel 686-class)
1.72 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM
real mem  = 129589248 (126552K)
avail mem = 112664576 (110024K)
using 1607 buffers containing 6582272 bytes (6428K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(dc) BIOS, date 05/03/02, BIOS32 rev. 0 @
0xf11c0
apm0 at bios0: Power Management spec V1.2
apm0: APM power management enable: unrecognized device ID (9)
apm0: APM engage (device 1): power management disabled (1)
pcibios0 at bios0: rev 2.1 @ 0xf/0x19b2
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf1930/128 (6 entries)
pcibios0: PCI Interrupt Router at 000:02:0 (SIS 85C503 System rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xc000 0xcc000/0x4000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 SIS 650 PCI rev 0x01
ppb0 at pci0 dev 1 function 0 SIS 86C201 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 SIS 650 VGA rev 0x00
wsdisplay0 at vga1: console (80x25, vt100 emulation)
pcib0 at pci0 dev 2 function 0 SIS 961 PCI rev 0x00
ohci0 at pci0 dev 2 function 2 SIS 5597/5598 USB rev 0x07: irq 9,
version 1.0, legacy support
ohci0: SMM does not respond, resetting
usb0 at ohci0: USB revision 1.0
uhub0 at usb0
uhub0: SIS OHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 3 ports with 3 removable, self powered
ohci1 at pci0 dev 2 function 3 SIS 5597/5598 USB rev 0x07: irq 9,
version 1.0, legacy support
ohci1: SMM does not respond, resetting
usb1 at ohci1: USB revision 1.0
uhub1 at usb1
uhub1: SIS OHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub1: 3 ports with 3 removable, self powered
pciide0 at pci0 dev 2 function 5 SIS 5513 EIDE rev 0xd0: 650: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: ST340015A
wd0: 16-sector PIO, LBA, 38166MB, 78165360 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
atapiscsi0 at pciide0 channel 1 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: , CD-S520/A, 1.8X SCSI0 5/cdrom removable
cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2
SIS 7012 AC97 rev 0xa0 at pci0 dev 2 function 7 not configured
em0 at pci0 dev 14 function 0 Intel PRO/1000MT DP (82546EB) rev
0x03: irq 10, address: 00:04:23:b7:87:16
em1 at pci0 dev 14 function 1 Intel PRO/1000MT DP (82546EB) rev
0x03: irq 5, address: 00:04:23:b7:87:17
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0 (mux 1 ignored for console): console keyboard, using
wsdisplay0
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask fbc5 netmask ffe5 ttymask ffe7
rd0: fixed, 3800 blocks
uhidev0 at uhub0 port 1 configuration 1 interface 0
uhidev0: Genius NetScroll, rev 1.10/1.10, addr 2, iclass 3/1
uhid at uhidev0 not configured
wd0: no disk label
root on rd0a
rootdev=0x1100 rrootdev=0x2f00 rawdev=0x2f02
wd0: no disk label
syncing disks... OpenBSD 3.7 (RAMDISK_CD) #573: Sun Mar 20 00:27:05
MST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel(R) Pentium(R) 4 CPU 1.70GHz (GenuineIntel 686-class)
1.72 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM
real mem  = 129589248 (126552K)
avail mem = 112664576 (110024K)
using 1607 buffers containing 6582272 bytes (6428K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(dc) BIOS, date 05/03/02, BIOS32 rev. 0 @
0xf11c0
apm0 at bios0: Power Management spec V1.2
apm0: APM power management enable: unrecognized device ID (9)
apm0: APM engage (device 1): power management disabled (1)
pcibios0 at bios0: rev 2.1 @ 0xf/0x19b2
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf1930/128 (6 entries)
pcibios0: PCI Interrupt Router at 000:02:0 (SIS 85C503 System rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xc000 0xcc000/0x4000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 SIS 650 PCI rev 0x01
ppb0 at pci0 dev 1 function 0 SIS 86C201 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 SIS 650 VGA rev 0x00

Firewalling with PF, AUUG2005 edition

[Peter N. M. Hansteen]

I've updated the Firewalling with PF manuscript for the AUUG2005
conference.  So far only the English version with slides is available.
I will get the Norwegian updated as soon as possible, but presumably
not until next week or so. Comments welcome as always. And yes, it's
still BSD licensed.

Highlights: New sections: 
Info on bruteforce protection
Wireless net setup
authpf with wireless net

updates to the spamd section
updates to traceroute section

The updated versions are up at 

http://www.bgnett.no/~peter/pf/en/ - full text, html, English
http://www.bgnett.no/~peter/pf/en/long-firewall.html - full text, one html 
file, English
http://www.bgnett.no/~peter/pf/en/pf-firewall.pdf - full text, pdf, English
http://www.bgnett.no/~peter/pf/en/foils/ - slides

-- 
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
First, we kill all the spammers The Usenet Bard, Twice-forwarded tales

Re: Intel PRO/1000 MT Dual Port Server Adapter Issues

[Ken Gunderson]

On Mon, 17 Oct 2005 22:10:53 -0400
Jason Dixon [EMAIL PROTECTED] wrote:

 On Oct 17, 2005, at 8:59 PM, Damien Gardner Jnr wrote:
 [ Redirecting back to misc@ where this belongs ]
 
  From: Ken Gunderson [EMAIL PROTECTED]
  To: pf@benzedrine.cx
 
  I'm having some issues w/an Intel PRO/1000 MT Dual Port Server  
  Adapter
  in an OBSD-3.7 firewall.  The card is in the pci-x riser on one of
  these puppies;
  Dmesg complains the The EEPROM Checksum Is Not Valid.  I've tested
  the card in a Winblows machine and it works.  Any insights as to what
  is going on here greatly appreciated.
 
  We had exactly the same problem with dual and quad versions of  
  these same
  cards - we ended up swapping to PCI cards and changing the  
  motherboard to
  something with enough PCI slots to support all the cards..  :\
 
 If this is the case, I'm glad this became public.  I'm about to fork  
 out for some of these.  Can anyone suggest any specific Gig-E dual  
 port cards that work well with 3.7-3.8?  Vendor recommendations welcome.

I also know a guy who has 4 port version of this card on OBSD-3.7 and I
am also pretty sure it's in a 1U server- so it's probably indicates a
pci riser. I'm wondering if this is something specific to the Tyan
B5151??  These are pretty popular units so I would think others would
have run into similar issues if it were the server hardware.

I've gone through the BIOS and turned everything off so as to minimize
potential for any irq conflicts but it's still no joy.

-- 
Best regards,

Ken Gunderson

Q: Because it reverses the logical flow of conversation.
A: Why is putting a reply at the top of the message frowned upon?

Re: OpenBSD Kernel Crash in uvm_fault or uvm_rb_remove (not quite sure which it originates from)

[eric]

On Mon, 2005-10-17 at 19:57:31 -0600, Wolfpaw - Dale Corse proclaimed...

 It dropped to DDB (because I forgot to disable it :( and I did
 The following:

First thing you should probably do is actually read what is on the screen
and actually send the output of ps, trace and a dmesg(8). Else, you're not
going to get much reliable support.

RTFM -- it's a good catch phrase. Tell your friends, and enemies.

Re: ATI SB200 USB ports on Toshiba Satellite

[Sophie]

Hi Jonathan,
(please read my message in full and see my desperation - All I want is 
my usb port working - I've got no mouse)

You may not have got my last email. My question was:

If ATI don't release information about their hardware designs, then how
did the OpenBSD developers get the info needed to write the driver for
my dreadfully incompatible ATI IXP soundcard in this system (sound works
under 3.8 snapshots)?
Also, USB works under NetBSD 2.0/Linux (FC3-4, SuSe - I've tried it). 
How did they get it working?
How come OpenBSD developers can't?
It's all I want. I'd even be prepared to pay for it (If you count all of 
the OpenBSD CD releases that I've already bought in the past, I've 
already paid for it)

Please, please help me.

Regards,
Sophie

- Original Message - 
From: Sophie [EMAIL PROTECTED]
To: Jonathan Gray [EMAIL PROTECTED]
Cc: misc@openbsd.org
Sent: Saturday, October 08, 2005 10:53 PM
Subject: Re: ATI SB200 USB ports on Toshiba Satellite


 Thanks for the response Jonathan,

 Not questioning you. Just asking for enlightenment!

 If ATI don't release information about their hardware
 designs, then how did the OpenBSD developers
 get the info needed to write the driver for my dreadfully incompatible
 ATI IXP soundcard in this system (sound works under 3.8 snapshots)?

 Regards,
 Soph

 - Original Message - 
 From: Jonathan Gray [EMAIL PROTECTED]
 To: Sophie [EMAIL PROTECTED]
 Cc: Chris Kuethe [EMAIL PROTECTED]; misc@openbsd.org
 Sent: Saturday, October 08, 2005 8:57 PM
 Subject: Re: ATI SB200 USB ports on Toshiba Satellite


 On Sat, Oct 08, 2005 at 05:38:10PM +1000, Sophie wrote:
 Hi Chris and thanks for the reply.

 I know that if it's not loudly announced here there's
 a good chance it won't be looked at but my soundcard
 was in the same boat as the USB (It's an ATI
 IXP200 - also an uncommon beast - now works under
 3.8 using the auixp driver). I never saw anything
 mentioned about my difficult soundcard in misc or
 anywhere else for that matter and yet 3.8 supports
 it (there are still Linux distros out there that don't).

 I don't care about anything else other than the USB ports.
 REALLY: This is making life unbearable.
 I can't use a USB mouse and I have no serial ports.
 I have no mouse (the touchpad doesn't work properly).
 I can't use any USB devices at all (but the mouse is all
 that matters to me). I'm desperate. I LOVE OpenBSD
 and have been a follower for many years now but this is
 making the OpenBSD experience extremely extremely painful
 and almost impossible to use whether in X or console.

 I realize they can only do what they can do and if it's
 unfixable, then I won't know what to do then, but for
 the last year and a half, I've waited to see if the new release
 will fix it and I don't know how many CD's I've wasted
 trying the 3.8 snapshots ever time they're updated, to
 no avail.

 Please help me.

 SophieL
OpenBSD 3.8-current (GENERIC) #191: Thu Oct 13 14:58:02 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Mobile
Intel(R) Pentium(R) 4 CPU 3.06GHz (GenuineIntel 686-class) 3.07 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,EST,TM2,CNXT-ID
cpu0:
Enhanced SpeedStep 2300 MHz (1356 mV): unknown EST cpu, no changes possible
real mem  = 200843264 (196136K)
avail mem = 176422912 (172288K)
using 2477
buffers containing 10145792 bytes (9908K) of memory
mainbus0 (root)
bios0 at
mainbus0: AT/286+(1a) BIOS, date 02/16/04, BIOS32 rev. 0 @ 0xe99b0
apm0 at
bios0: Power Management spec V1.1
apm0: battery life expectancy 100%
apm0: AC
on, battery charge unknown, estimated 4:18 hours
apm0: flags 30102 dobusy 0
doidle 1
pcibios0 at bios0: rev 2.1 @ 0xe7000/0x680
pcibios0: PCI IRQ Routing
Table rev 1.0 @ 0xfe840/176 (9 entries)
pcibios0: no compatible PCI ICU found:
ICU vendor 0x1002 product 0x4353
pcibios0: Warning, unable to fix up PCI
interrupt routing
pcibios0: PCI bus #3 is the last bus
bios0: ROM list:
0xc/0xf000 0xe/0x2000! 0xe6000/0x1000! 0xeb000/0x5000!
ipmi at
mainbus0 not configured
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration
mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 ATI RS300 Host rev 0x02
ppb0
at pci0 dev 1 function 0 ATI Radeon IGP 9100 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 5 function 0 ATI Radeon Mobility IGP 9100 rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen
1-5 added (80x25, vt100 emulation)
ohci0 at pci0 dev 19 function 0 ATI SB200
USB rev 0x01pci_intr_map: no mapping for pin A
: couldn't map interrupt
ohci1
at pci0 dev 19 function 1 ATI SB200 USB rev 0x01pci_intr_map: no mapping for
pin A
: couldn't map interrupt
ehci0 at pci0 dev 19 function 2 ATI SB200
USB2 rev 0x01pci_intr_map: no mapping for pin A
: couldn't map interrupt
ATI
SB200 SMBus rev 0x1a at pci0 dev 20 function 0 not configured
pciide0 at pci0
dev 20 function 1 ATI IXP200 IDE rev 0x00: DMA, channel 0 

DNS question

[man Chan]

Hello,

I have a problem in DNS. Here is the diagram of my
network. 

internet
  |
  V
 ISP
  |
  V
obsd-3.6 (FW,DNS) 192.168.1.0/24
  |
  V
switch -wired- obsd-3.8-AP -wireless-
obsd,window-xp 
 |-- 192,168.2.0/24

1. I have setup routes that obsd-3.6(FW,DNS) between
obsd-3.8-AP.

2. I have setup intructs the obsd and the window-xp to
use the nameserver at obsd-3.6(FW,DNS).

3. I can ping the internet using IP like 129.128.5.191
(www.openbsd.org) at obsd, window-xp. However, I can't
ping with the names like www.openbsd.org.

I would like to know if it is possible for the obsd
and the window-xp client to access the nameserver at
obsd-3.6 (FW)

Thanks

Clarence



___
 7Q'Y.I,(l7s email 3q*!H
 $U8| Yahoo! Messenger http://messenger.yahoo.com.hk