How to debug IPSec and PF problem

Hi all, I've got a VPN running between two networks. Works fine for basically everything and very easy to setup, kudos to the guys that worked on ipsecctl and isakmpd. I have one problem though that I am trying to debug. Network looks like this: 192.168.11.250# Asterisk1 |

Re: Longest Uptime?

new_guy schrieb: I know. Longest uptime is silly, macho, pointless stuff... but I ran across an old SunOS 2.6 box that had been up for 387 days. It had been hacked. The only reason it was not an open mail relay is that /var was full. So, I thought to myself, I bet I could run an OpenBSD box

Re: NTFS-3G Stable Read/Write Driver ready to merge on cvs obsd ?

Heimdall Imbert [EMAIL PROTECTED] writes: Hahaha, I wanted to say the same thing but figured that this wouldn't be an appropriate venue for a discussion of this nature. But since someone else brought it up, I figure I might as well add my two cents. I currently run Debian and Windows XP on

Re: How to debug IPSec and PF problem

On Wed, 29 Oct 2008 17:01:21 +1100, Mikel Lindsaar wrote: Hi all, I've got a VPN running between two networks. Works fine for basically everything and very easy to setup, kudos to the guys that worked on ipsecctl and isakmpd. I have one problem though that I am trying to debug. Network looks

Re: Longest Uptime?

new_guy [EMAIL PROTECTED] writes: I know. Longest uptime is silly, macho, pointless stuff... but I ran across an old SunOS 2.6 box that had been up for 387 days. It had been hacked. The only reason it was not an open mail relay is that /var was full. So, I thought to myself, I bet I could run

Re: Longest Uptime?

On Tue, Oct 28, 2008 at 11:45 PM, Guido Tschakert [EMAIL PROTECTED] wrote: Hmm, what about 180-190 days uptime max? Afaik you need to reboot your OpenBSD when you upgrade in May and November... guido Just hope an important kernel update doesn't come by within those six months. ;)

Re: How to debug IPSec and PF problem

-Urspr|ngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Rod Whitworth Gesendet: Mittwoch, 29. Oktober 2008 07:47 An: OpenBSD general usage list Betreff: Re: How to debug IPSec and PF problem On Wed, 29 Oct 2008 17:01:21 +1100, Mikel Lindsaar

Re: Capture serial port output to a file

On Tuesday 28 October 2008, Marc Balmer wrote: * Bruce Bauer wrote: Problem: OpenBSD 4.2 on i386 Serial port /dev/cua00 connected to the console port on a firewall. I need to catch all text output from the serial port to a file. The process doing this must survive a loss of network.

Re: Longest Uptime?

new_guy a icrit : I know. Longest uptime is silly, macho, pointless stuff... but I ran across an old SunOS 2.6 box that had been up for 387 days. It had been hacked. The only reason it was not an open mail relay is that /var was full. So, I thought to myself, I bet I could run an OpenBSD box for

Re: J.C. Roberts [EMAIL PROTECTED] saiz OpenBSD. --We won't miss you.

-Urspr|ngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von bofh Gesendet: Dienstag, 28. Oktober 2008 16:13 An: OpenBSD general usage list Betreff: Re: J.C. Roberts [EMAIL PROTECTED] saiz OpenBSD. --We won't miss you. On Tue, Oct 28, 2008 at 9:55

Re: OPENVAS on OpneBSD [was Re: PCI Compliant Vulnerability Scanner]

Simon, I have nearly completed a port of OpenVAS for OpenBSD. I have it running but a few things to resolve before submitting to the ports. Regards Nigel Taylor Simon Slaytor wrote: Dorian B|ttner wrote: Looking for openvas?

Re: Using OpenBGPD as a route-server

On Tue, Oct 28, 2008 at 04:24:02PM +0100, Hans Vosbergen wrote: Hi Misc, I am trying to make OpenBGPD work as a route-server for a little hobby project I am working on. As it's very hard to find configuration examples for this usage on the web i have to turn here. What I am trying to

Re: file encrypyion

Paul M wrote: I'm looking for a way to encrypy backup files for secure storage. Gpg is an obvious candidate, but I'm wondering if there's anything in base, perhaps a creative use of ssh or some other tool, though not something liable to break, obviously. Any thoughts would be much

Re: How to debug IPSec and PF problem

On Wed, Oct 29, 2008 at 8:06 PM, Christoph Leser [EMAIL PROTECTED] wrote: On Wed, 29 Oct 2008 17:01:21 +1100, Mikel Lindsaar wrote: I've got a VPN running between two networks. Works fine for basically If so why would traffic from one LAN host at the 192.168.4. end be any different to the

Re: J.C. Roberts [EMAIL PROTECTED] saiz OpenBSD. --We won't miss you.

On Wed, Oct 29, 2008 at 6:15 AM, Christoph Leser [EMAIL PROTECTED] wrote: I'm not a shell expert. Is this behaviour expected? wiki has a nice article on fork bombs. -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk This officer's men seem to follow him merely

FFS file system driver for Windows 2000/XP/2003

Hi, guys, I just want to share this link I just found. Didn't tried it yet, but others may want to try it too. Giving the results we get, it would be a good idea to include the link in the FAQ: How can I access my OpenBSD file system from Windows directly? http://ffsdrv.sourceforge.net/

Re: FFS file system driver for Windows 2000/XP/2003

On Wednesday 29 October 2008 14:55:58 Andris wrote: Hi, guys, I just want to share this link I just found. Didn't tried it yet, but others may want to try it too. Giving the results we get, it would be a good idea to include the link in the FAQ: How can I access my OpenBSD file system from

Re: Capture serial port output to a file -Solved

Combining suggestions from several people. I installed screen This gives me an interactive screen that doesn't die when I disconnect the session. Then in the screen session: cu -l /dev/cua00 -t | tee /var/log/log.console I can then kill my ssh connction, connect again and see that the screen and

Samo do 1. novembra pokloni i popusti

Poštovani, Podsećamo Vas da samo još 3 dana uz poklon i sa popustom možete poručiti sledeće proizvode: * Bun Thigh Doer po ceni od 5.990,00 RSD + POKLON Rina's 90 - priručnik za mršavljenje - poručite ovde! * Air Climber po ceni od 8.990,00 RSD + POKLON Rina's 90 - priručnik

4.4 in germany

Thank you all for the OpenBSD 4.4 CD set! Nice Pictures, nice stickers, nice song and great operating system :)

NATing traffic going into the ipsec tunnel

We need to connect to a vendor's network over VPN however they are telling us we need to NAT all the traffic going to their network. They also want publicly addressable IPs as the NATed address (go figure). I have read extensively and looked at manuals but can't quite get it working Set up is

Re: Longest Uptime?

Hi, Uptimes sucks. Here's the biggest i've ever seen in the company i work: [EMAIL PROTECTED] ~]$ uname -a SunOS optg998 5.6 Generic_105181-26 sun4u sparc SUNW,UltraSPARC-IIi-cEngine [EMAIL PROTECTED] ~]$ uptime 3:40pm up 2639 day(s), 13:50, 1 user, load average: 0.08, 0.07, 0.06 [EMAIL

Re: Longest Uptime?

On Wed, Oct 29, 2008 at 1:49 PM, guilherme m. schroeder [EMAIL PROTECTED] wrote: Ok it's not OpenBSD, blame on me. But what i liked is that this machine is working for 2639 days and it stills blink green leds. The We bought 2 machines (together). Expensive ones. After putting them in, my peon

multiple subnets and gateways on CARP interface

I apologize in advance if this has already been covered. I searched the mailing lists and didn't see any mention of exactly this question. So I have two redundant firewalls using CARP and NAT with one public subnet on the external interface and one private subnet on the internal

Re: Looking for EeePC 701

On Wed, Oct 29, 2008 at 06:45:11AM +0100, Marcus Glocker wrote: Hi Folks, We want to add USB BULK support for UVC devices in our uvideo(4) driver. There are not that many UVC devices around which do BULK transfers, but the advantage would be that BULK transfers are working a bit more

Re: Serial ATA RAID ctrl on PCI

For example: # bioctl arc0 Volume Status Size Device arc0 0 Online 199336448 sd0 RAID6 0 Online 500107862016 0:0.0 noencl ST3500320AS SD15 1 Online 500107862016 0:1.0 noencl ST3500630AS 3.AAG 2 Online 500107862016 0:2.0

congrats and update questions

Hi all, First I'd like to give my congrats to all OpenBSD dev team. The last time I used it was back in 2.5 release. I decided to check it out again when an old alpha came in my hands recently, which was ideal running particular services (replacement for an RS6000 that died). I also installed

Re: congrats and update questions

* Kapetanakis Giannis [EMAIL PROTECTED] [081029 15:32]: Hi all, First I'd like to give my congrats to all OpenBSD dev team. The last time I used it was back in 2.5 release. I decided to check it out again when an old alpha came in my hands recently, which was ideal running particular

new home box for secure data storage

I'll be setting up a new box for the house and I want to use OpenBSD for it, both for its security and since it will be an older box it will run better than with Debian. Roles: main firewall for dialup internet access. fetchmail and sendmail to ISP smarthost other simple stuff (have another box

Re: new home box for secure data storage

On Wed, Oct 29, 2008 at 04:14:22PM -0400, Douglas A. Tutty wrote: I'll be setting up a new box for the house and I want to use OpenBSD for it, both for its security and since it will be an older box it will run better than with Debian. Roles: main firewall for dialup internet access.

Como Organizar un Area de Capacitacion Orientada a Resultados

CC3mo Organizar un C
rea de CapacitaciC3n Orientada a Resultados MC)xico, D.F. - 06 de Noviembre B!Ultima PresentaciC3n del AC1o! Como responsable del C!rea de Recursos Humanos o CapacitaciC3n, usted estC! consciente que el fracaso o consolidaciC3n de la empresa y sus proyectos dependen del

Re: new home box for secure data storage

I think I want root to be able to mount/access the directories so that the data can be included in a backup set (which is then piped through openssl for encryption) on a file-by-file basis rather than just backing up a filesystem image and risking the whole thing if that image becomes

Re: new home box for secure data storage

On Wednesday 29 October 2008 16:41:36 Almir Karic wrote: On Wed, Oct 29, 2008 at 04:14:22PM -0400, Douglas A. Tutty wrote: I'll be setting up a new box for the house and I want to use OpenBSD for it, both for its security and since it will be an older box it will run better than with

Re: PostgreSQL Problems

Simon Connah wrote: Sorry if this is the wrong list, I debated whether to post it to ports but as it is not a problem with the port itself and is more a user problem (i.e I'm being stupid :)) I thought misc was probably more appropriate. Anyway I've been trying to get PostgreSQL setup on my

Management of HP Proliant DL and BL Series

I've got a few (10) HP DL and BL servers running OpenBSD. These are spread out over several sites and run our firewalls and monitoring servers. Trying to find the best way to monitor them for drive, psu failures etc. Has anyone had any success along this line? Looking at the various sites, the

Re: new home box for secure data storage

On Wed, Oct 29, 2008 at 09:41:36PM +0100, Almir Karic wrote: On Wed, Oct 29, 2008 at 04:14:22PM -0400, Douglas A. Tutty wrote: I'll be setting up a new box for the house and I want to use OpenBSD for it, both for its security and since it will be an older box it will run better than with

Re: new home box for secure data storage

On Wed, Oct 29, 2008 at 02:56:53PM -0700, Ted Unangst wrote: I think I want root to be able to mount/access the directories so that the data can be included in a backup set (which is then piped through openssl for encryption) on a file-by-file basis rather than just backing up a

Habilidades para Conducir Reuniones Eficaces

Habilidades para Conducir Reuniones Eficaces B!como Nunca Antes! MC)xico, D.F. - 06 de Noviembre B!Unica PresentaciC3n en el AC1o! Bloqueo mentalb improductividadb pC)rdida de tiempob B?Esto le suena familiar? Si usted ha participado en una mala reuniC3n, entonces ha vivido todo lo anterior.

Re: new home box for secure data storage

I'm confused, the encrypted volume cannot be backed up without a key? On Wed, Oct 29, 2008 at 8:45 PM, Douglas A. Tutty [EMAIL PROTECTED] wrote: On Wed, Oct 29, 2008 at 02:56:53PM -0700, Ted Unangst wrote: I think I want root to be able to mount/access the directories so that the data can

Re: new home box for secure data storage

On Wed, Oct 29, 2008 at 09:09:20PM -0500, patric conant wrote: I'm confused, the encrypted volume cannot be backed up without a key? Sure, I could backup the encrypted volume. However, I'd rather back the data up as an unencrypted directory along with everything else. I don't know what's

Corrupted RAIDFrame device

Hi all I have a simple 2 disk RAID 1 array which has become corrupted by a faulty memory module. If I repeatedly generate an MD5 hash on the same file, I consistantly get 1 of 2 values back, roughly alternating, so I assume that the 2 disks have different versions of the same file and they

Re: Longest Uptime?

2008/10/29 Gilles Chehade [EMAIL PROTECTED] new_guy a icrit : I know. Longest uptime is silly, macho, pointless stuff... but I ran across an old SunOS 2.6 box that had been up for 387 days. It had been hacked. The only reason it was not an open mail relay is that /var was full. So, I

Re: Capture serial port output to a file

On Oct 29, 2008, at 2:13 AM, J.C. Roberts wrote: On Tuesday 28 October 2008, Marc Balmer wrote: * Bruce Bauer wrote: Problem: OpenBSD 4.2 on i386 Serial port /dev/cua00 connected to the console port on a firewall. I need to catch all text output from the serial port to a file. The process