Re: obsd as domU?

On Wed, 13 Jan 2010 08:31 +0200, "Ciprian Dorin, Craciun" wrote: > On Wed, Jan 13, 2010 at 7:43 AM, J.C. Roberts > wrote: > > On Tue, 12 Jan 2010 10:41:15 +0200 "Ciprian Dorin, Craciun" > > wrote: > > > >> B B So I bet that the initial poster expected an (authoritative) answer > >> that should

Re: obsd as domU?

* Ciprian Dorin, Craciun [2010-01-13 07:37]: > This is only true if either: > * there is a security bug in the virtualization software (highly > improbable, and maybe easibly fixed); i owuld pee my pants (or maybe bob's instead) laughing if it wasn't so sad. it is this mindset that gets t

Re: obsd as domU?

On Wed, Jan 13, 2010 at 8:43 AM, Bret S. Lambert wrote: > How did "lazy internet denizen gets told he's lazy" turn into > anything worth spending this much time on? I would like to personally apologize for criticizing you, Bret, of "lmgtfy" the other guy (which I didn't knew he also posted an

Re: obsd as domU?

How did "lazy internet denizen gets told he's lazy" turn into anything worth spending this much time on?

Dear:misc:抗氧化還原水大發現: 新書隆重面世, 兼大抽獎!

Having problems viewing this email? Please click here. For enquiry, please send email to i...@sanwahk.net e&g!f3i1h.d;%d8ge'e.9o<h+f f-$ce&f d;;d=f%h)"h+i;i5h3 i...@sanwahk.netc please link with our home page: http://www.lea.org.hk HI,misc e&ff(

Re: obsd as domU?

On Wed, Jan 13, 2010 at 7:43 AM, J.C. Roberts wrote: > On Tue, 12 Jan 2010 10:41:15 +0200 "Ciprian Dorin, Craciun" > wrote: > >> B B So I bet that the initial poster expected an (authoritative) answer >> that should have came in the form of an advice based on experience or >> at least something

Re: Any good/bad experiences on OpenBSD4.6-release & Dell R(2|4|6)10 or HP DL320 G6

On Tue, 12 Jan 2010 20:31:51 + (GMT) a b wrote: > Hello (again), > > I'm planning to buy a couple of lower end servers for a PF & > VPN termination of a small network. > > Does anyone have any comments on OpenBSD > 4.6-release on Dell R210/410/610 or HP DL320 G6 ? > > Looking back through

/bsd: acpitz1: Critical temperature, shutting down

My X60 overheated and did a clean shutdown while building devel/jdk/1.6. This is the first time there has been a heat related issue on this laptop. It's running the latest BIOS (version 2.18) and an i386 snapshot from January 5th. /var/log/messages: Jan 12 19:40:27 x60 /bsd: acpithinkpad0: unknown

Re: obsd as domU?

On Tue, 12 Jan 2010 10:41:15 +0200 "Ciprian Dorin, Craciun" wrote: >So I bet that the initial poster expected an (authoritative) answer > that should have came in the form of an advice based on experience or > at least something useful... (Not lmgtfy, which I'm sure he already > did, but did

Re: can't get binat working

>> Do I need to set an alias IP (the mapped IP) for binat to work? >> >> > > Technically not, you just need 'some way' to get other hosts to send > you traffic for that address. Could be proxy arp, could be route table > entries (static or routing protocols), but in practice adding an > alias IP is

Re: Removing pf_pool

On Tue, Jan 12, 2010 at 11:11:54PM -0500, Pascal Lalonde wrote: > I just caught the following from openbsd-cvs: > > http://marc.info/?l=openbsd-cvs&m=126326657232193&w=2 > > If my understanding is correct, this means that it will become > impossible to emulate weighted round robin with constructs

Removing pf_pool

I just caught the following from openbsd-cvs: http://marc.info/?l=openbsd-cvs&m=126326657232193&w=2 If my understanding is correct, this means that it will become impossible to emulate weighted round robin with constructs like the one below, since duplicate IPs will be "flattened" once converted

Re: thinkpad x200 wireless 5100 old issue

I just installed a snapshot and run it from a usb thumb. The 'iwn' has exactly the same issues (that is hanging after a minute or so of usage and working again after doing 'up down') as with -release, including the 'ping' hanging there and not giving the 'packet loss' error, which I cannot rea

Re: Lanner FW-8760 1U firewall platform.

2010/1/12 Diana Eichert : > On Tue, 12 Jan 2010, SJP Lists wrote: > > SNIP >> >> Looks like it might have a serial console too... > > just a headsup > > probably redirection of video to serial, better than a sharp > stick in the eye, but not a ROM monitor. Bummer. Hope not. I've been spoiled by

Re: thinkpad x200 wireless 5100 old issue

On Tue, 12 Jan 2010, Brad Tilley wrote: If this machine isn't production, then no harm could come from trying a snapshot. It would give the developers a much better idea as to where you system's at. Use a USB thumb drive if you're that worried about trashing your data. -- Aaron Mason - Progra

Re: thinkpad x200 wireless 5100 old issue

> > If this machine isn't production, then no harm could come from trying > > a snapshot. It would give the developers a much better idea as to > > where you system's at. Use a USB thumb drive if you're that worried > > about trashing your data. > > > > -- > > Aaron Mason - Programmer, open sour

Re: thinkpad x200 wireless 5100 old issue

On Wed, 13 Jan 2010, Aaron Mason wrote: On Wed, Jan 13, 2010 at 11:23 AM, wrote: Thank you for replying. As you can see from the first line of my post, I'm running -release, and not -current, and I don't plan to run -current since I'm very happy with an upgrade twice a year for the moment. Ac

Re: thinkpad x200 wireless 5100 old issue

On Wed, Jan 13, 2010 at 11:23 AM, wrote: > Thank you for replying. > As you can see from the first line of my post, I'm running -release, and not > -current, and I don't plan to run -current since I'm very happy with an > upgrade twice a year for the moment. > Actually, since the link you provide

Re: Any good/bad experiences on OpenBSD4.6-release & Dell R(2|4|6)10 or HP DL320 G6

The dell stuff needs -current. No idea about the HP stuff. On Tue, Jan 12, 2010 at 08:31:51PM +, a b wrote: > Hello (again), > > I'm planning to buy a couple of lower end servers for a PF & > VPN termination of a small network. > > Does anyone have any comments on OpenBSD > 4.6-release on D

Re: thinkpad x200 wireless 5100 old issue

Thank you for replying. As you can see from the first line of my post, I'm running -release, and not -current, and I don't plan to run -current since I'm very happy with an upgrade twice a year for the moment. Actually, since the link you provided was from end october, I tried installing it but

IPSec head check question.

I have isakmpd running quite well with certificates. I'm now trying to do something that may or may not be simple. I wish to establish two tunnels between my ipsec central server on a static IP two dynamic points on the internet. The first case is an openbsd box which wants to connect a remote lan

Re: problems with emails through pf

Dirk Mast wrote: > Peter N. M. Hansteen wrote: >> the problem went away. tcpdump output of successful and failing >> connetions would be instructive, along with the actual error messages, >> if any. Request to wiki (see those long timestamps), hope this helps_ Jan 12 23:22:06.181513 PPPoE

Re: problems with emails through pf

Peter N. M. Hansteen wrote: > lscarne...@veltrac.com.br writes: > >> My script is very simple (as you will see below), but by some reason, >> my machines behind the firewall can't send large emails, or emails >> with attached files. > > You don't offer any details of the other parts of the mail

Re: Using OpenBSD with Amazon's Virtual Private Cloud, IPsec issue

Their examples are using route-based VPNs (http://kb.juniper.net/KB4124, RFC3884), I'm not sure whether this is entirely possible here with our ipsec (policy-based), but you could try setting up tunnels between the gif tunnel endpoints i.e. 1.2.3.4 and 72.21.209.225, and a second between 1.2.3.4 an

Re: can't get binat working

On 2010-01-12, Shohrukh Shoyoqubov wrote: > On 1/12/2010 4:01 PM, Shohrukh Shoyoqubov wrote: >> On Tue, Jan 12, 2010 at 2:25 PM, Laurent CARON >> wrote: >> >>> On 12/01/2010 07:19, Shohrukh Shoyoqubov wrote: >>> I want all traffic to 192.168.0.253 to be forwarded to 192.168.2.2. I

Any good/bad experiences on OpenBSD4.6-release & Dell R(2|4|6)10 or HP DL320 G6

Hello (again), I'm planning to buy a couple of lower end servers for a PF & VPN termination of a small network. Does anyone have any comments on OpenBSD 4.6-release on Dell R210/410/610 or HP DL320 G6 ? Looking back through the archives, it seems people's experiences when using OpenBSD-release o

Re: 4.6 reboots x336 ibm server(s)

On Tue, Jan 12, 2010 at 6:05 PM, Marcin wrote: > I tried current - the good news is the problem with freeze at startup is gone > - kernel boots immediately. > > However, it hangs later on just after printing out following lines: > > pci0 at mainbus0 bus 0: configuration mode 1 (bios) > mem addres

Re: sasyncd syncs only newly created sad's

Hi Mihajlo Yes, this feature (re-sychronization after master failure) has been missing from the day sasyncd came out (http://archives.neohapsis.com/archives/openbsd/2005-09/0818.html). When I gave that speech in Switzerland (the one you found the PDF of), I was confident that it would be implement

OpenBGPD AS Filtering

Hello, Are there any plans afoot to enable more flexibility when specifying ASN filters in bgpd.conf ? Unless I've missed something important in the man page, there's no way to turn : deny from any AS {64512,64513,64514,64515,64516, /** BIG SNIP **/ 65528,65529,65530,65531,65532,65533,65534}

Re: problems with emails through pf

Ignore. I junt found that tcpdump comes with the system. *Leonardo de Souza Carneiro* *Veltrac - Tecnologia em Logmstica.* lscarne...@veltrac.com.br http://www.veltrac.com.br /Fone Com.: (43)2105-5601/ /R. Para 162 - CENTRO/ /Londrin

Re: mute CARP with i368/4.6 on HP ProLiant DL380 G5

this is with the other machine powered off, so it's config is irrelevant. Den 12. jan. 2010 kl. 17.08 skrev Ben Calvert : pete - pls send /etc/hostname.carp0 from the other machine. On Jan 12, 2010, at 3:14 AM, Pete Vickers wrote: Hi, Whilst setting up a H/A service on a pair of RELE

Re: problems with emails through pf

Hi everyone. I tried with max-mss 1440 and this really solved my problem. Tks everyone I didn't found the tcpdump in the packages repo, and when i use ntop, somehow my net.inet.ip.forwarding is set to 0! Is avaible via ports, i guess? *Leonardo de Souza Carneiro* *Veltrac - Tecnologia em Logm

Re: mute CARP with i368/4.6 on HP ProLiant DL380 G5

pete - pls send /etc/hostname.carp0 from the other machine. On Jan 12, 2010, at 3:14 AM, Pete Vickers wrote: > Hi, > > Whilst setting up a H/A service on a pair of RELEASE4.6/i386 (+ bind/ssl > patches) machines, I observe that both become carp master concurrently. > Debugging shows that the car

Re: 4.6 reboots x336 ibm server(s)

2010/1/12 Kenneth R Westerback : > Please try -current as of today (Jan 13, 2010 Melbourne time), there were > number of significant fixes committed in the last couple of days. Hi, I tried current - the good news is the problem with freeze at startup is gone - kernel boots immediately. However,

Re: problems with emails through pf

Thanks Robert and Peter. Robert wrote: > You probalby are using an uplink with a MTU lower than 1500. Peter wrote: > match in all scrub (no-df max-mss 1440) > > the problem went away. tcpdump output of successful and failing > connetions would be instructive, along with the actual error >

Re: can't get binat working

On 1/12/2010 9:03 PM, Jim Razmus wrote: * Shohrukh Shoyoqubov [100112 01:35]: Hello, I am new to pf and I am trying to do binat but it is not working for some reason. fxp1 is the interface on subnet 192.168.0.0/24 vr0 is the interface on subnet 192.168.2.0/24 Here is my pf.conf #left fr

Re: can't get binat working

On 1/12/2010 4:01 PM, Shohrukh Shoyoqubov wrote: On Tue, Jan 12, 2010 at 2:25 PM, Laurent CARON wrote: On 12/01/2010 07:19, Shohrukh Shoyoqubov wrote: I want all traffic to 192.168.0.253 to be forwarded to 192.168.2.2. I assume that should make 192.168.0.253 visible in 192.168.0.0/24

Happy new year and wish

Dear "Good Lord", Santa Claus and all of you ;) first ,I wish you an happy new year ... 2010 second, thanks for openbsd ;) third ... my wish list for next Chrismas ... a good looking ... Puffy Droid :))) with blinking red eyes when fishing bad packets ... lol Best regards radioramax ps : addo

Yerevan, Aremenia and OpenBSD Users

Hi, Are there any OpenBSD users in Yerevan, Armenia? For work reasons, I'm moving there in a few days for probably the best part of six months. I know absolutely no-one there so it would be good to go for a beer with someone (do they have beer in Armenia?) If there is anyone interested in meeting

Re: 4.6 reboots x336 ibm server(s)

On Tue, Jan 12, 2010 at 05:44:57AM -0600, J.D. Bronson wrote: > I just joined this thread today, but had a similar issue with an IBM > 305 machine. > > On 4.5, it would randomly just shut down. No reason. Nothing in any > logs, it was as if the power was pulled. > > I have 2 identical IBM 305 mac

Re: 4.6 reboots x336 ibm server(s)

I would try a -current but the 4.6-STABLE I have in use on Machine #1 has been running fine and I am not seeing reboots or unexpected shutdowns as the OP has been experiencing. The Machine #2 will only run -current and I can't figure that out when they are identical. I suspect 4.7 will run fin

Re: can't get binat working

On 1/12/2010 7:02 PM, Wade, Daniel wrote: Do you have net.inet.ip.forwarding=1 set? Yes. The machine actually acts as a router for some other networks. It has more interfaces in fact. I just showed the ones involved in binat.

Re: Mini PCI Wireless Card

Hi, what would you like to do with wifi? do you want to build an access point, or do you just want to connect to wifi network? on this link, you can see which cards support Host AP mode: http://zythmer.acyclic.org/articles/OpenBSD_4.3_wifi.html For Soekris image, I would recommend you to install

Re: Lanner FW-8760 1U firewall platform.

On Tue, 12 Jan 2010, SJP Lists wrote: SNIP Looks like it might have a serial console too... just a headsup probably redirection of video to serial, better than a sharp stick in the eye, but not a ROM monitor.

Re: sasyncd syncs only newly created sad's

Hi again, there is no feedback.. could someone who runs sasyncd check this for me? Please, just restart sasyncd on slave(or master), and see if it syncs the SAD's? This behaviour renders my redundant routers - non redundant. If I reboot master, when it comes back and become master again, all VPN

thinkpad x200 wireless 5100 old issue

Running 4.6 release. Some time in summer I'd opened a thread about Thinkpad x200 5100 wi-fi nic, of which here is the line from dmesg: iwn0 at pci2 dev 0 function 0 "Intel WiFi Link 5100" rev 0x00: apic 1 int 17 (irq 11), MIMO 1T2R, MoW, address It turned out that the firmware is not perfect

Re: 4.6 reboots x336 ibm server(s)

I just joined this thread today, but had a similar issue with an IBM 305 machine. On 4.5, it would randomly just shut down. No reason. Nothing in any logs, it was as if the power was pulled. I have 2 identical IBM 305 machines and it was happening on both, so that technically ruled out any s

Re: mute CARP with i368/4.6 on HP ProLiant DL380 G5

Hi, r...@gins0 ~>grep pf /etc/rc.conf.local pf=NO # Packet filter / NAT switches are fine, and couldn't affect outgoing packets anyway. /Pete On 12. jan. 2010, at 12.55, Rogier Krieger wrote: > On Tue, Jan 12, 2010 at 12:14, Pete Vickers wrote: >> Debugging shows that the

Using OpenBSD with Amazon's Virtual Private Cloud, IPsec issue

Hi, I'm trying to evaluate using OpenBSD with Amazon's Virtual Private Cloud as a "Customer Gateway" in their EC2-speak. What you need to do is create a tunnel to each of Amazon's two routers, use BGP to exchange routes across the tunnels and protect all the traffic with IPsec. I've got it mostly

Lanner FW-8760 1U firewall platform.

Howdy folks, I thought some on the list might find this embedded bare bones 1U firewall product interesting. They claim it supports OpenBSD, has 8x Intel 82574L GbE (expandable to 16), a CF socket, 2x SATA and support for Intel Core i3, i5, and i7 processors up to 3.33GHz. Looks like it might ha

mute CARP with i368/4.6 on HP ProLiant DL380 G5

Hi, Whilst setting up a H/A service on a pair of RELEASE4.6/i386 (+ bind/ssl patches) machines, I observe that both become carp master concurrently. Debugging shows that the carp master does not appear to transmit carp announcements: r...@gins0 ~>tcpdump -i bnx0 -n proto carp tcpdump: listening

Re: can't get binat working

On Tue, Jan 12, 2010 at 2:25 PM, Laurent CARON wrote: > On 12/01/2010 07:19, Shohrukh Shoyoqubov wrote: >> >> I want all traffic to 192.168.0.253 to be forwarded to 192.168.2.2. I >> assume that should make 192.168.0.253 visible in 192.168.0.0/24 >> subnet, but it is not. I can't reach it from 192

Re: scrotwm: anyone with a non-US keyboard ?

On Mon, Jan 11, 2010 at 07:13:37PM -0600, Marco Peereboom wrote: > So what is the verdict? No good? Need something else? > It seems to need to handle the ``Map'' and ``Unmap'' events; so when the user switches between keyboard layouts XKeycodeToKeysym still works. I'm cooking a diff for this t

Re: Mini PCI Wireless Card

Benjamin Adams wrote: > Thanks will order one. > Anyone have an img file for soekris net5501? > Or where I can download one. > Easier install. Would you trust any image presented to you? It cannot get much easier than using the current installer anyway since you would still have to tweak it for y

Re: obsd as domU?

On 08:59, Tue 12 Jan 10, Vadkan Jozsef wrote: > Can I run obsd as a xen guest? under 'full' virtualisation, yes. under para-virtualisation, no. -- Michiel van Baak mich...@vanbaak.eu http://michiel.vanbaak.eu GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD "Why is it dr

Re: can't get binat working

On 12/01/2010 07:19, Shohrukh Shoyoqubov wrote: I want all traffic to 192.168.0.253 to be forwarded to 192.168.2.2. I assume that should make 192.168.0.253 visible in 192.168.0.0/24 subnet, but it is not. I can't reach it from 192.168.0.0/24 subnet. I am just testing with this lab config and late

Re: obsd as domU?

On Tue, Jan 12, 2010 at 9:41 AM, Ciprian Dorin, Craciun wrote: [snipz0rz] > So I bet that the initial poster expected an (authoritative) answer > that should have came in the form of an advice based on experience or > at least something useful... (Not lmgtfy, which I'm sure he already > did, b

Re: obsd as domU?

On Tue, Jan 12, 2010 at 10:10 AM, Bret Lambert wrote: > On Tue, Jan 12, 2010 at 8:59 AM, Vadkan Jozsef > wrote: >> Can I run obsd as a xen guest? >> >> > > http://lmgtfy.com/?q=Can+I+run+obsd+as+a+xen+guest > > The internet: you're doing it wrong. Hello all! (I'm a very new OpenBSD user (t

Re: obsd as domU?

On Tue, Jan 12, 2010 at 8:59 AM, Vadkan Jozsef wrote: > Can I run obsd as a xen guest? > > http://lmgtfy.com/?q=Can+I+run+obsd+as+a+xen+guest The internet: you're doing it wrong.

obsd as domU?

Can I run obsd as a xen guest?