Re: Citrix ICAclient hangs whole PC with latest i386 PC
Hi, patch applied, but during rebuild of kernel I'm hitting some issue with VFS. Sources updated about 10 minutes ago. ERVER -DCD9660 -DUDF -DMSDOSFS -DFIFO -DSOCKET_SPLICE -DTCP_SACK -DTCP_ECN -DTCP_SIGNATURE -DINET -DALTQ -DINET6 -DIPSEC -DPPP_BSDCOMP -DPPP_DEFLATE -DMROUTING -DMPLS -DBOOT_CONFIG -DUSER_PCICONF -DKVM86 -DUSER_LDT -DAPERTURE -DCOMPAT_SVR4 -DCOMPAT_LINUX -DCOMPAT_AOUT -DPROCFS -DNTFS -DPCIVERBOSE -DEISAVERBOSE -DUSBVERBOSE -DWSDISPLAY_COMPAT_USL -DWSDISPLAY_COMPAT_RAWKBD -DWSDISPLAY_DEFAULTSCREENS=6 -DWSDISPLAY_COMPAT_PCVT -DX86EMU -DONEWIREVERBOSE -DMAXUSERS=80 -D_KERNEL -MD -MP -c ../../../../kern/vfs_vops.c ../../../../kern/vfs_vops.c: In function 'VOP_ISLOCKED': ../../../../kern/vfs_vops.c:66: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_LOOKUP': ../../../../kern/vfs_vops.c:81: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_CREATE': ../../../../kern/vfs_vops.c:99: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_MKNOD': ../../../../kern/vfs_vops.c:116: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_OPEN': ../../../../kern/vfs_vops.c:130: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_CLOSE': ../../../../kern/vfs_vops.c:146: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_ACCESS': ../../../../kern/vfs_vops.c:162: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_GETATTR': ../../../../kern/vfs_vops.c:177: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_SETATTR': ../../../../kern/vfs_vops.c:194: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_READ': ../../../../kern/vfs_vops.c:210: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_WRITE': ../../../../kern/vfs_vops.c:227: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_IOCTL': ../../../../kern/vfs_vops.c:244: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_POLL': ../../../../kern/vfs_vops.c:257: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_KQFILTER': ../../../../kern/vfs_vops.c:269: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_REVOKE': ../../../../kern/vfs_vops.c:281: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_FSYNC': ../../../../kern/vfs_vops.c:298: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_REMOVE': ../../../../kern/vfs_vops.c:314: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_LINK': ../../../../kern/vfs_vops.c:329: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_RENAME': ../../../../kern/vfs_vops.c:349: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_MKDIR': ../../../../kern/vfs_vops.c:366: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_RMDIR': ../../../../kern/vfs_vops.c:382: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_SYMLINK': ../../../../kern/vfs_vops.c:400: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_READDIR': ../../../../kern/vfs_vops.c:419: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_READLINK': ../../../../kern/vfs_vops.c:434: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_ABORTOP': ../../../../kern/vfs_vops.c:446: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_INACTIVE': ../../../../kern/vfs_vops.c:460: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_RECLAIM': ../../../../kern/vfs_vops.c:472: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_LOCK': ../../../../kern/vfs_vops.c:485: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_UNLOCK': ../../../../kern/vfs_vops.c:498: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_BMAP': ../../../../kern/vfs_vops.c:516: error: 'struct vops' has no member named 'vop_default' ../../../../kern/vfs_vops.c: In function 'VOP_PRINT':
Queres festejar tu cumple o el de un amigo ?
ESTAS BUSCANDO UN BOLICHE O BAR PARA TU CUMPLE, DESPEDIDA O FACULTAD? Tenemos los mejores lugares de Palermo y San Telmo para que disfrutes y si tu Cumple es en Abril o Mayo Ganaste Sin Cargo Barra libre de cerveza y pizza libre Para todos tus amigos lista free durante toda la noche para que ingresen sin cargo a tu cumple Mandale este mail a todos tus amigos y familiares que sea su cumple y les regalamos pizza y cerveza libre gratis !!! Completa los datos a continuacion y te enviamos toda la informacion que necesitas Nombre: Fecha de tu cumple: Numero de Celular: Nuestros Telefonos son: 4-331-6350 y 153-801-5852 de lun a vier 10 a 19 hs Consultas y Reservas Unicamente a: santelmoypale...@mail.ru
Re: /dev/pf permission for squid 3.2.0.6 on openbsd 4.8
The non-obvious thing here is you must bind the listening socket in squid to 127.0.0.1 e.g. http_port 127.0.0.1:3127 transparent I will talk to the port maintainer about removing --enable-pf-transparent. many thanks. I got it working. I changed from http_port 3129 intercept to http_port 127.0.0.1:3129 intercept in squid.conf file. Here's the rule in pf.conf pass in log on $int_if proto tcp from $lan_net to any port 80 \ divert-to 127.0.0.1 port 3129 -- Thank you Indunil Jayasooriya
server openbsd4.7/gateway okey --but client openbsd 4.7 bad
friends I do FAQ gateway-home www.openbsd.org my gateway/dhcp/server(openbsd 4.7) WORK WELL with client pc-(windowsxp) is okey ifconfig-: active interfaces ping :okey BUT with client dhcp openbsd 4.7 NO WORK ifconfig betwen gateway/cliente no carrier on interfaces ping: no route to host PLEASE HELP I AM NEWBIE
Re: Packages security updates
On Mon, Apr 18, 2011 at 11:45 PM, enclair wifiencl...@gmail.com wrote: Hi, the FAQ says: When serious bugs or security flaws are discovered in third party software, they are fixed in the *-stable* branch of the ports tree. Remember that the lifecycle is 1 release: only the current and last release are updated Does it mean: 1) 4.8-stable and -current have security updates for packages. or 2) 4.7-stable and 4.8-stable have security updates for packages. Commits happen first in -current, then sometimes to 4.7-stable and 4.8-stable branches of the portstree. You need to build packages yourself though. Landry
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Mon, Apr 18, 2011 at 9:39 PM, Bob Beck b...@obtuse.com wrote: So - yes we like donations, but we also like CD sales.. now is the time to help out. Order done on openbsdeurope.com. Sorry for being late. cheers! david
Re: OpenBSD-Wiki.org
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 18 Apr 2011, at 5:22 PM, Kenny wrote: Due to an circumstances beyond my control, I'm not longer able to host / maintain /work with OpenBSD-Wiki.org. I was in the process of updating it when some personal issues came up. I'm interested in passing this off to someone else who may be interested. I'll help migrate it, get things back up and going -- if help is needed / wanted. I'm not subscribed to the list, so send an email to this email. -- Kennith (Kenny) Mann Hey Kenny, If nobody else has offered, I will be willing to take this over. - -- Wayne iQEcBAEBAgAGBQJNrT17AAoJENzqTnPMiNZlB/wH+wap/9a+aZJEwvvWXaJHGz51 5IoU/4gdPHbHea6RuZIGQtGZtwr1DZFSE6K13FxpXFlHQfJ1msYSOXSd7mCwgy4I gQIgbQ+0uMOPo0z1EbVQ1CQQEsFV5kFUlefmYhBZIMMzeJM671CNidcJypV0SZBA tTYa5gQkDBMGxVmvg3dHwVnGf6ACGVWcSl2ZO4EYS7WGH7N93AXqWQ0XKFFk2T4B xQhhg0OLZza0Gl5jidxHYGCeTiHh+K6++o6P/u1C/n2TrXEVFcblj3LyRc43EUkz UtCnZGTumJqQzYcReIhUBQhDKwkBT3CzGSkowTNrf/FGK7iuBNVf0o104JZ5l7Y= =9FAa -END PGP SIGNATURE-
syslog and interfaces
Hi, after the reading of syslog.conf (5) and syslogd (8), I can't find how to disable syslog's listening on specifical interfaces. Thanks
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, 19 Apr 2011 09:32:50 +0200, David Coppa dco...@gmail.com wrote: On Mon, Apr 18, 2011 at 9:39 PM, Bob Beck b...@obtuse.com wrote: So - yes we like donations, but we also like CD sales.. now is the time to help out. Order done on openbsdeurope.com. Sorry for being late. cheers! david Hi for Europeans, you can order here too http://openbsd.otasc.org/ :-) Enjoy ! Guillaume.
Re: vnconfig wd1 disklabel dissapearing
On Mon, 18 Apr 2011 22:28:26 + Kevin Chadwick wrote: Drives zeroed /sbin/vnconfig -ck svnd0 /dev/wd1c /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Ahh shit, Sorry I must have bin a bit tired. That's the working version, the version which was forgetting it's disklabel and which I'm still clueless about follows. I think I'll follow the consensus and switch it to a file on a FFS in wd1a like I used to anyway, even though I'll have backups. mkfile would be handy to avoid waiting on dd, but hey testing a drive just before encryption must be a good idea. Drives zeroed /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed).
Re: a GOOD idea to harden OpenSSH!
On Mon, Apr 18, 2011 at 07:54:13PM -0400, swilly wrote: On Wed, Mar 30, 2011 at 03:22, Alexander Schrijver alexander.schrij...@gmail.com wrote: It's a great way to keep someone out of their own system. Huh? Wouldn't securely backing up the RSA keys prevent this? If you are mindful enough to use keys in the first place and don't back up such critical data, wouldn't you deserve to be locked out until someone can cart over an IP KVM? -William That was meant as an addition to why it is a bad idea for that feature. I think it's a bad idea to disable ssh login while someone is bruteforcing your account. Your right that there are other ways to still login.
Re: a GOOD idea to harden OpenSSH!
Your right that there are other ways to still login. I meant you're.
Candidato a melhor empreendimento do ano 2011
A presente e-newsletter destina-se znica e exclusivamente a informar e nco pode ser considerada SPAM. De acordo com a legislagco internacional que regulamenta o correio electrsnico, o e-mail nco podera ser considerado SPAM quando incluir uma forma do receptor ser removido da lista. Caso o seu nome faga parte da nossa lista por engano, desde ja apresentamos as nossas desculpas. Dado que o processo de remogco i automatico, pedimos o favor de verificar qual o e-mail onde receberam a nossa e-newsletter antes de solicitar a remogco Se nco deseja continuar a receber a nossa e-newsletter, clique Cancelar subscrigco [demime 1.01d removed an attachment of type image/jpeg which had a name of 14.jpg]
Re: a GOOD idea to harden OpenSSH!
Alexander Schrijver alexander.schrij...@gmail.com writes: I think it's a bad idea to disable ssh login while someone is bruteforcing your account. We've seen quite a bit of what appears to be industrial-scale password guessing (google 'hail mary cloud' or a few more obvious keywords), so on any internet-facing system the probability that someone is trying to bruteforce their way in via some account or other right now is not negligible. If you allow password logins at all, there are worse ideas than running john (or similar) to flush out the bad ones occasionally. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ Remember to set the evil bit on all malicious network traffic delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
2011/4/19 David Coppa dco...@gmail.com: Order done on openbsdeurope.com. Sorry for being late. I have ordered from them and would do so again, but their system has broken my account (again?) and the reset form doesn't work for Germans (house name?). A notice for whoever is responsible for the list of shops on http://www.openbsd.org/orders.html : - Lehmanns doesn't seem to sell OpenBSD anymore: the latest in the online shop is 4.7 - Linuxland has an invalid ssl cert and seems to sell *BSD only upon request - The webshop at ixSoft just works. :-) Best Martin
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? The only other thing that puts me off buying tshirts is that I've run into difficulty with North American tshirt sizes in the past. I've been unable to find detailed sizing informaion (length, chest etc.) and it'd be a disappointment to order a tshirt that I couldn't make use of. I am only a part of the CD sales money. CD sales money keeps the electrons flowing through cvs.openbsd.org. Trust me, it is critical. Do older CD releases fund the project in the same way that newer CD sets do? Ordering a bunch of older releases for my bookshelf (perhaps not 2.4!) is another way I'd consider contributing to the money pot. Likewise, there are many older posters and a couple of tshirts that I'd snap up if they still fund the project in the same way. I'm asking this as I've no idea what your agreements with your distributors are (nor do I care); I'd just like the comfort of knowing that any money I spend is funding the project in the way I expect/intend.
Re: Routing all traffic through IPSEC VPN
Matt S P?P8QP5Q:
Hello @misc:
I am up against a stumper. I have a Site-to-Site IPSEC VPN working beautifully.
However, I would like the remote site to route all of its traffic through the
VPN. After googling, I seemed to come up with a suggestion to do a route change
-net 0.0.0.0/0 gateway which didn't work well. I think it might have to do
with NAT. The main office is doing the NAT. Perhaps I need to some sort of NAT
traversal on the VPN??
Hello.
Here is working config. I have two nets 15.0/24 and 16.0/24.
16.0/24 have default gateway to Internet.
between 15 and 16 setup IPSec.
from 15 for lucky boys I setup tunnel to any.
on router in 16 lucky boys go out with NAT.
===net 15.0=
ipsec.conf
remote_nets = { 192.168.16.0/24, 172.20.252.0/24}
nat_clients = { 192.168.15.10, 192.168.15.167, 192.168.15.170 }
flow esp from 192.168.15.0/24 to $remote_nets peer 192.168.10.1
flow esp from $nat_clients to any peer 192.168.10.1
esp from 192.168.10.2 to 192.168.10.1
ifconfig
rl0: flags=28843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,NOINET6 mtu 1500
lladdr 00:02:44:56:39:04
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.15.6 netmask 0xff00 broadcast 192.168.15.255
vr0: flags=28843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,NOINET6 mtu 1500
lladdr 00:13:d3:36:f5:ce
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.10.2 netmask 0xff00 broadcast 192.168.10.255
route -n show
Internet:
Destination Gateway Flags Refs Use Mtu Prio Iface
default 192.168.10.1 UGS 5 5440 - 8 vr0
127/8 127.0.0.1 UGRS 0 0 33200 8 lo0
127.0.0.1 127.0.0.1 UH 2 4 33200 4 lo0
192.168.10/24 link#2 UC 1 0 - 4 vr0
192.168.10.1 00:d0:b7:60:5f:5c UHLc 3 1357436 - 4 vr0
192.168.15/24 link#1 UC 38 0 - 4 rl0
Encap:
Source Port Destination Port Proto SA(Address/Proto/Type/Direction)
default 0 192.168.15.170/32 0 0 192.168.10.1/esp/require/in
192.168.15.170/32 0 default 0 0 192.168.10.1/esp/require/out
default 0 192.168.15.167/32 0 0 192.168.10.1/esp/require/in
192.168.15.167/32 0 default 0 0 192.168.10.1/esp/require/out
default 0 192.168.15.10/32 0 0 192.168.10.1/esp/require/in
192.168.15.10/32 0 default 0 0 192.168.10.1/esp/require/out
172.20.252/24 0 192.168.15/24 0 0 192.168.10.1/esp/require/in
192.168.15/24 0 172.20.252/24 0 0 192.168.10.1/esp/require/out
192.168.16/24 0 192.168.15/24 0 0 192.168.10.1/esp/require/in
192.168.15/24 0 192.168.16/24 0 0 192.168.10.1/esp/require/out
net 16=
local_nets = { 172.20.252.0/24, 192.168.16.0/24 }
flow esp from $local_nets to 192.168.15.0/24 peer 192.168.10.2
flow esp from any to { 192.168.15.10, 192.168.15.167, 192.168.15.170 }
peer 192.168.10.2
esp from 192.168.10.1 to 192.168.10.2
fxp0: flags=28843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,NOINET6 mtu 1500
lladdr 00:d0:b7:60:75:51
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.16.6 netmask 0xff00 broadcast 192.168.16.255
fxp1: flags=28843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,NOINET6 mtu 1500
lladdr 00:d0:b7:60:5f:5c
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.10.1 netmask 0xff00 broadcast 192.168.10.255
fxp2: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:d0:b7:60:5d:9c
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 172.20.252.36 netmask 0xfff8 broadcast 172.20.252.39
inet6 fe80::2d0:b7ff:fe60:5d9c%fxp2 prefixlen 64 scopeid 0x3
rl0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:88:45:68:aa
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.20.55 netmask 0xff00 broadcast 192.168.20.255
Routing tables
Internet:
Destination Gateway Flags Refs Use Mtu Prio Iface
default 192.168.16.8 UGS 6 14997670 - 8 fxp0
127/8 127.0.0.1 UGRS 0 0 33200 8 lo0
127.0.0.1 127.0.0.1 UH 2 11204 33200 4 lo0
172.20.252.32/29 link#3 UC 1 0 - 4 fxp2
172.20.252.38 00:03:7e:00:73:40 UHLc 0 4831569 - 4 fxp2
192.168.10/24 link#2 UC 2 0 - 4 fxp1
192.168.10.1 00:d0:b7:60:5f:5c UHLc 0 4 - 4 lo0
192.168.10.2 00:13:d3:36:f5:ce UHLc 15 102190836 - 4 fxp1
192.168.15/24 192.168.10.2 UGS 0 119979 - 8 fxp1
Encap:
Source Port Destination Port Proto SA(Address/Proto/Type/Direction)
192.168.15.170/32 0 default 0 0 192.168.10.2/esp/require/in
default 0 192.168.15.170/32 0 0 192.168.10.2/esp/require/out
192.168.15.167/32 0 default 0 0 192.168.10.2/esp/require/in
default 0 192.168.15.167/32 0 0 192.168.10.2/esp/require/out
192.168.15.10/32 0 default 0 0 192.168.10.2/esp/require/in
default 0 192.168.15.10/32 0 0 192.168.10.2/esp/require/out
192.168.15/24 0 192.168.16/24 0 0 192.168.10.2/esp/require/in
192.168.16/24 0 192.168.15/24 0 0 192.168.10.2/esp/require/out
192.168.15/24 0 172.20.252/24 0 0 192.168.10.2/esp/require/in
172.20.252/24 0 192.168.15/24 0 0 192.168.10.2/esp/require/out
host 192.168.16.8 doint
Re: a GOOD idea to harden OpenSSH!
On Tue, Apr 19, 2011 at 4:54 PM, Edho P Arief edhopr...@gmail.com wrote: On Tue, Apr 19, 2011 at 4:33 PM, Alexander Schrijver alexander.schrij...@gmail.com wrote: I think it's a bad idea to disable ssh login while someone is bruteforcing your account. it may be just me but I'm having problem in understanding this statement. Oh, I get it now. No wonder - I completely misread you since you put your reply right after disable password login, use ssh key
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 19 Apr 2011, at 11:15 AM, Guillaume Duali wrote: On Tue, 19 Apr 2011 09:32:50 +0200, David Coppa dco...@gmail.com wrote: On Mon, Apr 18, 2011 at 9:39 PM, Bob Beck b...@obtuse.com wrote: So - yes we like donations, but we also like CD sales.. now is the time to help out. Order done on openbsdeurope.com. Sorry for being late. cheers! david Hi for Europeans, you can order here too http://openbsd.otasc.org/ :-) I placed an order recently for a few shirts and the book of pf. Received the shirts so far still waiting for the book :-) Gonna have to wait until the end of the month to order the latest CD. (In African terms it's fairly costly but well worth it.) Basically what I am saying is... Are there any African distributors? If not, I would be more than willing to help out with distributing in Africa. Thanks Wayne iQEcBAEBAgAGBQJNrVrPAAoJENzqTnPMiNZl27YIAL3JDnzDcJi4g494zzWj7Oq1 9HmV18XW3VkhFmidZkJHAqV8R/4Djl326bpFpfDArPonc0cPovrQObE3C+cFcBvE esISVv+vzlFIV1L5i9O6u1BERAGx5pyK7Oxpw9L2Js/VEgrYAds3bCW0S+/7SNG/ 9AvECoqZvaBcXcS6i/f9avLK+iLGZckN7XfUghIOCl7tQucrFO0WSumu5b+pT5RF z6cK+DaMt37a2zjts+Wv0w0UymK6oAIKJ7kzn/CyTFus9vDOQw9OBnhUtWjHCvyW 1J8tBermAg1MdT61UnwlJCPL1eWUU1KBtbDbBbtZkosjh7WGv4mYoWxxmlCUeKM= =7lb+ -END PGP SIGNATURE-
Re: syslog and interfaces
2011/4/19 Julien Dyie mr_jul...@hotmail.com: Hi, after the reading of syslog.conf (5) and syslogd (8), I can't find how to disable syslog's listening on specifical interfaces. Thanks Hi, it's not possible but of course you can use pf rules to block access to port 514 on certain interface. Or maybe you can try syslog-ng from ports (http://openports.se/sysutils/syslog-ng) Best regards -- Matteo Filippetto http://op83.blogspot.com
Re: a GOOD idea to harden OpenSSH!
On Tue, Apr 19, 2011 at 4:33 PM, Alexander Schrijver alexander.schrij...@gmail.com wrote: I think it's a bad idea to disable ssh login while someone is bruteforcing your account. it may be just me but I'm having problem in understanding this statement.
Re: server openbsd4.7/gateway okey --but client openbsd 4.7 bad
2011/4/19 david carrasco dacar...@gmail.com: friends I do FAQ gateway-home B www.openbsd.org my gateway/dhcp/server(openbsd 4.7) B WORK WELL with client pc-(windowsxp) is okey ifconfig-: active interfaces ping :okey BUT with client dhcp openbsd 4.7 NO WORK ifconfig betwen gateway/cliente no carrier on interfaces ping: no route to host PLEASE HELP I AM NEWBIE Hi, if command ifconfig on openbsd client return status: no carrier it means that the cable isn't connected. Best regards -- Matteo Filippetto http://op83.blogspot.com
Re: a GOOD idea to harden OpenSSH!
On Tue, 19 Apr 2011 16:54:45 +0700 Edho P Arief wrote: On Tue, Apr 19, 2011 at 4:33 PM, Alexander Schrijver alexander.schrij...@gmail.com wrote: I think it's a bad idea to disable ssh login while someone is bruteforcing your account. it may be just me but I'm having problem in understanding this statement. They won't brute force your pubkey auth. Disable password auth and don't lock yourself out by securing password auth. Choose a good password for short periods before you've setup the pubkey. An interesting question is, what's more secure (ignoring physical), local console or ssh (environment etc.).
Re: a GOOD idea to harden OpenSSH!
On Tue, Apr 19, 2011 at 11:56 AM, Peter N. M. Hansteen pe...@bsdly.net wrote: Alexander Schrijver alexander.schrij...@gmail.com writes: I think it's a bad idea to disable ssh login while someone is bruteforcing your account. We've seen quite a bit of what appears to be industrial-scale password guessing (google 'hail mary cloud' or a few more obvious keywords), so on any internet-facing system the probability that someone is trying to bruteforce their way in via some account or other right now is not negligible. If you allow password logins at all, there are worse ideas than running john (or similar) to flush out the bad ones occasionally. This adds some interesting ideas regarding security of passwords. Please read FAQ part too as it explains a lot of questions which may come after reading that post. http://www.baekdal.com/tips/password-security-usability -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ Remember to set the evil bit on all malicious network traffic delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
2011/4/19 Martin Schrvder mar...@oneiros.de: - Lehmanns doesn't seem to sell OpenBSD anymore: the latest in the online shop is 4.7 Brainfart. Everything's fine with Lehmanns. :-) Best Martin
Re: not boot panic: trap type 6, code=2, pc=d032a644c
On Mon, 18 Apr 2011 08:24:55 -0600, Kenneth R Westerback kwesterb...@rogers.com wrote: On Mon, Apr 18, 2011 at 07:57:20AM -0600, Orestes LeaL R. wrote: This diff fixed the problem. Thanks! Maybe this is a silly question but this diff its applied on the latest snapshot iso? Any committed code will be present in any snapshot dated after the commit. Allowing for any timezone oddities. Ken Your diff fixed the problem, big thanks, LeaL
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
Date: Tue, 19 Apr 2011 10:40:03 +0100 From: Glen Anderson g.s.ander...@gmail.com To: dera...@cvs.openbsd.org Cc: misc@openbsd.org Subject: Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :) Message-ID: BANLkTinW=uHE2=asn9h-vrqn3pml1kb...@mail.gmail.com On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? I have made similar purchasing decisions and would also like to know if t-shirt sales are now funding the project or are still kept as separate sales. Any information would be much appreciated. In [un]related news, I placed my pre-order as soon as pre-orders were announced. :)
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? I have made similar purchasing decisions and would also like to know if t-shirt sales are now funding the project or are still kept as separate sales. Any information would be much appreciated. OK, here's that note you are asking for: All sales fund the project in the same way. In the past there was an arrangement (in particular, with Wim) so that the tshirt sales would fund him while CD sales would fund us. He managed to rob is on that account in every possible way. So have not done that kind of arrangements for years. Tshirt sales from Canada (the computer shop / https.openbsd.org) and from the UK (openbsdeurope.com) fund the project just like the mugs, the CD's, posters, etc..
Re: server openbsd4.7/gateway okey --but client openbsd 4.7 bad
hey friend no , cable is connected, is crossover repeat , is connected BUT if connected to my pc-win xp , WORKS, PLEASE HELP 2011/4/19 matteo filippetto matteo.filippe...@gmail.com 2011/4/19 david carrasco dacar...@gmail.com: friends I do FAQ gateway-home B www.openbsd.org my gateway/dhcp/server(openbsd 4.7) B WORK WELL with client pc-(windowsxp) is okey ifconfig-: active interfaces ping :okey BUT with client dhcp openbsd 4.7 NO WORK ifconfig betwen gateway/cliente no carrier on interfaces ping: no route to host PLEASE HELP I AM NEWBIE Hi, if command ifconfig on openbsd client return status: no carrier it means that the cable isn't connected. Best regards -- Matteo Filippetto http://op83.blogspot.com
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? I have made similar purchasing decisions and would also like to know if t-shirt sales are now funding the project or are still kept as separate sales. Any information would be much appreciated. OK, here's that note you are asking for: All sales fund the project in the same way. In the past there was an arrangement (in particular, with Wim) so that the tshirt sales would fund him while CD sales would fund us. He managed to rob is on that account in every possible way. So have not done that kind of arrangements for years. Tshirt sales from Canada (the computer shop / https.openbsd.org) and from the UK (openbsdeurope.com) fund the project just like the mugs, the CD's, posters, etc.. Thank you very much!
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? tshirt, poster, mug, and cd sales are handled the same. They all offset project costs in Canada. Do older CD releases fund the project in the same way that newer CD sets do? Yes! Ordering a bunch of older releases for my bookshelf (perhaps not 2.4!) is another way I'd consider contributing to the money pot. It is a great way. Yes, some of the CDs we are almost out of are very expensive, intentionally. Some of them have been bought by people, so it is a pretty easy way to fund the project. Likewise, there are many older posters and a couple of tshirts that I'd snap up if they still fund the project in the same way. They all fund the project. I'm asking this as I've no idea what your agreements with your distributors are (nor do I care); I'd just like the comfort of knowing that any money I spend is funding the project in the way I expect/intend. Income: The direct income from sales (Computer Shop (primarily) + distributors) - Keeps the electrons flowing - Keeps me from taking that cushy Microsoft job Donations: The OpenBSD Foundation - Funds the big hackathons and some smaller ones - Funds the network links The paypal and european accounts - Funds the remaining small hackathons - Buys strange new pieces of hardware which are not donated
wd0(pciide0:0:0): timeout with recent snapshots
Hi, I think I'm seeing a regression from the hackathon work. With recent (April 18/19) snapshot kernels my Dell OptiPlex 745 stops booting with a wd0(pciide0:0:0): timeout type: ata c_bcount: 512 c_skip: 0 message. A kernel from April 3rd boots just fine. I'll try to pinpoint the exact day but thought you might want to know right away. $ pcidump -v Domain /dev/pci0: 0:0:0: Intel 82Q965 Host 0x: Vendor ID: 8086 Product ID: 2990 0x0004: Command: 0106 Status ID: 2090 0x0008: Class: 06 Subclass: 00 Interface: 00 Revision: 02 0x000c: BIST: 00 Header Type: 00 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR empty () 0x0014: BAR empty () 0x0018: BAR empty () 0x001c: BAR empty () 0x0020: BAR empty () 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address: 0x0038: 0x003c: Interrupt Pin: 00 Line: 00 Min Gnt: 00 Max Lat: 00 0x00e0: Capability 0x09: Vendor Specific 0:2:0: Intel 82Q965 Video 0x: Vendor ID: 8086 Product ID: 2992 0x0004: Command: 0007 Status ID: 0090 0x0008: Class: 03 Subclass: 00 Interface: 00 Revision: 02 0x000c: BIST: 00 Header Type: 80 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR mem 32bit addr: 0xfea0/0x0010 0x0014: BAR empty () 0x0018: BAR mem prefetchable 64bit addr: 0xd000/0x1000 0x0020: BAR io addr: 0xecb8/0x0008 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address: 0x0038: 0x003c: Interrupt Pin: 01 Line: 0b Min Gnt: 00 Max Lat: 00 0x0090: Capability 0x05: Message Signaled Interrupts (MSI) 0x00d0: Capability 0x01: Power Management 0:2:1: Intel 82Q965 Video 0x: Vendor ID: 8086 Product ID: 2993 0x0004: Command: 0007 Status ID: 0090 0x0008: Class: 03 Subclass: 80 Interface: 00 Revision: 02 0x000c: BIST: 00 Header Type: 80 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR mem 32bit addr: 0xfeb0/0x0010 0x0014: BAR empty () 0x0018: BAR empty () 0x001c: BAR empty () 0x0020: BAR empty () 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address: 0x0038: 0x003c: Interrupt Pin: 00 Line: 00 Min Gnt: 00 Max Lat: 00 0x00d0: Capability 0x01: Power Management 0:26:0: Intel 82801H USB 0x: Vendor ID: 8086 Product ID: 2834 0x0004: Command: 0005 Status ID: 0280 0x0008: Class: 0c Subclass: 03 Interface: 00 Revision: 02 0x000c: BIST: 00 Header Type: 80 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR empty () 0x0014: BAR empty () 0x0018: BAR empty () 0x001c: BAR empty () 0x0020: BAR io addr: 0xff20/0x0020 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address: 0x0038: 0x003c: Interrupt Pin: 01 Line: 0b Min Gnt: 00 Max Lat: 00 0:26:1: Intel 82801H USB 0x: Vendor ID: 8086 Product ID: 2835 0x0004: Command: 0005 Status ID: 0280 0x0008: Class: 0c Subclass: 03 Interface: 00 Revision: 02 0x000c: BIST: 00 Header Type: 00 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR empty () 0x0014: BAR empty () 0x0018: BAR empty () 0x001c: BAR empty () 0x0020: BAR io addr: 0xff00/0x0020 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address: 0x0038: 0x003c: Interrupt Pin: 02 Line: 0a Min Gnt: 00 Max Lat: 00 0:26:7: Intel 82801H USB 0x: Vendor ID: 8086 Product ID: 283a 0x0004: Command: 0106 Status ID: 0290 0x0008: Class: 0c Subclass: 03 Interface: 20 Revision: 02 0x000c: BIST: 00 Header Type: 00 Latency Timer: 00 Cache Line Size: 00 0x0010: BAR mem 32bit addr: 0xfe9fbc00/0x0400 0x0014: BAR empty () 0x0018: BAR empty () 0x001c: BAR empty () 0x0020: BAR empty () 0x0024: BAR empty () 0x0028: Cardbus CIS: 0x002c: Subsystem Vendor ID: 1028 Product ID: 01da 0x0030: Expansion ROM Base Address:
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, 19 Apr 2011, Theo de Raadt wrote: - Keeps me from taking that cushy Microsoft job Still... This *would* produce some interesting news stories. -- Monty Brandenberg
Re: server openbsd4.7/gateway okey --but client openbsd 4.7 bad
2011/4/19 david carrasco dacar...@gmail.com: hey friend no , cable is connected, is crossover repeat , is connected BUT if connected to my pc-win xp , WORKS, PLEASE HELP Hi, did you tried with a normal cable and a switch? did you configured dhcp or static address? Bye -- Matteo Filippetto http://op83.blogspot.com
Meet, learn and network with top players from the Airports Industry
Having trouble reading this emailer? View it in your browser ,
Re: wd0(pciide0:0:0): timeout with recent snapshots
On Apr 19, 2011 17:09, Dawe wrote: Hi, I think I'm seeing a regression from the hackathon work. With recent (April 18/19) snapshot kernels my Dell OptiPlex 745 stops booting with a wd0(pciide0:0:0): timeout type: ata c_bcount: 512 c_skip: 0 message. A kernel from April 3rd boots just fine. I'll try to pinpoint the exact day but thought you might want to know right away. Please ignore this, it's already fixed in cvs. Sorry for the noise.
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, 19 Apr 2011 11:18:59 -0400 (EDT) m brandenberg wrote: Still... This *would* produce some interesting news stories. Can you imagine the internal memos just before an underground crypto department was born, like the rogue directX dept.. (except not so damaging to the industry)
Re: a GOOD idea to harden OpenSSH!
Peter == Peter N M Hansteen pe...@bsdly.net writes: Peter We've seen quite a bit of what appears to be industrial-scale password Peter guessing (google 'hail mary cloud' or a few more obvious keywords), so Peter on any internet-facing system the probability that someone is trying Peter to bruteforce their way in via some account or other right now is not Peter negligible. And about 1/1000th the traffic if you move your sshd from 22 to something far less standard, based on my experience. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 mer...@stonehenge.com URL:http://www.stonehenge.com/merlyn/ Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc. See http://methodsandmessages.posterous.com/ for Smalltalk discussion
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
- Keeps me from taking that cushy Microsoft job Theo, Don't go over to the dark side. Stay aloof and kick everybody's ass. We need somebody to show that their marketing is mostly iAir. Now that you have given clear information about the updated status, I am sure many more would ante up. Thanks Donations: The OpenBSD Foundation - Funds the big hackathons and some smaller ones - Funds the network links The paypal and european accounts - Funds the remaining small hackathons - Buys strange new pieces of hardware which are not donated
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: tshirt, poster, mug, and cd sales are handled the same. They all offset project costs in Canada. This is true for the hoodies too. Sneak peek: http://imgur.com/IJrYb (The image doesn't include the Kangaroo pockets which they have)
Re: server openbsd4.7/gateway okey --but client openbsd 4.7 bad
CABLE CROSS OVER, SETTING DHCP VERY CRAZY CONNECTED TO MY GATEWAY MY CLIENT WIN XP AND THIS WORKS BUT IF CONNECTED MY CLIENTE OPENBSD47 NO WORKS NO INTERNET CLIENT HELP 2011/4/19 matteo filippetto matteo.filippe...@gmail.com 2011/4/19 david carrasco dacar...@gmail.com: hey friend no , cable is connected, is crossover repeat , is connected BUT if connected to my pc-win xp , WORKS, PLEASE HELP Hi, did you tried with a normal cable and a switch? did you configured dhcp or static address? Bye -- Matteo Filippetto http://op83.blogspot.com
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
Tshirt sales from Canada (the computer shop / https.openbsd.org) and from the UK (openbsdeurope.com) fund the project just like the mugs, the CD's, posters, etc.. Nice to know, I also was of the mistaken belief that the T-Shirt sales didn't benefit the project (it is what I heard). Now that I know, I will be buying me some T-Shirts! AND at least one hoodie! Hmm... and maybe a coffee mug. Thank you all for your wonderful work on OpenBSD. s OpenBSD, Making me look like a freakin genious to my bosses since 3.6
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On 19 April 2011 15:27, Theo de Raadt dera...@cvs.openbsd.org wrote: On 19 April 2011 03:17, Theo de Raadt dera...@cvs.openbsd.org wrote: But without CD and tshirt sales, other parts of the project are in trouble -- the things that are more difficult to fund out of donations. In the past I've stuck to ordering the CD set as the homepage states that tshirt and poster sales do not fund the project. Is this no longer the case for tshirts? tshirt, poster, mug, and cd sales are handled the same. They all offset project costs in Canada. Do older CD releases fund the project in the same way that newer CD sets do? Yes! Ordering a bunch of older releases for my bookshelf (perhaps not 2.4!) is another way I'd consider contributing to the money pot. It is a great way. Yes, some of the CDs we are almost out of are very expensive, intentionally. Some of them have been bought by people, so it is a pretty easy way to fund the project. Likewise, there are many older posters and a couple of tshirts that I'd snap up if they still fund the project in the same way. They all fund the project. I'm asking this as I've no idea what your agreements with your distributors are (nor do I care); I'd just like the comfort of knowing that any money I spend is funding the project in the way I expect/intend. Income: The direct income from sales (Computer Shop (primarily) + distributors) - Keeps the electrons flowing - Keeps me from taking that cushy Microsoft job Donations: The OpenBSD Foundation - Funds the big hackathons and some smaller ones - Funds the network links The paypal and european accounts - Funds the remaining small hackathons - Buys strange new pieces of hardware which are not donated Thanks for the clarification Theo. FWIW I'd have purchased a poster with 4.8/4.9 if the home/donations/orders pages had included the above. Time to make some enquiries about shipping!
Don't go over to the dark side
On 4/19/11 8:27 AM, Amit Kulkarni wrote: - Keeps me from taking that cushy Microsoft job Theo, Don't go over to the dark side. Stay aloof and kick everybody's ass. If Windows were not consistently, inherently and congenitally insecure - there would not be such a great need for OpenBSD. Mehma
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, Apr 19, 2011 at 12:48, Stuart VanZee stua...@datalinesys.com wrote: Tshirt sales from Canada (the computer shop / https.openbsd.org) and from the UK (openbsdeurope.com) fund the project just like the mugs, the CD's, posters, etc.. Nice to know, I also was of the mistaken belief that the T-Shirt sales didn't benefit the project (it is what I heard). B Now that I know, I will be buying me some T-Shirts! B AND at least one hoodie! B Hmm... and maybe a coffee mug. I thought that as well too. I love the T-Shirts. They are quality, and feel softer than most of my T-shirts. I don't like wearing something that turns me into mobile ad space, but I make an exception for OpenBSD. I love my Good, Bad, Ugly T-shirt. Keep on kicking ass Theo... My grandma is going to love her Puffy coffee mug for her birthday... (yea, I give people presents they will re-gift, hopefully back to me ;) )
Re: vnconfig wd1 disklabel dissapearing
On Tue, 19 Apr 2011 10:18:20 + Kevin Chadwick wrote: /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Anyone got even a hunch why wd1a and wd0l as used above behave repeatably differently.
Building from the source -Current
Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/
Re: server openbsd4.7/gateway okey --but client openbsd 4.7 bad
On Tue, 19 Apr 2011 09:46:08 -0700 david carrasco wrote: CABLE CROSS OVER, SETTING DHCP VERY CRAZY CONNECTED TO MY GATEWAY MY CLIENT WIN XP AND THIS WORKS BUT IF CONNECTED MY CLIENTE OPENBSD47 NO WORKS NO INTERNET CLIENT HELP You mentioned no carrier, so it's too early for trying dhcp. Are there any leds on your ethernet sockets and are they on when plugged in. Do you get carrier with either cable type. Some hardware works with patch and crossover, whilst other hw doesn't. Is OpenBSD on a different machine to XP? Why are you using 4.7. You should be on 4.8 or current?
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
Quoting Stuart VanZee stua...@datalinesys.com: Tshirt sales from Canada (the computer shop / https.openbsd.org) and from the UK (openbsdeurope.com) fund the project just like the mugs, the CD's, posters, etc.. Nice to know, I also was of the mistaken belief that the T-Shirt sales didn't benefit the project (it is what I heard). Same here ... http://marc.info/?l=openbsd-cvsm=120735755821256w=2 The OpenBSD project does not receive any proceeds from tshirt, posters, doll or book sales. Whatever; the current situation has been clarified, and I'll do what I can. Now that I know, I will be buying me some T-Shirts! AND at least one hoodie! Hmm... and maybe a coffee mug. Thank you all for your wonderful work on OpenBSD. s OpenBSD, Making me look like a freakin genious to my bosses since 3.6
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
The OpenBSD project does not receive any proceeds from tshirt, posters, doll or book sales. In any case, the OpenBSD project receives more money from the sale of one CD set than from the sale of one clothing attire, due to the production costs of said items. So if you want to contribute but don't know what to get, get a CD set (or several!). Noone will mind if you frame them and hang them on your wall; it's the thought which counts. Miod
Re: vnconfig wd1 disklabel dissapearing
On Tue, 19 Apr 2011, Kevin Chadwick wrote: On Tue, 19 Apr 2011 10:18:20 + Kevin Chadwick wrote: /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Anyone got even a hunch why wd1a and wd0l as used above behave repeatably differently. The disklabel of the disk is located at the very beginning of the disk (or at the beginning of an fdisk partition on some archs), that means at the beginning of the physically first partition. This partition usually is the 'a' partition. If you overwrite the beginning of the first partition, you overwrite the disklabel. On the other hand, if you overwrite disklabel area of any of the following partitions (structured as FFS), like wd0l, you usually cause no harm. It is not used there. As for svnd, if I remeber it right, you should not use a partition for svnd, but a file instead. But don't know why it is necessary. Regards, David
Re: laptop questions/comments
STeve Andre' wrote: On 04/15/11 19:03, Paul M wrote: Hi all, It's time for a new OpenBSD laptop, and I have a couple of questions. Note that I dont want to spend money on performance I dont need, but I do want to spend money on a decent quality machine. First, finding quality machines in the backwoods where I live is really hard. The shops seem full of rubbish. Various retailers suggest either Toshiba or Asus. Does anybody have any comments on these brands in general? I'll admit to a psychological block against Toshiba, but I have no idea where it came from, it could be completely bogus. Second, One I've found which seems a good fit is the Toshiba Satellite Pro C650 (with the celeron cpu, not the i3). Anybody using one of these with OpenBSD? I stuck a 4.8 release CD in, and the dmesg indicated problems with these devices (sorry for the vagueness, I was scribbling down stuff in the store. I can get better info if it's required)- Intel GM45 Attansic something - 0x2060 - the 10/100 wired ethernet SMBus ehci1 timed out waiting for bios There was also a message at the end that suggested that wd1 was not available. Anybody know how things have improved with these devices since 4.8, and which are showstoppers? The camera and audio also appeared to have limited or no support, but I dont care about those. Thanks for any input paulm Definitely use a 4.9-current CD. New things are supported all the time, so go with the best version of OpenBSD. I get hornswoggled all too often in helping folks with their laptops, and I'm really saddened with the quality of the hardware, overall. The Lenovo ThinkPads (NOT the other brands that Lenovo has) have consistently been the best laptops out there, in terms of quality, serviceability, and life-span. The $400 laptop can be considered a throwaway unit. Few of the bargin laptops friends bought in 2009 are working today. If you look at the Lenovo site you'll see the T series. A T420i is $799 with a 1 year warranty. Thats more money than a $499 laptop, but it is likely to work several years from now. --STeve Andre' I second the Thinkpads. I recently upgraded from a T22 to a T61 (Core2 Duo, 2.4GHz, 2GB RAM). It cost me about 400 USD for the like-new laptop, docking station, and a brand new 8GB SSD (all on Ebay). All I had to do was replace the CPU fan and install the SSD. I run amd64 -current. All the relevant hardware works very well. I run cwm(1), xterm, tmux, Gimp, Chromium, Firefox, Seamonkey-Mail. It's a very fast system, way more computer than I need and will last me many years, as my T22 did.
Re: vnconfig wd1 disklabel dissapearing
On Tue, Apr 19, 2011 at 08:47:03PM +, Kevin Chadwick wrote: On Tue, 19 Apr 2011 10:18:20 + Kevin Chadwick wrote: /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Anyone got even a hunch why wd1a and wd0l as used above behave repeatably differently. Are you sure you can use /dev/wd1a as backend file for a vnd? From my understanding block devices should not be used for anything that does file IO. So have you tried /dev/rwd1a instead in the vnconfig command? -- :wq Claudio
Re: Building from the source -Current
Errr. are you sure your sources are updated? I don't see a freebsd_machdep.h in my /usr/src see http://www.openbsd.org/faq/faq5.html#BldGetSrc Just su to root, the FAQ doesn't mention using sudo except for config kernels http://www.openbsd.org/faq/faq5.html#BldKernel notice the #prompt which is root prompt. I wouldn't do make install until make is finished and no errors. This isn't something which can be automated for a beginner. The FAQ doesn't show it that way. On Tue, Apr 19, 2011 at 1:51 PM, Insan Praja SW insan.pr...@gmail.com wrote: Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/
Re: Building from the source -Current
The way kernel get built changed lately. make depend is no more and because of this you need to remove the build directory before building a new kernel or the old dependencies will hount you. On Tue, Apr 19, 2011 at 02:59:34PM -0500, Amit Kulkarni wrote: Errr. are you sure your sources are updated? I don't see a freebsd_machdep.h in my /usr/src see http://www.openbsd.org/faq/faq5.html#BldGetSrc Just su to root, the FAQ doesn't mention using sudo except for config kernels http://www.openbsd.org/faq/faq5.html#BldKernel notice the #prompt which is root prompt. I wouldn't do make install until make is finished and no errors. This isn't something which can be automated for a beginner. The FAQ doesn't show it that way. On Tue, Apr 19, 2011 at 1:51 PM, Insan Praja SW insan.pr...@gmail.com wrote: Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/ -- :wq Claudio
Re: Building from the source -Current
Hi, On Wed, 20 Apr 2011 02:59:34 +0700, Amit Kulkarni amitk...@gmail.com wrote: Errr. are you sure your sources are updated? I don't see a freebsd_machdep.h in my /usr/src Sources are cvs-ed. I tried remove freebsd_machdep.h from the source manually, nothing changes. see http://www.openbsd.org/faq/faq5.html#BldGetSrc Just su to root, the FAQ doesn't mention using sudo except for config kernels http://www.openbsd.org/faq/faq5.html#BldKernel notice the #prompt which is root prompt. It shouldn't be a problem I think, hundreds of time compiling using sudo without a problem. I wouldn't do make install until make is finished and no errors. This isn't something which can be automated for a beginner. The FAQ doesn't show it that way. On Tue, Apr 19, 2011 at 1:51 PM, Insan Praja SW insan.pr...@gmail.com wrote: Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/ Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/
Re: Building from the source -Current
guenther@ removed freebsd-compat on April 5. Just update your sources again from a different cvs mirror. That file is history. http://www.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i386/i386/Attic/freebsd_machdep.c?hideattic=0 On Wed, 20 Apr 2011, Insan Praja SW wrote: Hi, On Wed, 20 Apr 2011 02:59:34 +0700, Amit Kulkarni amitk...@gmail.com wrote: Errr. are you sure your sources are updated? I don't see a freebsd_machdep.h in my /usr/src Sources are cvs-ed. I tried remove freebsd_machdep.h from the source manually, nothing changes. see http://www.openbsd.org/faq/faq5.html#BldGetSrc Just su to root, the FAQ doesn't mention using sudo except for config kernels http://www.openbsd.org/faq/faq5.html#BldKernel notice the #prompt which is root prompt. It shouldn't be a problem I think, hundreds of time compiling using sudo without a problem. I wouldn't do make install until make is finished and no errors. This isn't something which can be automated for a beginner. The FAQ doesn't show it that way. On Tue, Apr 19, 2011 at 1:51 PM, Insan Praja SW insan.pr...@gmail.com wrote: Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/ Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/
Re: vnconfig wd1 disklabel dissapearing
On Tue, 19 Apr 2011 22:36:41 +0200 Claudio Jeker wrote: On Tue, Apr 19, 2011 at 08:47:03PM +, Kevin Chadwick wrote: On Tue, 19 Apr 2011 10:18:20 + Kevin Chadwick wrote: /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Anyone got even a hunch why wd1a and wd0l as used above behave repeatably differently. Are you sure you can use /dev/wd1a as backend file for a vnd? From my understanding block devices should not be used for anything that does file IO. So have you tried /dev/rwd1a instead in the vnconfig command? Well it works on wd0l but I don't know how efficient or reliable either are. I've switched back to files now anyway, I'll wait for dd and use bioctl on very large drives. Using the c partition is obviously very wrong, not only is it fscked but seems a lot slower at newfs atleast. I'll bear it in mind if I ever do any tests in the future though. Thanks
Re: Building from the source -Current
Hi, On Wed, 20 Apr 2011 04:08:48 +0700, Claudio Jeker cje...@diehard.n-r-g.com wrote: The way kernel get built changed lately. make depend is no more and because of this you need to remove the build directory before building a new kernel or the old dependencies will hount you. Dang, I simply remove .depend and it went OK. On Tue, Apr 19, 2011 at 02:59:34PM -0500, Amit Kulkarni wrote: Errr. are you sure your sources are updated? I don't see a freebsd_machdep.h in my /usr/src see http://www.openbsd.org/faq/faq5.html#BldGetSrc Just su to root, the FAQ doesn't mention using sudo except for config kernels http://www.openbsd.org/faq/faq5.html#BldKernel notice the #prompt which is root prompt. I wouldn't do make install until make is finished and no errors. This isn't something which can be automated for a beginner. The FAQ doesn't show it that way. On Tue, Apr 19, 2011 at 1:51 PM, Insan Praja SW insan.pr...@gmail.com wrote: Hi Misc@, Tried to build kernel from the source but something like this; $ sudo config GENERIC.MP Don't forget to run make depend Kernel options have changed -- you must run make clean $ cd ../compile/GENERIC.MP/ $ sudo make clean sudo make depend sudo make sudo make install rm -f eddep *bsd *bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs assym.h make: don't know how to make machine/freebsd_machdep.h. Stop in /usr/src/sys/arch/i386/compile/GENERIC.MP. What should I do? Thanks, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/ Thanks All, Insan Praja SW -- Using Opera's revolutionary email client: http://www.opera.com/mail/
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
Maybe I'll pick up a few more, and leave them in the break room... We're pretty linux-centric here, but there are a bunch of coders here who could learn a few things about good code... On Tue, Apr 19, 2011 at 15:11, Miod Vallat m...@online.fr wrote: The OpenBSD project does not receive any proceeds from tshirt, posters, doll or book sales. In any case, the OpenBSD project receives more money from the sale of one CD set than from the sale of one clothing attire, due to the production costs of said items. So if you want to contribute but don't know what to get, get a CD set (or several!). Noone will mind if you frame them and hang them on your wall; it's the thought which counts. Miod
Re: vnconfig wd1 disklabel dissapearing
On Tue, Apr 19, 2011 at 11:22:52PM +, Kevin Chadwick wrote: On Tue, 19 Apr 2011 22:36:41 +0200 Claudio Jeker wrote: On Tue, Apr 19, 2011 at 08:47:03PM +, Kevin Chadwick wrote: On Tue, 19 Apr 2011 10:18:20 + Kevin Chadwick wrote: /sbin/disklabel -E wd1 /sbin/vnconfig -ck svnd0 /dev/wd1a /sbin/disklabel -E svnd0 /sbin/newfs /dev/rsvnd0a /sbin/newfs /dev/rsvnd0d /sbin/disklabel -E wd0 /sbin/vnconfig -ck svnd1 /dev/wd0l /sbin/disklabel -E svnd1 /sbin/newfs /dev/rsvnd1a reboot, I guess disklabel -c would do the same wd0l and svnd1 work fine (disklabels visible and work fine) I have to recreate the disklabel for wd1 and svnd0 after which it works fine untill the next reboot (data accessed). Anyone got even a hunch why wd1a and wd0l as used above behave repeatably differently. Are you sure you can use /dev/wd1a as backend file for a vnd? From my understanding block devices should not be used for anything that does file IO. So have you tried /dev/rwd1a instead in the vnconfig command? Well it works on wd0l but I don't know how efficient or reliable either are. I've switched back to files now anyway, I'll wait for dd and use bioctl on very large drives. Using the c partition is obviously very wrong, not only is it fscked but seems a lot slower at newfs atleast. I'll bear it in mind if I ever do any tests in the future though. Thanks I don't see you fdisk'ing svnd0. That might be interesting. It's had to tell from your info where the disklabel may be written (and thus overwritten). If you could provide the output from disklabel for all these devices that might be insightful. Ken
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, Apr 19, 2011 at 08:11:10PM +, Miod Vallat wrote: The OpenBSD project does not receive any proceeds from tshirt, posters, doll or book sales. In any case, the OpenBSD project receives more money from the sale of one CD set than from the sale of one clothing attire, due to the production costs of said items. So if you want to contribute but don't know what to get, get a CD set (or several!). Noone will mind if you frame them and hang them on your wall; it's the thought which counts. Miod In fact one famous CD decorates the ceiling of a Calgary bar. Why not upgrade the decor of your local drinking establishment and give them a CD set to put on the wall/ceiling! And then you can raise a beer to OpenBSD every visit. Ken
Re: not boot panic: trap type 6, code=2, pc=d032a644c
On Tue, Apr 19, 2011 at 09:37:21AM -0600, Orestes LeaL R. wrote: On Mon, 18 Apr 2011 08:24:55 -0600, Kenneth R Westerback kwesterb...@rogers.com wrote: On Mon, Apr 18, 2011 at 07:57:20AM -0600, Orestes LeaL R. wrote: This diff fixed the problem. Thanks! Maybe this is a silly question but this diff its applied on the latest snapshot iso? Any committed code will be present in any snapshot dated after the commit. Allowing for any timezone oddities. Ken Your diff fixed the problem, big thanks, LeaL Thanks for testing and confirming. Ken
La herramienta que usa su competencia con Hospitales (ID:92639)
Los Hospitales de Mixico 2007-2009 Base de Datos obligada para Proveedores de Hospitales Me interesa la Base de Datos de Hospitales ...di click aqui O llamenos al 01-800-716-1681 ?Negocios o contacto con Hospitales? Si su producto o servicio esta relacionado con el sector salud, nuestra base de datos de hospitales es una herramienta obligada. Los Hospitales de Mixico incluye mas de 3,000 hospitales de la Repzblica Mexicana -tanto pzblicos como privados- con informacisn de: * Nombre del Hospital * Especialidad * Domicilio Completo * Telefonos y Faxes * Camas * Quirsfanos * Unidad de Cuidados Intensivos * Directivos Principales * Servicios Impreso y Archivos xls. Descargable del inmediato Usted recibe una base de datos en una carpeta impresa y en un CD ROM en formato xls. No tiene candados ni restricciones. Es un archivo xls listo para usarse. De hecho la puede descargar en este momento, y la contraseqa se la mandamos en cuanto hagamos la gestsn de la compra. Di click aqum para descarga inmediata Magnmfica Oportunidad. Mejor precio, mas producto Cada hospital en un renglsn y cada dato una columna, lo cual le permite seleccionar de acuerdo a los criterios que mejor le convengan, por ejemplo geograficamente, por tamaqo, especialidad o directivo. Como en Abril del 2011 sale la nueva edicisn, durante este mes de Diciembre le ofrecemos: * Un interesante descuento (30%) * Mantener el precio actual para la del 2011 (o sea sin aumento) * Los emails que hemos recabado hasta la fecha de los hospitales * El pago de esta edicisn se lo tomamos a cuenta de la siguiente Me interesa la Base de Datos de Hospitales ...di click aqui Darme de baja de su lista
4.7 ospfd FIB/RIB synchronization
I'm having a bit of an issue with OpenOSPFd on 4.7 running on i386 hardware. The gist of the problem is that it seems that changes to the kernel routing table and/or interfaces are not being synchronized into the OSPF RIB and LSDB. As an example, I have a CARP interface called carp17 that is configured in /etc/ospfd.conf, and routed like so: # ifconfig carp17 carp17: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:11 description: Foobarbaz CARP priority: 0 carp: BACKUP carpdev vlan17 vhid 17 advbase 1 advskew 100 groups: carp inet6 fe80::200:5eff:fe00:111%carp17 prefixlen 64 scopeid 0x2f inet X.X.186.161 netmask 0xfff0 broadcast X.X.186.175 # netstat -rn | grep X.X.186.160 | grep carp X.X.186.160/28 link#47C 00 - 4 carp17 # ospfctl show fib | grep .186.160 C4 X.X.186.160/28link#47 *O 32 X.X.186.160/28X.X.191.21 # ospfctl show rib | grep .186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 11:50:38 So, it's configured with the network X.X.186.160/28. If I try and re-configure this to be a /29: # ifconfig carp17 inet X.X.186.161 netmask 0xfff8 ospfd's FIB reflects the change: # ospfctl show fib | grep 186.160 *O 32 X.X.186.160/28X.X.191.21 C4 X.X.186.160/29link#47 But the RIB does not: # ospfctl show rib | grep 186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 12:09:25 I've tried an ospfctl fib reload to no avail. The RIB still doesn't reflect the change: # ospfctl show rib | grep 186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 12:11:39 Is there something I could be missing or doing wrong? Should FIB synchronization into OSPF work with 4.7? I'm going off of the changelog and this mailinglist entry: http://marc.info/?l=openbsd-miscm=127616167503271 Cheers, jof
CARP compatibility
Hello, We have two openBSD installation a 4.6 and 4.8 we setup CARP between the two machines, but things are not working properly. On the internal side of the network we have this (ifconfig -A): Router 1 carp0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:01 priority: 0 carp: MASTER carpdev em1 vhid 1 advbase 1 advskew 100 groups: carp Router 2 carp0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:01 priority: 0 carp: INIT carpdev em1 vhid 1 advbase 1 advskew 0 groups: carp while on the external side we have : Router 1 carp1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:02 priority: 0 carp: MASTER carpdev em0 vhid 2 advbase 1 advskew 100 groups: carp Router 2 carp1: flags=8803UP,BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:00:00:00:00 priority: 0 carp: INIT carpdev none vhid 2 advbase 1 advskew 0 groups: carp We turned off carp0. As you can see things are messed up. Does that have something to do with different openBSD versions?? Does anyone had the same issues, as the interface that is meant to be BACKUP is the MASTER. Thanks. -- Abbass MAROUNI Internet Memory Foundation internetmemory.org
Re: 4.7 ospfd FIB/RIB synchronization
i had this same problem and fixed it in time for the 4.8 release. is it possible you can upgrade? On 20/04/2011, at 9:10 AM, Jonathan Lassoff wrote: I'm having a bit of an issue with OpenOSPFd on 4.7 running on i386 hardware. The gist of the problem is that it seems that changes to the kernel routing table and/or interfaces are not being synchronized into the OSPF RIB and LSDB. As an example, I have a CARP interface called carp17 that is configured in /etc/ospfd.conf, and routed like so: # ifconfig carp17 carp17: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:00:5e:00:01:11 description: Foobarbaz CARP priority: 0 carp: BACKUP carpdev vlan17 vhid 17 advbase 1 advskew 100 groups: carp inet6 fe80::200:5eff:fe00:111%carp17 prefixlen 64 scopeid 0x2f inet X.X.186.161 netmask 0xfff0 broadcast X.X.186.175 # netstat -rn | grep X.X.186.160 | grep carp X.X.186.160/28 link#47C 00 - 4 carp17 # ospfctl show fib | grep .186.160 C4 X.X.186.160/28link#47 *O 32 X.X.186.160/28X.X.191.21 # ospfctl show rib | grep .186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 11:50:38 So, it's configured with the network X.X.186.160/28. If I try and re-configure this to be a /29: # ifconfig carp17 inet X.X.186.161 netmask 0xfff8 ospfd's FIB reflects the change: # ospfctl show fib | grep 186.160 *O 32 X.X.186.160/28X.X.191.21 C4 X.X.186.160/29link#47 But the RIB does not: # ospfctl show rib | grep 186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 12:09:25 I've tried an ospfctl fib reload to no avail. The RIB still doesn't reflect the change: # ospfctl show rib | grep 186.160 X.X.186.160/28X.X.191.21 Intra-Area Network 20 12:11:39 Is there something I could be missing or doing wrong? Should FIB synchronization into OSPF work with 4.7? I'm going off of the changelog and this mailinglist entry: http://marc.info/?l=openbsd-miscm=127616167503271 Cheers, jof
Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)
On Tue, 19 Apr 2011 11:18 -0400, m brandenberg mcb...@panix.com wrote: On Tue, 19 Apr 2011, Theo de Raadt wrote: - Keeps me from taking that cushy Microsoft job Still... This *would* produce some interesting news stories. I imagine it would be similar to when Harlan Ellison took a job with Disney. :)
Cozumel: Snorkel, Buceo, Scooters....
B?Vacaciones en Cozumel? Disfruta Cozumel sobre ruedas Snorkel y Buceo Tel: 987-8713105 Cel: 987-8739524 Nextel: (81)1506-8658 ID: 62 * 189692 * 5 [http://corporativomexico.info/send/link.php?M=6510722N=176L=155F=T] [http://corporativomexico.info/send/link.php?M=6510722N=176L=156F=T] i...@sombrerorentals.com [mailto:i...@sombrerorentals.com] www.sombrerorentals.com [http://corporativomexico.info/send/link.php?M=6510722N=176L=155F=T] [http://corporativomexico.info/send/link.php?M=6510722N=176L=139F=T] Unsubscribe [http://corporativomexico.info/send/link.php?M=6510722N=176L=60F=T]
