Re: 3k machines
Hi Friedrich, i am managing some openbsd machines. There are a company, here, in the city a live that holds about 3k machines and i not including servers hardware; only desktop. I was wondering: How do you manage such a volume of nodes, i mean, in an efficient manner. Any experience with that ? I would recommend Cfengine [1]. Unfortunately the latest version segfaults on OpenBSD, but version 3.4.0b1 still works fine. I've opened a bug report [2] with Cfengine, but no solution yet. If you want, I can provide you with the package for 5.2 (AMD64) or the updated port. Kind regards, Martijn Rijkeboer 1. http://cfengine.com/ 2. https://cfengine.com/dev/issues/1701
Re: dhcpd not starting
Chris, I guess you've got two problems: A) filtering your clients to get them the right options B) delivering vendor specific options. more inline... obsd_m...@chrissmith.org (Chris Smith), 2013.01.01 (Tue) 18:20 (CET): On Tue, Jan 1, 2013 at 7:59 AM, MERIGHI Marcus mcmer-open...@tor.at wrote: I could not figure out which dhcp option(s) you are referring to. Please specify option number and RFC number. For options with names see: dhcp-options(5) (beeing reworked currently) /usr/src/usr.sbin/dhcpd/tables.c For options without names use e.g. ``option-252'' thereby keeping the created *_ip_tables more Do you mean pf.conf(5) tables here? Or dhcp leases table (/var/db/dhcpd.leases)? up-to-date. Option space is also good for preventing some of the WPAD nonsense and assisting in NetBIOS configurations. Could you be more specific, please? Hopefully this commented section of dhcpd.conf I normally use will help: = #windoze option space windoze; option windoze.nbt code 1 = unsigned integer 32; option windoze.release code 2 = unsigned integer 32; option windoze.metric code 3 = unsigned integer 32; My guess is your are talking about RFC 2132 Section 8.4 ``Vendor Specific Information'' (OpenBSD: vendor-encapsulated-options). http://msdn.microsoft.com/en-us/library/cc227275.aspx an example of how to deliver vendor specific: http://www.bytefusion.com/products/ntm/ptnt/configuring_via_dhcp.htm Thus I think it can be done, never done it myself. # 1 = enable NetBIOS over TCP # 2 = disable NetBIOS over TCP option windoze.nbt 1; I do find some NetBIOS options in RFC 2132, but these have the following option number codes: 44 NetBIOS over TCP/IP Name Server Option (OpenBSD: netbios-name-servers) 45 NetBIOS over TCP/IP Datagram Distribution Server Option (OpenBSD: netbios-dd-server) 46 NetBIOS over TCP/IP Node Type Option (OpenBSD: netbios-node-type) 47 NetBIOS over TCP/IP Scope Option (OpenBSD: netbios-scope) Again I think you are talking about vendor specific... # 1 = send DHCPRELEASE on shutdown option windoze.release 1; RFC 2131, Section 3.1, paragraph 6.: 6. The client may choose to relinquish its lease on a network address by sending a DHCPRELEASE message to the server. The client identifies the lease to be released with its 'client identifier', or 'chaddr' and network address in the DHCPRELEASE message. If the client used a 'client identifier' when it obtained the lease, it MUST use the same 'client identifier' in the DHCPRELEASE message. So, you are asking your windoze machines to do what they are supposed to do anyways? Again I think you are talking about vendor specific... # default route cost metric option windoze.metric 1; Again I think you are talking about vendor specific... #/windoze option wpad-url code 252 = text; option wpad-url \n\000; #option wpad-url http://192.168.99.123/proxy.pac\n;; use ``option autoproxy-script'' for that (and see /usr/src/usr.sbin/dhcpd/tables.c). This one works, at least for me. if substring (option vendor-class-identifier, 0, 8) = MSFT 5.0 { vendor-option-space windoze; option netbios-node-type 8; } No such filtering in base dhcpd(8). = Is any of this available in base dhcpd? Maybe I'm just missing it. I do not think so, dhcpd.conf(5): ``For clients whose addresses will be dynamically assigned, there is currently no way to group parameter assignments other than by network topology.'' As far as I know there's only two ways of filtering clients: - dhcp-client-identifier (dhcp-options(5)) - hardware ethernet (dhcpd.conf(5)) By these you could assign your windoze hosts to a common group declaration and assign your windoze options. Bye, Marcus
Re: snapshots total freeze
On 12/25/2012 07:05 PM, frantisek holop wrote: hi there, since a couple of snapshosts back i can quite reliably freeze my openbsd notebook simply by leaving it on overnight. the desktop is there, all the open windows are there, but it has become a painting... nothing in the logs, no panic, nothing. anybody else is seeing something similar? -f Just my 0.5 cents in order... I also had some sporadic hangs on various 5.2-snapshots some time ago on my home pc (isn't a notebook). I've found a reason for this once I opened the case. it was full of dust. So I did a dust blowing/sucking, and it now works fine. I suspect the same reasons with notebooks, if a notebook have vents.(mine have) -- With best regards, Gregory Edigarov
Re: 3k machines
We are managing several hundred OpenBSD workstations in production. On Tue, 2013-01-01 at 23:28 +0100, Johan Ryberg wrote: Puppet may useful for that many work stations. Are one single company using 3000 OpenBSD work stations? Cool, but I have never heard anything like this before. // Johan On Jan 1, 2013 11:15 PM, Friedrich Locke friedrich.lo...@gmail.com wrote: Hi folks, i am managing some openbsd machines. There are a company, here, in the city a live that holds about 3k machines and i not including servers hardware; only desktop. I was wondering: How do you manage such a volume of nodes, i mean, in an efficient manner. Any experience with that ? Thanks.
Re: Goodbye to you my file descriptor - take 3
On Mon, Dec 31, 2012 at 04:53:15PM +1100, Aaron Mason wrote: Ok, I just tried freeing NULL, and it did nothing. Granted it was on a Linux system but still... I stand by my argument that there's no clear improvement, especially on a modern system. It's less code, and code gets copied, and people don't read docs, they copy code and cross their fingers, we shouldn't incentivate that. On Mon, Dec 31, 2012 at 4:50 PM, Aaron Mason simplersolut...@gmail.com wrote: Maxime I'm not entirely clear on what you hoped to achieve with the diffs below, if anything you're inducing possible segfaults if any of those values are NULL. That aside, I fail to see how this could be construed as any sort of improvement. Index: pfctl_osfp.c === RCS file: /cvs/src/sbin/pfctl/pfctl_osfp.c,v retrieving revision 1.18 diff -u -r1.18 pfctl_osfp.c --- pfctl_osfp.c18 Oct 2010 15:55:28 - 1.18 +++ pfctl_osfp.c22 Dec 2012 07:08:28 - @@ -112,16 +112,11 @@ while ((line = fgetln(in, len)) != NULL) { lineno++; - if (class) - free(class); - if (version) - free(version); - if (subtype) - free(subtype); - if (desc) - free(desc); - if (tcpopts) - free(tcpopts); + free(class); + free(version); + free(subtype); + free(desc); + free(tcpopts); class = version = subtype = desc = tcpopts = NULL; memset(fp, 0, sizeof(fp)); @@ -250,16 +245,11 @@ add_fingerprint(dev, opts, fp); } - if (class) - free(class); - if (version) - free(version); - if (subtype) - free(subtype); - if (desc) - free(desc); - if (tcpopts) - free(tcpopts); + free(class); + free(version); + free(subtype); + free(desc); + free(tcpopts); fclose(in); @@ -513,7 +503,7 @@ return (buf); found: - snprintf(buf, len, %s, class_name); + strlcpy(buf, class_name, len); if (version_name) { strlcat(buf, , len); strlcat(buf, version_name, len); Index: pfctl_radix.c === RCS file: /cvs/src/sbin/pfctl/pfctl_radix.c,v retrieving revision 1.29 diff -u -r1.29 pfctl_radix.c --- pfctl_radix.c 27 Jul 2011 00:26:10 - 1.29 +++ pfctl_radix.c 22 Dec 2012 07:08:28 - @@ -499,8 +499,7 @@ { if (b == NULL) return; - if (b-pfrb_caddr != NULL) - free(b-pfrb_caddr); + free(b-pfrb_caddr); b-pfrb_caddr = NULL; b-pfrb_size = b-pfrb_msize = 0; }
Re: dhcpd not starting
In-tree dhcp most certainly support options because I am using them: option autoproxy-script http://1.2.3.4/wpad.dat;; Cheers, Lars On Mon, Dec 31, 2012 at 11:19 PM, Chris Smith obsd_m...@chrissmith.orgwrote: Maybe it's a problem due to Unbound being a package and not part of the core system, but a normal configuration such as: host hostname.example.com { hardware ethernet 00:1a:80:f4:75:ad; fixed-address hostname.example.com; } has to be rewritten as: host hostname.example.com { hardware ethernet 00:1a:30:64:75:bc; fixed-address 172.38.202.17; } thereby duplicating efforts or dhcpd will not start on reboot since pkg scripts start after everything else and Unbound has not yet been started. Also as nice as it is to have the core dhcpd create pf tables it has otherwise very limited functionality, such as lack of support for option space, which can be used to request a system release it's lease on shutdown thereby keeping the created *_ip_tables more up-to-date. Option space is also good for preventing some of the WPAD nonsense and assisting in NetBIOS configurations. Using the packaged dhcpd would most likely eliminate the startup issue and provide the missing dhcpd functionality but one would also lose the tight pf integration.
Re: dhcpd not starting
Oh, you mean the space thing. Well, it probably doesn't but I Have never needed that. --- Lars On Wed, Jan 2, 2013 at 6:50 PM, Lars Hansson romaby...@gmail.com wrote: In-tree dhcp most certainly support options because I am using them: option autoproxy-script http://1.2.3.4/wpad.dat;; Cheers, Lars On Mon, Dec 31, 2012 at 11:19 PM, Chris Smith obsd_m...@chrissmith.orgwrote: Maybe it's a problem due to Unbound being a package and not part of the core system, but a normal configuration such as: host hostname.example.com { hardware ethernet 00:1a:80:f4:75:ad; fixed-address hostname.example.com; } has to be rewritten as: host hostname.example.com { hardware ethernet 00:1a:30:64:75:bc; fixed-address 172.38.202.17; } thereby duplicating efforts or dhcpd will not start on reboot since pkg scripts start after everything else and Unbound has not yet been started. Also as nice as it is to have the core dhcpd create pf tables it has otherwise very limited functionality, such as lack of support for option space, which can be used to request a system release it's lease on shutdown thereby keeping the created *_ip_tables more up-to-date. Option space is also good for preventing some of the WPAD nonsense and assisting in NetBIOS configurations. Using the packaged dhcpd would most likely eliminate the startup issue and provide the missing dhcpd functionality but one would also lose the tight pf integration.
Re: 3k machines
Don't get me wrong. I only said they have 3K machine. I never said they are using OBSD. Actually, only servers are OBSD. For desktops, they are using win/linux. I am trying to change those desktops from win/linux to OBSD. Regards. On Tue, Jan 1, 2013 at 8:28 PM, Johan Ryberg jo...@securit.se wrote: Puppet may useful for that many work stations. Are one single company using 3000 OpenBSD work stations? Cool, but I have never heard anything like this before. // Johan On Jan 1, 2013 11:15 PM, Friedrich Locke friedrich.lo...@gmail.com wrote: Hi folks, i am managing some openbsd machines. There are a company, here, in the city a live that holds about 3k machines and i not including servers hardware; only desktop. I was wondering: How do you manage such a volume of nodes, i mean, in an efficient manner. Any experience with that ? Thanks.
carp + 5.1/5.2 woes
Hi, I have a setup with three machines, all i386, and all plugged into one switch: A: 5.1 (IPv4: master) B: 5.0 (IPv4: backup) C: 5.2 (IPv4: master, IPv6: backup) Each host has two IPv4 carp interfaces, all on one interface (carp0 and carp1), and host C has an additional carp2 with only an IPv6 address (no IPv4). Now, A + B work nicely with two carp interfaces (IPv4), but A+C do not. While the carp interface for IPv6 goes into MASTER mode, as expected, if I change the advskew on A, the IPv4 interfaces don't go into MASTER mode, but stay in BACKUP mode instead, no matter what: Eg. from C: # cat /etc/hostname.carp* # carp0: inet 10.0.0.1 255.255.248.0 10.0.7.255 vhid 1 advskew 100 pass pass1 carpdev em0 # carp1: inet 10.1.1.1 255.255.255.0 10.1.1.255 vhid 2 advskew 100 pass pass2 carpdev em0 # carp2: inet6 3ffe:3ffe::1 32 vhid 3 advskew 100 pass pass3 carpdev em0 With this setup, carp1 will stay in BACKUP mode when I say ifconfig carp1 advskew 120 on A, while on B, it would go into MASTER immediately. I also have trouble taking carp2 down and up again, like in ifconfig carp2 down; ifconfig carp2 up. The result is that carp2 does no longer respond to any packets sent to 3ffe:3ffe::1. Sending to the IPv6 address bound to em0 continues to work like a charm, though. Saying ifconfig carp2 destroy; sh /etc/netstart carp2 - which I thought would re-create the carp2 pseudy-device from scratch, does also not work, but elicits the following error message from the kernel: /bsd: in6_ifloop_request: ADD operation failed for 3ffe:3ffe::0001 (errno=17) There are error messages related to duplicate IPv6 addresses, mentioning the link-local auto-generated IPv6 address, which is the same for all carp interfaces, eg: /bsd: nd6_na_input: duplicate IP6 address fe80:0008::0200:5eff:fe00:0102 Touring the logs, I also find related error messages that I could not yet make sense of: /bsd: arpresolve: 10.0.0.1: route without link local address The mentioned address is being advertised by A as the master, and intended to be switched around by the CARP mechanism (works with A+B). On C, I have pf disabled. On all three systems, I have bgpd enabled. On A, I have pf enabled with these rules: # pfctl -s r block drop in quick on egress proto tcp from sshguard to any ... pass quick on em0 proto carp all keep state (no-sync) pass quick on em1 proto carp all keep state (no-sync) When I reboot the machine, the states of the CARP interface(s) are being set correctly, but I don't know how to change them thereafter, as described above. The desired target state is to have A + C as a pair of CARP'ed routers for both IPv4 and IPv6. What am I doing wrong? TIA! Kind regards, --Toni++
Re: carp + 5.1/5.2 woes
On Wed, 2 Jan 2013 13:39:25 +0100 Toni Mueller openbsd-m...@oeko.net wrote: A: 5.1 (IPv4: master) B: 5.0 (IPv4: backup) C: 5.2 (IPv4: master, IPv6: backup) Didn't the CARP protocol change between these releases? I don't think it's compatible. I'm sure someone else will chime in with the details, but I believe I remember reading this on the list.
Re: carp + 5.1/5.2 woes
Yes, this sounds familiar. On 2 jan 2013, at 14:37, Mark Felder f...@feld.me wrote: Didn't the CARP protocol change between these releases? I don't think it's compatible. I'm sure someone else will chime in with the details, but I believe I remember reading this on the list.
Re: carp + 5.1/5.2 woes
Doubtful, CARP has not changed protocol for many years. You might be thinking of pfsync, but that is mostly forwards compatible for a couple releases now. On 2013 Jan 02 (Wed) at 15:30:48 +0100 (+0100), mxb wrote: :Yes, this sounds familiar. : :On 2 jan 2013, at 14:37, Mark Felder f...@feld.me wrote: : : Didn't the CARP protocol change between these releases? I don't think it's :compatible. I'm sure someone else will chime in with the details, but I :believe I remember reading this on the list. : -- A candidate is a person who gets money from the rich and votes from the poor to protect them from each other.
Re: 3k machines
On Wed, Jan 02, 2013 at 10:37:37AM -0200, Friedrich Locke wrote: Don't get me wrong. I only said they have 3K machine. I never said they are using OBSD. Actually, only servers are OBSD. For desktops, they are using win/linux. I am trying to change those desktops from win/linux to OBSD. You would need to have some win/linux around anyway (specific apps, flash, java issues...), so maybe you would like to have a look to SPICE protocol which could be used on your future OpenBSD clients to access win/linux machines (when talking about virtualization one could think about replacing ESXi/vCenter with oVirt - in oVirt or RHEV env you would need to have a look at spice-xpi [firefox plugin]). Keep us informed about the process! jirib
Re: 3k machines
On Jan 02 09:49:13, ji...@devio.us wrote: On Wed, Jan 02, 2013 at 10:37:37AM -0200, Friedrich Locke wrote: Don't get me wrong. I only said they have 3K machine. I never said they are using OBSD. Actually, only servers are OBSD. For desktops, they are using win/linux. I am trying to change those desktops from win/linux to OBSD. If a company lets you convert 3000 of their machines to obsd, a followup to http://www.undeadly.org/cgi?action=articlesid=20110420080633 would be in order.
Re: carp + 5.1/5.2 woes
Le Wed, 2 Jan 2013 13:39:25 +0100, Toni Mueller openbsd-m...@oeko.net a écrit : Hello, With this setup, carp1 will stay in BACKUP mode when I say ifconfig carp1 advskew 120 on A, while on B, it would go into MASTER immediately. Hmm, did you check the value of the carp demote counter? # ifconfig -g carp (just a guess, regards)
Re: carp + 5.1/5.2 woes
Hi, On Wed, Jan 02, 2013 at 04:53:02PM +0100, Patrick Lamaiziere wrote: Le Wed, 2 Jan 2013 13:39:25 +0100, Toni Mueller openbsd-m...@oeko.net a écrit : With this setup, carp1 will stay in BACKUP mode when I say ifconfig carp1 advskew 120 on A, while on B, it would go into MASTER immediately. Hmm, did you check the value of the carp demote counter? # ifconfig -g carp I just checked. The result is the same on all three machines: # ifconfig -g carp carp: carp demote count 0 Kind regards, --Toni++
Re: Running OpenBSD on Raspberry Pi
Hi, I wonder if it's possible to run OpenBSD on Raspberry Pi. Is there any image ready for putting on my SD card and boot up? If not, is there any manual or guide how to make one? Thanks. I've been doing some research and there is a number of things that openbsd needs to support the raspberry pi on a fully functional way. At least those thing are: - Support for armv6 CPUs - Something like the Linux frambuffer - A driver for the video chip that uses that frame buffer-like layer - Kernel mode setting - Some specific drivers like that vchiq thing. That one is dual licensed bsd/gpl so maybe it can be ported more easily. AFAIK those are not implemented on openbsd, some of them are worked on and for some the are no plans. So it is not a trivial task.
Re: carp + 5.1/5.2 woes
On 2013-01-02, Toni Mueller openbsd-m...@oeko.net wrote: Hi, I have a setup with three machines, all i386, and all plugged into one switch: A: 5.1 (IPv4: master) B: 5.0 (IPv4: backup) C: 5.2 (IPv4: master, IPv6: backup) Is this 5.0 release or is it something close to 5.0? revision 1.181 date: 2011/03/08 22:53:28; author: mpf; state: Exp; lines: +6 -8 Fix a subtle carp reconfiguration problem. Updating the HMAC from the carp_ioctl call does not see the newly set IP address in the if_addrlist. The only chance for carp to see the new address is via the address-hook callback. This change moves the detection of address changes entirely into carp_addr_updated. Furthermore, only call carp_hmac_prepare for the SIOCSVH case. This second bug was the reason why the first one went unnoticed for such a long time. Problem found and debugging help by camield@. OK camield@ revision 1.183 date: 2011/04/29 12:36:31; author: mpf; state: Exp; lines: +10 -11 The previous reconfiguration change broke IPv6 only setups. The address hook was only registered for v4 addresses. We now call hook_establish at interface creation time. The hook is now disestablished upon interface destroy, which plugs a tiny memleak. While there remove redundancy in carp_set_addr6 and sync it with carp_set_addr. Bug noticed by todd@. OK sthen, mikeb (on an earlier version) OK and some hints by camield@
Re: carp + 5.1/5.2 woes
Hi, On Wed, Jan 02, 2013 at 05:47:23PM +, Stuart Henderson wrote: On 2013-01-02, Toni Mueller openbsd-m...@oeko.net wrote: A: 5.1 (IPv4: master) B: 5.0 (IPv4: backup) C: 5.2 (IPv4: master, IPv6: backup) Is this 5.0 release or is it something close to 5.0? the (working!) 5.0 machine runs # uname -m -r -s -v OpenBSD 5.0 GENERIC#43 i386 The other machines were installed/upgraded from the official CDs. Kind regards, --Toni++
Re: Running OpenBSD on Raspberry Pi
On 2012-12-31, mxb m...@alumni.chalmers.se wrote: Excuse me, but isn't it a sadomasochism to run all those stuff on this kind of hardware? Not quite rpi, but some UK ISPs run core routing (software forwarding + bgp) and L2TP LNS on ARM based hardware.. Some situations are very sensitive to power consumption and it can be worth a fair amount of pain to cut that to a minimum.
Re: vnd and softraid panic
On Mon, Dec 31, 2012 at 07:21:08PM +1100, Joel Sing wrote: On Mon, 31 Dec 2012, Eivind Evensen wrote: Hello. Trying to play around a bit with softraid using vnd reliably results in a panic when assembling the raid volume. I think the first time I tried this was around 4.9 so it's not something new. ... ddb trace Debugger(d08fa43c,f2017e08,d08ce53b,f2017e08,0) at Debugger+0x4 panic(d08ce53b,d0f8a014,f2017e3c,d105fa30,d105ce00) at panic+0x5d sr_wu_put(d105f000,d0ff12b8,f2017e3c,f2017e3c,d02030dd) at sr_wu_put+0x104 scsi_io_put(d105fa30,d0ff12b8,8000,d1068000,d1068000) at scsi_io_put+0x19 scsi_xs_put(f1f4d000,d1068000,f2017e8c,d0418d98,f1f4d000) at scsi_xs_put+0x37 sr_raidp_intr(d1068000,f1e8601c,f11ec000,200,52000) at sr_raidp_intr+0x15b vndstrategy(d1068000,0,0,50,d1068000) at vndstrategy+0x70 spec_strategy(f2017f48,0,f2017f6c,d03ee028,d1053f50) at spec_strategy+0x3d VOP_STRATEGY(d1068000,0,0,0,d0ff12f8) at VOP_STRATEGY+0x2c sr_startwu_callback(d105f000,d0ff12b8,d02008bf,d1053f40,d03ee050) at sr_startwu _callback+0x39 workq_thread(d1053f40) at workq_thread+0x36 Bad frame pointer: 0xd0bc6ed8 Thanks - it is a known issue, which I hope to be able to finish addressing during the next hackathon. Nice to know. If it helps, I can test patches. Regards, Eivind
Re: carp + 5.1/5.2 woes [PARTIALLY SOLVED]
Hi, I have just discovered that I made a configuration error that had resulted in the undesired, but correct, carp behaviour for IPv4. Ie, OpenBSD operates as desired for this case. That leaves these questions open: On Wed, Jan 02, 2013 at 01:39:25PM +0100, Toni Mueller wrote: I also have trouble taking carp2 down and up again, like in ifconfig carp2 down; ifconfig carp2 up. The result is that carp2 does no longer respond to any packets sent to 3ffe:3ffe::1. Sending to the IPv6 address bound to em0 continues to work like a charm, though. Saying ifconfig carp2 destroy; sh /etc/netstart carp2 - which I thought would re-create the carp2 pseudy-device from scratch, does also not work, but elicits the following error message from the kernel: /bsd: in6_ifloop_request: ADD operation failed for 3ffe:3ffe::0001 (errno=17) There are error messages related to duplicate IPv6 addresses, mentioning the link-local auto-generated IPv6 address, which is the same for all carp interfaces, eg: /bsd: nd6_na_input: duplicate IP6 address fe80:0008::0200:5eff:fe00:0102 Touring the logs, I also find related error messages that I could not yet make sense of: /bsd: arpresolve: 10.0.0.1: route without link local address I would still be glad to find that I simply configured junk, instead of running into real bugs... Kind regards, --Toni++
serial over USB
This is 5.2/i386 on an IBM Thinkpad T40. As this laptop does not have a serial port, I bought me this USB-to-serial gizmo: uplcom0 at uhub2 port 2 Prolific Technology Inc. USB 2.0 To COM Device rev 1.10/3.00 addr 2 ucom0 at uplcom0 I am trying to an ALIX running current/i386. From a machine with a serial port, I connect as cu -l /dev/cua00 -38400 and it works fine. The baudrate is indeed 38400; it is set so on the ALIX, and /etc/boot/conf says stty com0 38400 set tty com0 Now from this Thinkpad, I try to connect with cu -l /dev/cuaU0 -38400 That say 'Connected', but nothing else happens. I can see a garbled login screen such as kXKMr/i386 (gw.stare.cz) (tty00) login: -i I usually see something like that with a wrong baudrate. There is no reaction to nothing. All I can do is ~. to disconnect. What kind of problem is this? Can my ucom do 38400? How do I find out? Would it make sense to try other baudrates (on both the ALIX and my end, obviously)? Is anybody using an USB-to-serial connection to an ALIX? Jan OpenBSD 5.2 (GENERIC) #278: Wed Aug 1 10:04:16 MDT 2012 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) M processor 1500MHz (GenuineIntel 686-class) 1.50 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,TM,SBF,EST,TM2 real mem = 804188160 (766MB) avail mem = 780189696 (744MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 06/18/07, BIOS32 rev. 0 @ 0xfd750, SMBIOS rev. 2.33 @ 0xe0010 (61 entries) bios0: vendor IBM version 1RETDRWW (3.23 ) date 06/18/2007 bios0: IBM 237382G apm0 at bios0: Power Management spec V1.2 acpi at bios0 function 0x0 not configured pcibios0 at bios0: rev 2.1 @ 0xfd6e0/0x920 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdea0/272 (15 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82371FB ISA rev 0x00) pcibios0: PCI bus #6 is the last bus bios0: ROM list: 0xc/0x1 0xd/0x1000 0xd1000/0x1000 0xdc000/0x4000! 0xe/0x1 cpu0 at mainbus0: (uniprocessor) cpu0: Enhanced SpeedStep 1496 MHz: speeds: 1500, 1400, 1200, 1000, 800, 600 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) io address conflict 0x5800/0x8 io address conflict 0x5808/0x4 io address conflict 0x5810/0x8 io address conflict 0x580c/0x4 pchb0 at pci0 dev 0 function 0 Intel 82855PM Host rev 0x03 intelagp0 at pchb0 agp0 at intelagp0: aperture at 0xd000, size 0x1000 ppb0 at pci0 dev 1 function 0 Intel 82855PM AGP rev 0x03 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Radeon Mobility M7 rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1: irq 11 drm0 at radeondrm0 uhci0 at pci0 dev 29 function 0 Intel 82801DB USB rev 0x01: irq 11 uhci1 at pci0 dev 29 function 1 Intel 82801DB USB rev 0x01: irq 11 uhci2 at pci0 dev 29 function 2 Intel 82801DB USB rev 0x01: irq 11 ehci0 at pci0 dev 29 function 7 Intel 82801DB USB rev 0x01: irq 11 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb1 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0x81 pci2 at ppb1 bus 2 mem address conflict 0xb000/0x1000 mem address conflict 0xb100/0x1000 cbb0 at pci2 dev 0 function 0 TI PCI1520 CardBus rev 0x01: irq 11 cbb1 at pci2 dev 0 function 1 TI PCI1520 CardBus rev 0x01: irq 11 em0 at pci2 dev 1 function 0 Intel PRO/1000MT (82540EP) rev 0x03: irq 11, address 00:0d:60:7f:83:fa ipw0 at pci2 dev 2 function 0 Intel PRO/Wireless 2100 rev 0x04: irq 11, address 00:0c:f1:16:9b:b8 cardslot0 at cbb0 slot 0 flags 0 cardbus0 at cardslot0: bus 3 device 0 cacheline 0x8, lattimer 0xb0 pcmcia0 at cardslot0 cardslot1 at cbb1 slot 1 flags 0 cardbus1 at cardslot1: bus 6 device 0 cacheline 0x8, lattimer 0xb0 pcmcia1 at cardslot1 ichpcib0 at pci0 dev 31 function 0 Intel 82801DBM LPC rev 0x01: 24-bit timer at 3579545Hz pciide0 at pci0 dev 31 function 1 Intel 82801DBM IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: HTS548040M9AT00 wd0: 16-sector PIO, LBA, 35087MB, 71859186 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVD-ROM GDR8083N, 0K03 ATAPI 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel 82801DB SMBus rev 0x01: irq 11 iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 256MB DDR SDRAM non-parity PC2700CL2.5 spdmem1 at iic0 addr 0x51: 512MB DDR SDRAM non-parity PC2100CL2.5 auich0 at pci0 dev 31 function 5 Intel 82801DB AC97 rev 0x01: irq 11, ICH4 AC97 ac97: codec id 0x41445374 (Analog Devices AD1981B) ac97: codec features headphone, 20 bit DAC, No 3D Stereo audio0 at auich0 Intel 82801DB Modem rev 0x01 at pci0 dev 31 function 6 not
Re: Xorg not working correctly on MacBookAir5,2
On 02/01/2013 07:56, joshua stein wrote: The Macbook Air's display is connected over eDP (DisplayPort), which our hacked up Intel driver doesn't support, which is why it can't find any outputs. Ah, I see. On 02/01/2013 10:47, Jonathan Gray wrote: Though if someone with an eDP using machine wants to try unravel the mess of merge commits and unwanted changes https://github.com/gsutre/netbsd-drmgem/tree/master/xsrc/external/mit/xf86-video-intel/dist supposedly contains eDP support for a slightly older revision of intel hardware along with most? of the OpenBSD changes to the driver. I've started bringing in the changes made in that directory to a copy of the OpenBSD driver hosted here https://bitbucket.org/sevan/edp Sevan
Re: serial over USB
Hi, Is anybody using an USB-to-serial connection to an ALIX? Yes i am. We have many Alix 2D13 boards that we use as routers running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to configure them without problem but i've never used anything else than screen or minicom. You could try with these tools... The default baud rate on alix boards is 38400 but can be changed in cmos setup if you want (pressing S during memory test). Morgan
Re: serial over USB
On Jan 02 23:02:02, com...@daknet.org wrote: Is anybody using an USB-to-serial connection to an ALIX? Yes i am. We have many Alix 2D13 boards that we use as routers running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to configure them without problem but i've never used anything else than screen or minicom. You could try with these tools... screen is a multiplexing (text)window manager which you can run on the remote machine once you are logged in. screen itself does no remote connection, so I believe it's irrelevant here. I haven;t used minicom yet - I use cu(1), and now am looking at tip(1). But I don't think my problem is cu's or tip's problem. Also I would like to stay in base. The default baud rate on alix boards is 38400 but can be changed in cmos setup if you want (pressing S during memory test). I forgot whether 38400 was the default or I changed it to that, but at any rate (ha, pun) that's what is working from any (non-USB) serial port. So I speculate that my problem is with the ucom, not with the connecting software tools above.
Re: 3k machines
On 01/01/2013 05:15 PM, Friedrich Locke wrote: Hi folks, i am managing some openbsd machines. There are a company, here, in the city a live that holds about 3k machines and i not including servers hardware; only desktop. I was wondering: How do you manage such a volume of nodes, i mean, in an efficient manner. Any experience with that ? Thanks. depends on your definition of manage and how the machines will be used...and I'm assuming 3k means around three thousand computers, not MIPS3000 systems. If they are, for example, student machines, you probably want them re-imaged regularly (weekly? daily? between each user?), so building an app to do this into a PXE booting system might take care of a great part of your challenge (bsd.rd hacked to have its install script do a forced reload/reimage) I'm guessing that diskless (or mostly diskless) workstations wouldn't give the performance users expect, but if that's wrong, that's a better choice. If they are business workstations, you probably DON'T want to do complete reloads unless someone really hoses their machine, and you probably don't want auto forced updates all at the same time. I'd probably set up a hacked bsd.rd to be PXE booted when someone wanted to upgrade, and you would monitor your daily reports (automated!) to produce a list of out-of-compliance machines that need to be updated for manual poking. btw: rdist is in base. Key thing is to decide for yourself exactly what manage means, then work out the tools that can help. But when you have lots of similar machines, things need not be difficult. Nick.
Re: serial over USB
On 2 January 2013 23:14, Jan Stary h...@stare.cz wrote: On Jan 02 23:02:02, com...@daknet.org wrote: Is anybody using an USB-to-serial connection to an ALIX? Yes i am. We have many Alix 2D13 boards that we use as routers running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to configure them without problem but i've never used anything else than screen or minicom. You could try with these tools... screen is a multiplexing (text)window manager which you can run on the remote machine once you are logged in. screen itself does no remote connection, so I believe it's irrelevant here. Actually screen can also be used as a serial terminal. It's as easy as screen /dev/ttyS0 38400 (other options can be added after baud rate too) I haven;t used minicom yet - I use cu(1), and now am looking at tip(1). But I don't think my problem is cu's or tip's problem. Also I would like to stay in base. The default baud rate on alix boards is 38400 but can be changed in cmos setup if you want (pressing S during memory test). I forgot whether 38400 was the default or I changed it to that, but at any rate (ha, pun) that's what is working from any (non-USB) serial port. So I speculate that my problem is with the ucom, not with the connecting software tools above. Have you tried other USB ports ? What software/settings are you using to connect ? A quick Google search suggests both screen /dev/ttyUSB0 38400 and screen /dev/ttyUSB0 38400,cs8 should work.
Small diff to calendar.birthday
--- usr.bin/calendar/calendars/calendar.birthdaySun Oct 16 09:09:27 2011 +++ usr.bin/calendar/calendars/calendar.birthday.newWed Jan 2 15:41:39 2013 @@ -11,7 +11,7 @@ 01/01 J.D. Salinger born, 1919 01/01 Heinz Zemanek born in Vienna, Austria, 1920 01/01 Dolores Haze (prototype for Lolita) born, 1935 -01/02 Isaac Asimov born in Petrovichi, Russian SFSR (now part of USSR), 1920 +01/02 Isaac Asimov born in Petrovichi, a village in Shumyachsky District of Smolensk Oblast, Russia, 1920 01/03 J.R.R. Tolkien born, 1892 01/04 George Washington Carver born in Missouri, 1864 01/04 Jakob Grimm born, 1785
Re: Small diff to calendar.birthday
I think if you put District, the you should change Oblast to Province. //максим On 2 jan 2013, at 23:47, jr...@openvistas.net wrote: --- usr.bin/calendar/calendars/calendar.birthday Sun Oct 16 09:09:27 2011 +++ usr.bin/calendar/calendars/calendar.birthday.new Wed Jan 2 15:41:39 2013 @@ -11,7 +11,7 @@ 01/01 J.D. Salinger born, 1919 01/01 Heinz Zemanek born in Vienna, Austria, 1920 01/01 Dolores Haze (prototype for Lolita) born, 1935 -01/02Isaac Asimov born in Petrovichi, Russian SFSR (now part of USSR), 1920 +01/02Isaac Asimov born in Petrovichi, a village in Shumyachsky District of Smolensk Oblast, Russia, 1920 01/03 J.R.R. Tolkien born, 1892 01/04 George Washington Carver born in Missouri, 1864 01/04 Jakob Grimm born, 1785
Re: Small diff to calendar.birthday
On 1/2/13 3:56 PM, mxb wrote: I think if you put District, the you should change Oblast to Province. You may know more than me--I took that directly from wikipedia :-) What should district be to be consistent and correct? //максим On 2 jan 2013, at 23:47, jr...@openvistas.net wrote: --- usr.bin/calendar/calendars/calendar.birthdaySun Oct 16 09:09:27 2011 +++ usr.bin/calendar/calendars/calendar.birthday.newWed Jan 2 15:41:39 2013 @@ -11,7 +11,7 @@ 01/01 J.D. Salinger born, 1919 01/01 Heinz Zemanek born in Vienna, Austria, 1920 01/01 Dolores Haze (prototype for Lolita) born, 1935 -01/02 Isaac Asimov born in Petrovichi, Russian SFSR (now part of USSR), 1920 +01/02 Isaac Asimov born in Petrovichi, a village in Shumyachsky District of Smolensk Oblast, Russia, 1920 01/03 J.R.R. Tolkien born, 1892 01/04 George Washington Carver born in Missouri, 1864 01/04 Jakob Grimm born, 1785
Re: serial over USB
-Original Message- From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of Jan Stary Sent: Wednesday, January 02, 2013 4:15 PM To: misc@openbsd.org Subject: Re: serial over USB screen is a multiplexing (text)window manager which you can run on the remote machine once you are logged in. screen itself does no remote connection, so I believe it's irrelevant here. GNU screen makes a great terminal for console use, etc.: ... screen /dev/pathtoserialport baudrate Jim
Re: serial over USB
On Thu, Jan 3, 2013 at 9:32 AM, Marios Makassikis mmakassi...@gmail.com wrote: On 2 January 2013 23:14, Jan Stary h...@stare.cz wrote: On Jan 02 23:02:02, com...@daknet.org wrote: Is anybody using an USB-to-serial connection to an ALIX? Yes i am. We have many Alix 2D13 boards that we use as routers running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to configure them without problem but i've never used anything else than screen or minicom. You could try with these tools... screen is a multiplexing (text)window manager which you can run on the remote machine once you are logged in. screen itself does no remote connection, so I believe it's irrelevant here. Actually screen can also be used as a serial terminal. It's as easy as screen /dev/ttyS0 38400 (other options can be added after baud rate too) I haven;t used minicom yet - I use cu(1), and now am looking at tip(1). But I don't think my problem is cu's or tip's problem. Also I would like to stay in base. The default baud rate on alix boards is 38400 but can be changed in cmos setup if you want (pressing S during memory test). I forgot whether 38400 was the default or I changed it to that, but at any rate (ha, pun) that's what is working from any (non-USB) serial port. So I speculate that my problem is with the ucom, not with the connecting software tools above. Have you tried other USB ports ? What software/settings are you using to connect ? A quick Google search suggests both screen /dev/ttyUSB0 38400 and screen /dev/ttyUSB0 38400,cs8 should work. It's worth noting that there are some pretty craptacular USB to Serial converters on the market today, the best I've seen are sold by Black Box, SKU no IC199A-R3. They are a bit pricy, but well worth the cost. http://www.blackbox.com/Store/Detail.aspx/USB-Solo-USB-to-Serial-DB9-with-Cable-44-in-111-76-cm/IC199A%C4%82R3 -- Aaron Mason - Programmer, open source addict I've taken my software vows - for beta or for worse
Re: Small diff to calendar.birthday
On Wed, Jan 02, 2013 at 04:03:37PM -0700, Jeff Ross wrote: On 1/2/13 3:56 PM, mxb wrote: I think if you put District, the you should change Oblast to Province. You may know more than me--I took that directly from wikipedia :-) Oblast should not be translated IMO. It's a loanword in many languages. Then there is Krai, which is sort of the same thing. No - best leave it alone. I would however drop a village in , doesn't add anything useful. What should district be to be consistent and correct? //максим On 2 jan 2013, at 23:47, jr...@openvistas.net wrote: --- usr.bin/calendar/calendars/calendar.birthdaySun Oct 16 09:09:27 2011 +++ usr.bin/calendar/calendars/calendar.birthday.newWed Jan 2 15:41:39 2013 @@ -11,7 +11,7 @@ 01/01 J.D. Salinger born, 1919 01/01 Heinz Zemanek born in Vienna, Austria, 1920 01/01 Dolores Haze (prototype for Lolita) born, 1935 -01/02 Isaac Asimov born in Petrovichi, Russian SFSR (now part of USSR), 1920 +01/02 Isaac Asimov born in Petrovichi, a village in Shumyachsky District of Smolensk Oblast, Russia, 1920 01/03 J.R.R. Tolkien born, 1892 01/04 George Washington Carver born in Missouri, 1864 01/04 Jakob Grimm born, 1785
Re: serial over USB
On Jan 02 23:32:43, mmakassi...@gmail.com wrote: On 2 January 2013 23:14, Jan Stary h...@stare.cz wrote: On Jan 02 23:02:02, com...@daknet.org wrote: Is anybody using an USB-to-serial connection to an ALIX? Yes i am. We have many Alix 2D13 boards that we use as routers running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to configure them without problem but i've never used anything else than screen or minicom. You could try with these tools... screen is a multiplexing (text)window manager which you can run on the remote machine once you are logged in. screen itself does no remote connection, so I believe it's irrelevant here. Actually screen can also be used as a serial terminal. I wasn't aware of that - thanks. It's as easy as screen /dev/ttyS0 38400 screen /dev/cuaU0 38400 does nothing besides screen gradually consuming all of CPU. I haven;t used minicom yet - I use cu(1), and now am looking at tip(1). But I don't think my problem is cu's or tip's problem. Also I would like to stay in base. The default baud rate on alix boards is 38400 but can be changed in cmos setup if you want (pressing S during memory test). I forgot whether 38400 was the default or I changed it to that, but at any rate (ha, pun) that's what is working from any (non-USB) serial port. So I speculate that my problem is with the ucom, not with the connecting software tools above. Have you tried other USB ports ? What software/settings are you using to connect ? cu -l /dev/cuaU0 -38400 A quick Google search suggests both screen /dev/ttyUSB0 38400 and screen /dev/ttyUSB0 38400,cs8 should work. Same as above - screen just eats the CPU but nothing else happens.
Re: serial over USB
On 2013-01-02, Jan Stary h...@stare.cz wrote: This is 5.2/i386 on an IBM Thinkpad T40. As this laptop does not have a serial port, I bought me this USB-to-serial gizmo: There is a real serial port, but no standard de9 connector on the main laptop, it's only available via the dock interface. Now from this Thinkpad, I try to connect with cu -l /dev/cuaU0 -38400 That say 'Connected', but nothing else happens. I can see a garbled login screen such as kXKMr/i386 (gw.stare.cz) (tty00) login: -i I usually see something like that with a wrong baudrate. You won't have usable chars like this if the baud rate is wrong. What kind of problem is this? Faulty/incomplete null modem cable? (do you have at least pins 2/3/5 connected? sometimes it helps to *only* have 2/3/5 connected.) Faulty USB-to-RS232 adapter? Have you tried the USB/RS232 and null modem connected to some other computer? (you can just run cu on both sides and type, it won't echo locally but you should see text from the other side) Can my ucom do 38400? How do I find out? Would it make sense to try other baudrates (on both the ALIX and my end, obviously)? Doubtful, but you could try it. Is anybody using an USB-to-serial connection to an ALIX? Yes.
Re: carp + 5.1/5.2 woes [PARTIALLY SOLVED]
On 2013-01-02, Toni Mueller openbsd-m...@oeko.net wrote: Hi, I have just discovered that I made a configuration error that had resulted in the undesired, but correct, carp behaviour for IPv4. Ie, OpenBSD operates as desired for this case. Ah good :) That leaves these questions open: On Wed, Jan 02, 2013 at 01:39:25PM +0100, Toni Mueller wrote: I also have trouble taking carp2 down and up again, like in ifconfig carp2 down; ifconfig carp2 up. The result is that carp2 does no longer respond to any packets sent to 3ffe:3ffe::1. Sending to the IPv6 address bound to em0 continues to work like a charm, though. Saying ifconfig carp2 destroy; sh /etc/netstart carp2 - which I thought would re-create the carp2 pseudy-device from scratch, does also not work, but elicits the following error message from the kernel: /bsd: in6_ifloop_request: ADD operation failed for 3ffe:3ffe::0001 (errno=17) 17 is EEXIST - see errno(2) for a list of these - there's probably a loopback route hanging around after destroying the interface, check in netstat -rnfinet6, you could try deleting it.. There are error messages related to duplicate IPv6 addresses, mentioning the link-local auto-generated IPv6 address, which is the same for all carp interfaces, eg: /bsd: nd6_na_input: duplicate IP6 address fe80:0008::0200:5eff:fe00:0102 Yes, that happens ;) Touring the logs, I also find related error messages that I could not yet make sense of: /bsd: arpresolve: 10.0.0.1: route without link local address I've seen this before, I think it was on a router with a (non-/32) address on both the parent interface and the carp interface, though I have a few routers doing exactly that which don't see it.. (Normally it's recommended to use /32 on the carp interface, but that's not going to work if you are announcing it into ospf). Someone tracked down another situation where this can happen, http://marc.info/?l=openbsd-miscm=121455393316796w=2
Re: serial over USB
Also try turning off hardware flow control On Thu, Jan 3, 2013 at 6:46 AM, Stuart Henderson s...@spacehopper.org wrote: On 2013-01-02, Jan Stary h...@stare.cz wrote: This is 5.2/i386 on an IBM Thinkpad T40. As this laptop does not have a serial port, I bought me this USB-to-serial gizmo: There is a real serial port, but no standard de9 connector on the main laptop, it's only available via the dock interface. Now from this Thinkpad, I try to connect with cu -l /dev/cuaU0 -38400 That say 'Connected', but nothing else happens. I can see a garbled login screen such as kXKMr/i386 (gw.stare.cz) (tty00) login: -i I usually see something like that with a wrong baudrate. You won't have usable chars like this if the baud rate is wrong. What kind of problem is this? Faulty/incomplete null modem cable? (do you have at least pins 2/3/5 connected? sometimes it helps to *only* have 2/3/5 connected.) Faulty USB-to-RS232 adapter? Have you tried the USB/RS232 and null modem connected to some other computer? (you can just run cu on both sides and type, it won't echo locally but you should see text from the other side) Can my ucom do 38400? How do I find out? Would it make sense to try other baudrates (on both the ALIX and my end, obviously)? Doubtful, but you could try it. Is anybody using an USB-to-serial connection to an ALIX? Yes. -- Gayatri Hitech http://gayatri-hitech.com
Re: Small diff to calendar.birthday
On Thu, Jan 03, 2013 at 12:23:44AM +0100, Tobias Ulmer wrote: On Wed, Jan 02, 2013 at 04:03:37PM -0700, Jeff Ross wrote: On 1/2/13 3:56 PM, mxb wrote: I think if you put District, the you should change Oblast to Province. You may know more than me--I took that directly from wikipedia :-) Oblast should not be translated IMO. It's a loanword in many languages. Then there is Krai, which is sort of the same thing. No - best leave it alone. I would however drop a village in , doesn't add anything useful. why the need for so much detail at all? i can see that birthday entries are not exactly consistent, but why not just petrovichi, russia, 1920? jmc
Re: panic: mtx_enter: locking against myself
Sorry for the noise. I think I'v found the problem. On 1 jan 2013, at 23:54, mxb m...@alumni.chalmers.se wrote: I just was able to reproduce this with up to date kernel. On 1 jan 2013, at 19:11, mxb m...@alumni.chalmers.se wrote: Hi misc@, I'v got yet another panic. This time, after applying Martin Pelikans' diff, catched a pointer. However, machine never drops to ddb, even sysctl.conf says it should. panic: mxt_enter: locking against myself, 0x80a2d540 kernel: privileged instruction fault trap, code=0 kernel: double fault trap, code=0 I was able to reproduce this several times and whenever I wanted it. Here is scenario(or setup) then I was able to trigger: Two networks with OSPF-routing on top of GRE on top of IPSec. Client on network1 starts scp-download from a firewall(fw1) on network2. fw1 acts as a VPN/OSPF/GRE end-point for network2. After some time(1min or so) fw1 goes down with panic above. Basically I tried to scp down kernel from this machine. However, fw1 never goes down then I scp up from an Internal network behind fw1. I my case this was a patched kernel with Martins' diff from a VM-machine sitting behind fw1. This machine is not so current snapshot. Dmesg below: OpenBSD 5.2-current (GENERIC.MP) #12: Tue Jan 1 18:01:54 CET 2013 r...@esx9.my.domain:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 4284039168 (4085MB) avail mem = 4147494912 (3955MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xeadc0 (105 entries) bios0: vendor American Megatrends Inc. version 4.6.4 date 06/30/2011 bios0: Supermicro X9SCL/X9SCM acpi0 at bios0: rev 2 acpi0: sleep states S0 S1 S4 S5 acpi0: tables DSDT FACP APIC SSDT MCFG HPET SPMI EINJ ERST HEST BERT acpi0: wakeup devices PS2K(S1) PS2M(S1) UAR1(S4) UAR2(S4) BR20(S1) EUSB(S4) USBE(S4) PEX0(S4) PEX4(S4) PEX6(S4) GBE_(S4) P0P1(S4) P0P2(S4) P0P3(S4) P0P4(S4) SLPB(S0) PWRB(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Xeon(R) CPU E31220L @ 2.20GHz, 2195.34 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu0: 256KB 64b/line 8-way L2 cache cpu0: apic clock running at 99MHz cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Xeon(R) CPU E31220L @ 2.20GHz, 2195.02 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu1: 256KB 64b/line 8-way L2 cache cpu2 at mainbus0: apid 1 (application processor) cpu2: Intel(R) Xeon(R) CPU E31220L @ 2.20GHz, 2195.02 MHz cpu2: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu2: 256KB 64b/line 8-way L2 cache cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Xeon(R) CPU E31220L @ 2.20GHz, 2195.02 MHz cpu3: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu3: 256KB 64b/line 8-way L2 cache ioapic0 at mainbus0: apid 0 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xe000, bus 0-255 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 7 (BR20) acpiprt2 at acpi0: bus 5 (PEX0) acpiprt3 at acpi0: bus 6 (PEX4) acpiprt4 at acpi0: bus -1 (PEX6) acpiprt5 at acpi0: bus 1 (P0P1) acpiprt6 at acpi0: bus 2 (P0P2) acpiprt7 at acpi0: bus -1 (P0P3) acpiprt8 at acpi0: bus -1 (P0P4) acpicpu0 at acpi0: C3, C1, PSS acpicpu1 at acpi0: C3, C1, PSS acpicpu2 at acpi0: C3, C1, PSS acpicpu3 at acpi0: C3, C1, PSS acpibtn0 at acpi0: SLPB acpibtn1 at acpi0: PWRB ipmi at mainbus0 not configured cpu0: Enhanced SpeedStep 2195 MHz: speeds: 2201, 2200, 2100, 2000, 1900, 1800, 1700, 1600 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 Intel Xeon E3-1200 Host rev 0x09 ppb0 at pci0 dev 1 function 0 Intel Core 2G PCIE rev 0x09: msi pci1 at ppb0 bus 1 ppb1 at pci0 dev 1 function 1 Intel Core 2G PCIE rev 0x09: msi pci2 at ppb1 bus 2 ppb2 at pci2 dev 0 function 0 Intel 41210 PCIE-PCIX rev 0x09 pci3 at ppb2 bus 3 bnx0 at pci3 dev 4 function 0 Broadcom BCM5706 rev 0x02: apic 0 int 17 ppb3 at pci2 dev 0 function 2 Intel 41210 PCIE-PCIX rev 0x09 pci4 at ppb3 bus 4