Re: faq13 correction
On Mon, May 30, 2016 at 11:17:35PM +0200 or thereabouts, Theo Buehler wrote: > Hi Moss, > > Thanks for your report. You are right that "headphones" were renamed to > "hp" more than 7 years ago, so some adjustments need to be made: > > http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/sys/audioio.h?rev=1.20&content-type=text/x-cvsweb-markup > > I don't quite see how to fix this cleanly, though and I don't know > whether it is possible to set the sound volume of the headphones > independently of all other outputs. I'll wait a bit to see whether > ratchov@ chimes in, otherwise I'm going to poke him in a few days. > > Thanks again and please don't be discouraged by ... let's just say "not > so polite" ... reactions. If you see things that you think need fixing, > please continue to report them. > > Theo Thank you for the encouragement! Mind, I could have written the report much more simply and clearly lol. It would have been more in keeping with the style of the OS. Never mind, all is well. Moss
Re: mfs and wxallowed
Gerald Hanuer wrote: > Hello misc@, > > Christian wrote: > > Well, the ports infrastructure for building those official binaries > has support for putting pobj on MFS... > > WRKOBJDIR_MFS > Alternate location for the port working directory. The intent > is > to use an MFS based filesystem for small ports with dpb(1). > Active when USE_MFS is ‘Yes’. Defaults to /tmp/pobj. > > ... and I'm pretty sure pobj needs wxallowed. > I generally haven't used this, but it isn't far-fetched. hahaha, chrome is a "small port"?
Re: mfs and wxallowed
> > Christian wrote: > > > > Well, the ports infrastructure for building those official binaries > > has support for putting pobj on MFS... > > > > WRKOBJDIR_MFS > > Alternate location for the port working directory. The intent > > is > > to use an MFS based filesystem for small ports with dpb(1). > > Active when USE_MFS is âYesâ. Defaults to /tmp/pobj. > > > > ... and I'm pretty sure pobj needs wxallowed. > > I generally haven't used this, but it isn't far-fetched. > > hahaha, chrome is a "small port"? Right Ted, so I'll ask once again for a usage case. I was fully expecting complaints for not supporting wxallowed on an ext2fs partition, but NO...
form printer
I am looking for a form printer. (The kind that take the paper with the holes on the side.) New ones are a little on the pricey side, so if anyone can share their experience with a make/model that works with little fuss. Preferably with lpd, but I'm not completely opposed to using cupsd. Any suggestions are greatly appreciated. Thanks, Edgar
Re: PPPoE issues
On 05/29/16 21:53, Maurice Janssen wrote: Hi, I'm trying to replace a PC Engines Alix board with an APU 2c4 board, but I'm having some issues to get it up and running. I have a fiber connection and my ISP requires a PPPoE connection over VLAN 6. With the old setup, this works like a charm. With the new setup, I can't get the PPPoE connection to work. When I use tcpdump on the ethernet interface, I can see the PADI packets leave the system on VLAN6, but there is no answer at all. OpenBSD keeps sending a PADI every minute or so, to no avail. I have tried to get it running with 5.9-stable (amd64), with a recent snapshot (amd64), with 5.9-stable (i386, as that works fine on the Alix), but none of them work. When I have a working connection on the old router and then quickly move the cable (the one that is connected to the fiber/copper converter) to the new router, I can see some packets (belonging to the 'old' PPPoE connection) arriving on the new router (with tcpdump). So at the ethernet level the link is OK. Does anyone have a clue what could be causing this? Some VLAN-tagging issue with the I210 NIC on the APU? Does anyone have a similar setup working? Thanks a lot in advance, Maurice Thanks for the help. It appeared to be a subtle issue at the ethernet link layer, so nothing to do with the software configuration. For the record: there was an ethernet link between the fiber/copper converter and the router (with about 15 m of cat 5e cable in between them), but no data was getting through. When I add a switch next to the converter (and the same 15 m of cable between switch and router), it all works again. Sorry to waste your time on something that has nothing to do with OpenBSD. Maurice
Re: mfs and wxallowed
> Hello misc@, > > Theo wrote: > > I still don't see the use case. > > wxallowed is only meant as a temporary[1] measure until all the > applications are fixed. > > Instead, you are trying to use all the features everywhere. > > [1] Hopefully within my lifetime > > > Have mfs in the tool kit to take up the read/write shortcomings > of usb flash is a real asset. > > Also the ability to "tear down" a file system and restore it to a pristine > state is extremely valuable when dealing with usb flash. If you are doing a copy performance like that, why do you need to run W^X violating programs from that filesystem at the same time? You haven't justified it.
Re: mfs and wxallowed
Hello misc@, Christian wrote: Well, the ports infrastructure for building those official binaries has support for putting pobj on MFS... WRKOBJDIR_MFS Alternate location for the port working directory. The intent is to use an MFS based filesystem for small ports with dpb(1). Active when USE_MFS is ‘Yes’. Defaults to /tmp/pobj. ... and I'm pretty sure pobj needs wxallowed. I generally haven't used this, but it isn't far-fetched. I have not played with ports build system, but this looks promising. Thank you for the hint. Regards, Gerald Hanuer
Re: mfs and wxallowed
Hello misc@, Theo wrote: I still don't see the use case. wxallowed is only meant as a temporary[1] measure until all the applications are fixed. Instead, you are trying to use all the features everywhere. [1] Hopefully within my lifetime Have mfs in the tool kit to take up the read/write shortcomings of usb flash is a real asset. Also the ability to "tear down" a file system and restore it to a pristine state is extremely valuable when dealing with usb flash. Losing this functionality until the 3rd party software ecosystem gets the message will be tough. But thank you for the information. Regards, Gerald Hanuer
Re: mfs and wxallowed
On 2016-05-30, Theo de Raadt wrote: > Well, you are also going to find out you cannot set wxallowed > on some other filesystems. It only works on real FFS and real > NFS, and the purpose is for building & installation of official > binaries. > > The goal is that admins won't create filesystems like you are > doing here. Well, the ports infrastructure for building those official binaries has support for putting pobj on MFS... WRKOBJDIR_MFS Alternate location for the port working directory. The intent is to use an MFS based filesystem for small ports with dpb(1). Active when USE_MFS is ‘Yes’. Defaults to /tmp/pobj. ... and I'm pretty sure pobj needs wxallowed. I generally haven't used this, but it isn't far-fetched. -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: hardware recommendation for openbsd-based thin client?
Has anyone tried a ViewSonic thin client? > On May 26, 2016, at 7:40 AM, Marko Cupać wrote: > > Hi, > > I need to implement a few dozen boxes whose only purpose will be > connecting to RDP servers. I have figured out the software part - > OpenBSD + slim + openbox + freerdp, but I haven't yet decided about the > hardware part. It needs to be of amd64 architecture, and it needs to > run OpenBSD. Local storage is not a concern, SD card would be enough. > In fact, I'd go for diskless zero client if OpenBSD's implementation > supported CIDR. > > Something like PCengines' APU, but in monitor+mouse+keyboard world. > > Any recommendations? Thank you in advance. > -- > Before enlightenment - chop wood, draw water. > After enlightenment - chop wood, draw water. > > Marko Cupać > https://www.mimar.rs/
Re: mfs and wxallowed
> >>85c260a91247e685.b none swap sw > >>85c260a91247e685.a / ffs rw 1 1 > >>85c260a91247e685.k /home ffs rw,nodev,nosuid 1 2 > >>85c260a91247e685.d /tmp ffs rw,nodev,nosuid 1 2 > >>85c260a91247e685.f /usr ffs rw,nodev 1 2 > >>85c260a91247e685.g /usr/X11R6 ffs rw,nodev 1 2 > >>85c260a91247e685.h /usr/local ffs rw,nodev,wxallowed 1 2 > >>85c260a91247e685.j /usr/obj ffs rw,nodev,nosuid 1 2 > >>85c260a91247e685.i /usr/src ffs ro,nodev,nosuid 1 2 > >>85c260a91247e685.e /var ffs rw,nodev,nosuid 1 2 > >>swap /MFS mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/test/programs 0 0 > > This was not a good example, so something like this > swap /usr/local mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/mfs/mfsusrlocal 0 0 > is very usefull on machines that need a different set of packages > using mfs cuts the install time dramatically. I still don't see the use case. wxallowed is only meant as a temporary[1] measure until all the applications are fixed. Instead, you are trying to use all the features everywhere. [1] Hopefully within my lifetime.
Re: mfs and wxallowed
Hello misc@, >>85c260a91247e685.b none swap sw >>85c260a91247e685.a / ffs rw 1 1 >>85c260a91247e685.k /home ffs rw,nodev,nosuid 1 2 >>85c260a91247e685.d /tmp ffs rw,nodev,nosuid 1 2 >>85c260a91247e685.f /usr ffs rw,nodev 1 2 >>85c260a91247e685.g /usr/X11R6 ffs rw,nodev 1 2 >>85c260a91247e685.h /usr/local ffs rw,nodev,wxallowed 1 2 >>85c260a91247e685.j /usr/obj ffs rw,nodev,nosuid 1 2 >>85c260a91247e685.i /usr/src ffs ro,nodev,nosuid 1 2 >>85c260a91247e685.e /var ffs rw,nodev,nosuid 1 2 >>swap /MFS mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/test/programs 0 0 This was not a good example, so something like this swap /usr/local mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/mfs/mfsusrlocal 0 0 is very usefull on machines that need a different set of packages using mfs cuts the install time dramatically. Regards, Gerald Hanuer
Re: mfs and wxallowed
> >Well, you are also going to find out you cannot set wxallowed > >on some other filesystems. It only works on real FFS and real > >NFS, and the purpose is for building & installation of official > >binaries. > > >The goal is that admins won't create filesystems like you are > >doing here. > > >Why are you doing this? > > This is used on machine with usb flash disk > the read/write is much faster to mfs. You are failing to explain why that filesystem isn't /usr/local or /usr/ports/pobj, so *PLONK*
Re: mfs and wxallowed
Hello misc@, >Well, you are also going to find out you cannot set wxallowed >on some other filesystems. It only works on real FFS and real >NFS, and the purpose is for building & installation of official >binaries. >The goal is that admins won't create filesystems like you are >doing here. >Why are you doing this? This is used on machine with usb flash disk the read/write is much faster to mfs. Regards, Gerald Hanuer
Re: mfs and wxallowed
Well, you are also going to find out you cannot set wxallowed on some other filesystems. It only works on real FFS and real NFS, and the purpose is for building & installation of official binaries. The goal is that admins won't create filesystems like you are doing here. Why are you doing this? > Mount_mfs does not honor wxallowed. > Will mfs follow ffs regarding wxallowed, > if so is this functionality in the works? > > Thanks in advanced, > Gerald Hanuer > > /bin/cat /etc/fstab > > 85c260a91247e685.b none swap sw > 85c260a91247e685.a / ffs rw 1 1 > 85c260a91247e685.k /home ffs rw,nodev,nosuid 1 2 > 85c260a91247e685.d /tmp ffs rw,nodev,nosuid 1 2 > 85c260a91247e685.f /usr ffs rw,nodev 1 2 > 85c260a91247e685.g /usr/X11R6 ffs rw,nodev 1 2 > 85c260a91247e685.h /usr/local ffs rw,nodev,wxallowed 1 2 > 85c260a91247e685.j /usr/obj ffs rw,nodev,nosuid 1 2 > 85c260a91247e685.i /usr/src ffs ro,nodev,nosuid 1 2 > 85c260a91247e685.e /var ffs rw,nodev,nosuid 1 2 > swap /MFS mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/test/programs 0 0 > > Error message during boot. > > mount_mfs: -o wxallowed: option not supported > > > OpenBSD 6.0-beta (GENERIC.MP) #2140: Sun May 29 12:40:56 MDT 2016 > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > real mem = 8456269824 (8064MB) > avail mem = 8195379200 (7815MB) > mpath0 at root > scsibus0 at mpath0: 256 targets > mainbus0 at root > bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xec050 (78 entries) > bios0: vendor LENOVO version "ESKT22A" date 12/19/2012 > bios0: LENOVO 10089 > acpi0 at bios0: rev 2 > acpi0: sleep states S0 S3 S4 S5 > acpi0: tables DSDT FACP APIC FPDT MCFG MSDM HPET SSDT SSDT SSDT BGRT > acpi0: wakeup devices PS2K(S3) PS2M(S3) P0P1(S4) USB1(S3) USB2(S3) > USB3(S3) USB4(S3) USB5(S3) USB6(S3) USB7(S3) PXSX(S4) RP01(S4) PXSX(S4) > RP02(S4) PXSX(S4) RP03(S4) [...] > acpitimer0 at acpi0: 3579545 Hz, 24 bits > acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > cpu0 at mainbus0: apid 0 (boot processor) > cpu0: Intel(R) Pentium(R) CPU G2020 @ 2.90GHz, 2893.88 MHz > cpu0: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, > CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT, > DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,POPCNT,DEADLI > NE,XSAVE,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS,SENSOR,ARAT > cpu0: 256KB 64b/line 8-way L2 cache > cpu0: smt 0, core 0, package 0 > mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges > cpu0: apic clock running at 99MHz > cpu0: mwait min=64, max=64, C-substates=0.2.1.1, IBE > cpu1 at mainbus0: apid 2 (application processor) > cpu1: Intel(R) Pentium(R) CPU G2020 @ 2.90GHz, 2893.42 MHz > cpu1: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, > CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT, > DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,POPCNT,DEADLI > NE,XSAVE,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS,SENSOR,ARAT > cpu1: 256KB 64b/line 8-way L2 cache > cpu1: smt 0, core 1, package 0 > ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins > acpimcfg0 at acpi0 addr 0xf800, bus 0-63 > acpihpet0 at acpi0: 14318179 Hz > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus -1 (P0P1) > acpiprt2 at acpi0: bus 1 (RP01) > acpiprt3 at acpi0: bus 2 (RP02) > acpiprt4 at acpi0: bus -1 (RP03) > acpiprt5 at acpi0: bus -1 (RP04) > acpiprt6 at acpi0: bus 3 (RP05) > acpiprt7 at acpi0: bus -1 (RP06) > acpiprt8 at acpi0: bus -1 (RP07) > acpiprt9 at acpi0: bus -1 (RP08) > acpiprt10 at acpi0: bus -1 (PEG0) > acpiprt11 at acpi0: bus -1 (PEG1) > acpiprt12 at acpi0: bus -1 (PEG2) > acpiprt13 at acpi0: bus -1 (PEG3) > acpiec0 at acpi0: not present > acpicpu0 at acpi0: C3(350@80 mwait.1@0x20), C2(500@59 mwait.1@0x10), > C1(1000@1 mwait.1), PSS > acpicpu1 at acpi0: C3(350@80 mwait.1@0x20), C2(500@59 mwait.1@0x10), > C1(1000@1 mwait.1), PSS > acpipwrres0 at acpi0: FN00, resource for FAN0 > acpipwrres1 at acpi0: FN01, resource for FAN1 > acpipwrres2 at acpi0: FN02, resource for FAN2 > acpipwrres3 at acpi0: FN03, resource for FAN3 > acpipwrres4 at acpi0: FN04, resource for FAN4 > acpitz0 at acpi0: critical temperature is 106 degC > acpitz1 at acpi0: critical temperature is 106 degC > "INT3F0D" at acpi0 not configured > acpibtn0 at acpi0: PWRB > "PNP0C0B" at acpi0 not configured > "PNP0C0B" at acpi0 not configured > "PNP0C0B" at acpi0 not configured > "PNP0C0B" at acpi0 not configured > "PNP0C0B" at acpi0 not configured > acpivideo0 at acpi0: GFX0 > acpivout0 at acpivideo0: DD02 > cpu0: Enhanced SpeedStep 2893 MHz: speeds: 2900, 2800, 2700, 2600, > 2500, 2400, 2300, 2200, 2100, 2000, 1900, 1800, 1700, 1600 MHz > pci0 at mainbus0 bus 0 > pchb0 at pci0 dev 0 function 0 "Intel Core 3G Host" rev 0x09 > inteldrm0 at pci0 dev 2 function 0 "Intel HD Graphics 2500" rev 0x09 > drm0 at inteldrm0 > inteldrm0: msi > inteldrm0: 1920x1080 > wsdisplay0 at inteldrm0 mux 1: console (std, vt
mfs and wxallowed
Hello misc@, Mount_mfs does not honor wxallowed. Will mfs follow ffs regarding wxallowed, if so is this functionality in the works? Thanks in advanced, Gerald Hanuer /bin/cat /etc/fstab 85c260a91247e685.b none swap sw 85c260a91247e685.a / ffs rw 1 1 85c260a91247e685.k /home ffs rw,nodev,nosuid 1 2 85c260a91247e685.d /tmp ffs rw,nodev,nosuid 1 2 85c260a91247e685.f /usr ffs rw,nodev 1 2 85c260a91247e685.g /usr/X11R6 ffs rw,nodev 1 2 85c260a91247e685.h /usr/local ffs rw,nodev,wxallowed 1 2 85c260a91247e685.j /usr/obj ffs rw,nodev,nosuid 1 2 85c260a91247e685.i /usr/src ffs ro,nodev,nosuid 1 2 85c260a91247e685.e /var ffs rw,nodev,nosuid 1 2 swap /MFS mfs rw,nodev,nosuid,wxallowed,-s=1.6G,-P/test/programs 0 0 Error message during boot. mount_mfs: -o wxallowed: option not supported OpenBSD 6.0-beta (GENERIC.MP) #2140: Sun May 29 12:40:56 MDT 2016 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 8456269824 (8064MB) avail mem = 8195379200 (7815MB) mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xec050 (78 entries) bios0: vendor LENOVO version "ESKT22A" date 12/19/2012 bios0: LENOVO 10089 acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP APIC FPDT MCFG MSDM HPET SSDT SSDT SSDT BGRT acpi0: wakeup devices PS2K(S3) PS2M(S3) P0P1(S4) USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB5(S3) USB6(S3) USB7(S3) PXSX(S4) RP01(S4) PXSX(S4) RP02(S4) PXSX(S4) RP03(S4) [...] acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Pentium(R) CPU G2020 @ 2.90GHz, 2893.88 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT, DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,POPCNT,DEADLI NE,XSAVE,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS,SENSOR,ARAT cpu0: 256KB 64b/line 8-way L2 cache cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges cpu0: apic clock running at 99MHz cpu0: mwait min=64, max=64, C-substates=0.2.1.1, IBE cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Pentium(R) CPU G2020 @ 2.90GHz, 2893.42 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT, DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,POPCNT,DEADLI NE,XSAVE,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS,SENSOR,ARAT cpu1: 256KB 64b/line 8-way L2 cache cpu1: smt 0, core 1, package 0 ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xf800, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (P0P1) acpiprt2 at acpi0: bus 1 (RP01) acpiprt3 at acpi0: bus 2 (RP02) acpiprt4 at acpi0: bus -1 (RP03) acpiprt5 at acpi0: bus -1 (RP04) acpiprt6 at acpi0: bus 3 (RP05) acpiprt7 at acpi0: bus -1 (RP06) acpiprt8 at acpi0: bus -1 (RP07) acpiprt9 at acpi0: bus -1 (RP08) acpiprt10 at acpi0: bus -1 (PEG0) acpiprt11 at acpi0: bus -1 (PEG1) acpiprt12 at acpi0: bus -1 (PEG2) acpiprt13 at acpi0: bus -1 (PEG3) acpiec0 at acpi0: not present acpicpu0 at acpi0: C3(350@80 mwait.1@0x20), C2(500@59 mwait.1@0x10), C1(1000@1 mwait.1), PSS acpicpu1 at acpi0: C3(350@80 mwait.1@0x20), C2(500@59 mwait.1@0x10), C1(1000@1 mwait.1), PSS acpipwrres0 at acpi0: FN00, resource for FAN0 acpipwrres1 at acpi0: FN01, resource for FAN1 acpipwrres2 at acpi0: FN02, resource for FAN2 acpipwrres3 at acpi0: FN03, resource for FAN3 acpipwrres4 at acpi0: FN04, resource for FAN4 acpitz0 at acpi0: critical temperature is 106 degC acpitz1 at acpi0: critical temperature is 106 degC "INT3F0D" at acpi0 not configured acpibtn0 at acpi0: PWRB "PNP0C0B" at acpi0 not configured "PNP0C0B" at acpi0 not configured "PNP0C0B" at acpi0 not configured "PNP0C0B" at acpi0 not configured "PNP0C0B" at acpi0 not configured acpivideo0 at acpi0: GFX0 acpivout0 at acpivideo0: DD02 cpu0: Enhanced SpeedStep 2893 MHz: speeds: 2900, 2800, 2700, 2600, 2500, 2400, 2300, 2200, 2100, 2000, 1900, 1800, 1700, 1600 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel Core 3G Host" rev 0x09 inteldrm0 at pci0 dev 2 function 0 "Intel HD Graphics 2500" rev 0x09 drm0 at inteldrm0 inteldrm0: msi inteldrm0: 1920x1080 wsdisplay0 at inteldrm0 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) "Intel 6 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured ehci0 at pci0 dev 26 function 0 "Intel 6 Series USB" rev 0x05: apic 2 int 16 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 azalia0 at pci0 dev 27 function 0 "Intel 6 Series HD Audio" rev 0x05: msi azalia0: codecs: Realtek ALC662, Intel/0x2805, using Realtek ALC662 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 "Intel 6 Serie
Re: pf prio queue not setting vlan prio value?
Sebastian Reitenbach l00-bugdead-prods.de> writes: > With tcpdump, I see 'pri 0' on all the packets captured: > > tcpdump -n -i trunk0 -vvv vlan 8 and net 10.1.0.0/24 > 11:18:13.132570 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply > (id:6221 seq:0) [icmp cksum ok] (ttl 64, id 11179, len 84) > 11:18:14.138835 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply > (id:6221 seq:1) [icmp cksum ok] (ttl 64, id 11180, len 84) > 11:18:15.129273 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply > (id:6221 seq:2) [icmp cksum ok] (ttl 64, id 11181, len 84) You are not showing *all* packets captured, but only incoming ones (I assume you are pinging *from* the box, so echo replies are incoming). prio to vlan pri translation only applies to outgoing packets. Incoming packets will have vlan pri values set by a transmitter (or intermediate equipment, like switches).
Re: PPPoE issues
> Switching from Alix with vr(4) to APU2 with em(4) should not affect this. Some people claim that ISP may use MAC for some kind of login. I'm not sure, but maybe he can verify by MAC clonning.
new support
0 C Russian Federation P T Moscow Z 109004 O Infosecurity LLC I Artem Vydrin /Pavel Kondratyuk A Nikoloyamskaya 38/1 M u...@infosecservice.ru U http://www.gk-is.ru/services B +7 495 510 15 86 X N Commercial support for Unix/Linux. Security sevices setup and integration. Experienced in OpenBSD-based network and security solution, including Internet gateways, clustered firewalls, VPNs, mail servers, and much more.
Re: SPF Examples
Hi Indunil,
On 2016-05-30 Mon 08:47 AM |, Indunil Jayasooriya wrote:
>
> Waiting your INPUTS.
>
There is an SPF help mailing list, see http://www.OpenSPF.Org/Forums
Most of your questions can be answered from http://www.OpenSPF.Org/
*) FAQ
*) Best Practices
*) Record Syntax
*) testing tools
See also: http://www.zytrax.com/books/dns/ch9/spf.html?pf=yes
*NOTE*: When a domain publishes an SPF FAIL policy,
SPF breaks plain message forwarding.
(MX backup, MTA forwarding, ~/.forward, procmail/sieve forwarding).
https://en.wikipedia.org/wiki/Sender_Policy_Framework#FAIL_and_forwarding
http://www.openspf.org/Best_Practices/Checking_at_border_MTAs
'... only the initial ("border") MTA can check SPF status of a message.
Otherwise the internal MTA would see the incoming connection coming from
the border MTA.'
http://wiki.junkemailfilter.com/index.php/Email_Server_Setup_Tips#SPF_Records
http://david.woodhou.se/why-not-spf.html
http://wiki.junkemailfilter.com/index.php/Bounced_Email#SPF_is_hopelessly_broken_and_needs_to_die.21
http://wiki.junkemailfilter.com/index.php/SPF_-_Sender_Policy_Framework_-_is_broken_and_must_Die
http://www.onlamp.com/pub/a/bsd/2004/10/28/openbsd_3_6.html?page=3
Bob Beck:
"What's my conclusion? SPF and caller ID does 2 things,
which I would do if I were writing spam software:
1. Encourages spammers to publish SPF records (and they have).
The biggest SPF adopters I see are spammers.
2. Encourages spammers not to spam from SPF-publishing addresses.
(And don't forget, this is what AOL and MSN *really* care about.)"
2004: http://www.theregister.co.uk/2004/09/03/email_authentication_spam/
"34% more spam is passing SPF checks than legitimate email because
spammers are actively registering their SPF records.
useful in curtailing spoofing and phishing attacks"
Cheers,
--
Craig Skinner | http://linkd.in/yGqkv7
Re: PPPoE issues
On 2016-05-30, Daniel Gillen wrote: >> I'm trying to replace a PC Engines Alix board with an APU 2c4 board, but >> I'm having some issues to get it up and running. >> I have a fiber connection and my ISP requires a PPPoE connection over >> VLAN 6. > I have a similar setup. For me the problem was that the provider did not > accept vlan packages with a prio value other than 0. Switching from Alix with vr(4) to APU2 with em(4) should not affect this. -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: the balance between OpenBSD and life
On Sat, 28 May 2016 20:24:00 +0800 Teng Zhang wrote: > I can't adjust the time for OpenBSD and my life appropriately. Could > you please share your experience with me about how you adjust your > time between OpenBSD and your life. > thanks for any reply. > Strange, when you put it that way it looks like there are two opposed things: OpenBSD and Life. OpenBSD _is_ life, or at least part of life. If you feel otherwise I guess you need an acid trip, or some other way of achieving spiritual discovery ;) -- Before enlightenment - chop wood, draw water. After enlightenment - chop wood, draw water. Marko Cupać https://www.mimar.rs/
pf prio queue not setting vlan prio value?
Hi, I tried to get priority queueing set up to prioritize some VoIP traffic. I'm on 5.9, a carp clustered firewall. Just some testing so far, but I got a bit confused, about whether it is really doing what it is supposed to do. pf.conf(5) tells me about 'set prio': If the packet is transmitted on a vlan(4) interface, the queueing priority will also be written as the priority code point in the 802.1Q VLAN header. The network 10.1.0.0/24 is where the asterisk is around, VLAN 8, VLAN 90 is going upstream to the Internet. I've these very basic testing rules added to the front of my pf.conf: match log from 10.1.0.0/24 to any set prio 5 match log to 10.1.0.0/24 set prio 5 pass log quick from 10.1.0.0/24 to any set prio 5 pass log quick to 10.1.0.0/24 set prio 5 otherwise, no scrub rules, pfctl -sr shows these as: match log inet from <__automatic_611bb878_0> to any set ( prio 5 ) match log inet from any to <__automatic_611bb878_1> set ( prio 5 ) pass log quick inet from <__automatic_611bb878_2> to any flags S/SA set ( prio 5 ) pass log quick inet from any to <__automatic_611bb878_3> flags S/SA set ( prio 5 ) I know the rules are a bit overly redundant, but only first tried match rules, since the example in pf.conf(5) is only using pass rules. Ping from the firewall host 10.1.0.1 to one of the nodes in the 10.1.0.2 network I see with tcpdump on pflog0: May 30 11:18:13.132330 rule 22/(match) [uid 0, pid 22065] match out on vlan8: 10.1.0.1 > 10.1.0.2: icmp: echo request (id:6221 seq:0) (ttl 255, id 34775, len 84, bad ip cksum 56c! -> 1fcd) May 30 11:18:13.132337 rule 23/(match) [uid 0, pid 22065] match out on vlan8: 10.1.0.1 > 10.1.0.2: icmp: echo request (id:6221 seq:0) (ttl 255, id 34775, len 84, bad ip cksum 56c! -> 1fcd) May 30 11:18:13.132342 rule 24/(match) [uid 0, pid 22065] pass out on vlan8: 10.1.0.1 > 10.1.0.2: icmp: echo request (id:6221 seq:0) (ttl 255, id 34775, len 84, bad ip cksum 56c! -> 1fcd) since they match/pass, prio should be applied, right? Is there a way to see how/if the prio got applied? With tcpdump, I see 'pri 0' on all the packets captured: tcpdump -n -i trunk0 -vvv vlan 8 and net 10.1.0.0/24 11:18:13.132570 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply (id:6221 seq:0) [icmp cksum ok] (ttl 64, id 11179, len 84) 11:18:14.138835 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply (id:6221 seq:1) [icmp cksum ok] (ttl 64, id 11180, len 84) 11:18:15.129273 802.1Q vid 8 pri 0 10.1.0.2 > 10.1.0.1: icmp: echo reply (id:6221 seq:2) [icmp cksum ok] (ttl 64, id 11181, len 84) Just wondering whether I shouldn't see the pri set to 5, or is that to be expected what I see? Maybe I'm just missing something stupid? thanks, Sebastian
Re: Why can I ping but not curl google.com?
On 2016-05-29, Murk Fletcher wrote: > % git clone https://github.com/openbsd/openbsd.git I don't know what you're trying to do here.. > and pf.conf: > https://gist.github.com/anonymous/69e047797f696c1df8eaa0c82e39e01d | ext_if = "vtnet0" What is vtnet0?
Re: Why can I ping but not curl google.com?
> You had obviously tested without any of your own PF rules? You're right, something must have changed from 5.8 to 5.9 to cause my ruleset to do bananas. Being a local VirtualBox development machine, I reckon I don't need a ruleset at all? Many thanks! --Murk On Mon, May 30, 2016 at 8:53 AM, Raf Czlonka wrote: > On Sun, May 29, 2016 at 11:01:14PM BST, Murk Fletcher wrote: > > This: > > > This is my Windows 10 VirtualBox set to Bridged Networking. > > and this: > > > It's been working flawlessly for years. > > is a direct contradiction. > > > I recently upgraded to OpenBSD 5.9, I think that's when the problems > started. > ^ > I *think* this is a crucial bit here ;^) > > You had obviously tested without any of your own PF rules? > > Raf
Re: Why can I ping but not curl google.com?
Obviouisly it doesn't a ruleset. What was I thinking. Have a good one guys! --Murk On Mon, May 30, 2016 at 11:36 AM, Murk Fletcher wrote: > > You had obviously tested without any of your own PF rules? > > You're right, something must have changed from 5.8 to 5.9 to cause my > ruleset to do bananas. Being a local VirtualBox development machine, I > reckon I don't need a ruleset at all? > > Many thanks! > > --Murk > > On Mon, May 30, 2016 at 8:53 AM, Raf Czlonka wrote: > >> On Sun, May 29, 2016 at 11:01:14PM BST, Murk Fletcher wrote: >> >> This: >> >> > This is my Windows 10 VirtualBox set to Bridged Networking. >> >> and this: >> >> > It's been working flawlessly for years. >> >> is a direct contradiction. >> >> > I recently upgraded to OpenBSD 5.9, I think that's when the problems >> started. >> ^ >> I *think* this is a crucial bit here ;^) >> >> You had obviously tested without any of your own PF rules? >> >> Raf
Re: Why can I ping but not curl google.com?
On Sun, May 29, 2016 at 11:01:14PM BST, Murk Fletcher wrote: This: > This is my Windows 10 VirtualBox set to Bridged Networking. and this: > It's been working flawlessly for years. is a direct contradiction. > I recently upgraded to OpenBSD 5.9, I think that's when the problems started. ^ I *think* this is a crucial bit here ;^) You had obviously tested without any of your own PF rules? Raf
