Hello everybody.
the situation is:
(Internet)-OpenBSD(bgp router)- ISA Server --another
router ---(Internet)
actually we are migrating ISA server from any network range (the old
one) to new network range, routed via OpenBSD. at this time ISA must
work with 2 network ranges
2010/3/14 Daniel Ouellet dan...@presscom.net:
On 3/14/10 3:48 AM, P P;Q Q P(P8P?P8Q P8P= wrote:
the problem was described very precisely pf gui like pfsense, but
installable on clean OpenBSD box, wasn't it ?
Then why don't you use pfsense and port it back to OpenBSD.
because I don't like
Hello,
is there any GUI (like pfsense) around which can be installed on a
clean OpenBSD box (or even two CARP-connected boxes) for pf management
?
I've found comixwall, but it seems to be dead already.
Cheers,
Ilya Shipitsin
we have many people who know ISA very well and all they do with ISA is
publishing applications, rdr rules in terms of pf.
they do not need to know all the pf detailed, all they need is
a) something ISA-like
b) syntax-checker, I mean that gui should only allow adding correct
rules (what is not
a) two CARP-connected OpenBSD boxes
b) many real IP addresses bound to OpenBSD
c) RFC1918 (non routable) network with servers
d1) monkey button for nat rules, so some servers can connect to
certain services (say, smtp to Gmail)
d2) monkey button for rdr rules, so some servers could bepublished
2010/3/14 Jason Dixon ja...@dixongroup.net:
On Sun, Mar 14, 2010 at 11:48:44AM +0500, ??? wrote:
we have many people who know ISA very well and all they do with ISA is
publishing applications, rdr rules in terms of pf.
they do not need to know all the pf detailed, all they need is
I just want to make sure there's no wheel already invented ))
2010/3/14 Bret S. Lambert bret.lamb...@gmail.com:
On Sun, Mar 14, 2010 at 12:05:48PM +0500, ??? wrote:
a) two CARP-connected OpenBSD boxes
b) many real IP addresses bound to OpenBSD
c) RFC1918 (non routable) network with
the situation is pretty clear - any web gui for pf, something what
pfsense already is, but installable on clean OpenBSD box. you
probably do not make sense what are mailing lists for.
mailing lists are for asking questions and for answering questions. if
you have nothing to say except read the
the problem was described very precisely pf gui like pfsense, but
installable on clean OpenBSD box, wasn't it ?
State the problem you're trying to solve before try to enlist
the help of others in solving it.
read the letter before answering to it.
2010/3/14 Bret S. Lambert
Mar 6 20:28:25 r1n0 ntpd[29340]: 1 out of 2 peers valid
Mar 6 20:28:25 r1n0 ntpd[29340]: bad peer from pool pool.ntp.org (not resolved)
Mar 7 15:01:02 r1n0 ntpd[4230]: 0 out of 2 peers valid
Mar 7 15:01:02 r1n0 ntpd[4230]: bad peer 192.168.0.3 (192.168.0.3)
Mar 7 15:01:02 r1n0 ntpd[4230]: bad
2010/3/7 Eugene Yunak e.yu...@gmail.com:
On 7 March 2010 11:22, Claudio Jeker cje...@diehard.n-r-g.com wrote:
When your new master is promoted, it will set up a new session with
your peers. This is probably not the sort of failover you want to see
happening in production.
That's why
Hello!
we are running two OpenBSD routers organized by CARP and I'd like
OpenBGPd (running on those routers) to switch as fast as CARP itself,
so, I've written the following config:
carp4 - uplink ethernet (currently just one uplink)
MASTER, /etc/bgpd.conf:
AS x
router-id 10.0.0.1
network
2010/3/6 Henning Brauer lists-open...@bsws.de:
of course there are (many) working bgpd + carp setups.
* ??? chipits...@gmail.com [2010-03-06 15:14]:
second router learns routes from carp master (since it has no direct
connection while it is BACKUP), but I only see routes using bgpctl
no, I want routes exactly to carp.
the scenario is the following:
1) two servers decide who is MASTER and who is BACKUP on carp (both
internal and external networks), so, from any point of view they
behave as a single server (which is exactly what carp was developed
for.
2) MASTER learns
2010/3/7 Claudio Jeker cje...@diehard.n-r-g.com:
On Sat, Mar 06, 2010 at 06:52:24PM +0100, Rogier Krieger wrote:
On Sat, Mar 6, 2010 at 17:26, P P;Q Q P(P8P?P8Q P8P=
chipits...@gmail.com
wrote:
no, I want routes exactly to carp.
That sounds odd. Routes are something different than what
101 - 115 of 115 matches
Mail list logo
