net.inet.ip.ifq.maxlen and altq's qlimit

I'm not certain how they interrelate, but if one is experiencing congestion, and, as a result, tweaks net.inet.ip.ifq.maxlen to compensate, is safe to assume that if altq is in use on the same system qlimit should match or be less than the value of net.inet.ip.ifq.maxlen? How does one determine

Re: Troubleshooting NFS/SFU

On 7/2/07, David Higgs [EMAIL PROTECTED] wrote: I followed Microsoft's instructions for SFU and found that it worked quite well if all I cared about was read-only access. I didn't have any further success even after installing a bunch of SFU hotfixes (http://www.duh.org/interix/hotfixes.php).

Re: ral in hostap mode

On 7/18/07, Alexey Suslikov [EMAIL PROTECTED] wrote: Jurjen Oskam wrote: At home, I have a wireless access point which is directly connected to rl1. To eliminate the access point, I put a wireless PCI card in the machine, and configured it for hostap mode. A laptop running Linux is the

Re: Troubleshooting NFS/SFU

providing a bit higher throughput over my WLAN. I haven't tried changing nfsd's flags on the server side instead, but this might work as well. Why TCP+UDP works for FreeBSD is unknown to me, but I'm content now. I guess it's one of those interoperability issues... On 7/16/07, Daniel Melameth

Re: Unstable PPPoE

On 7/27/07, Timothy Wilson [EMAIL PROTECTED] wrote: I'm having a frustrating problem. My internet is highly unstable when using bit torrent. I don't think there's anything special about my configuration: my gateway is a craptop with inbuilt Intel ethernet and a url0 USB ethernet for the modem.

Re: pppoe getting limited to 150k/sec?

On 8/3/07, M. Parsons [EMAIL PROTECTED] wrote: Running Openbsd 4.1 i386 as a firewall/nat box. I have connected to it a 6 mbps DSL pppoe connection. The pppoe works fine, as do all machines behind the openbsd box, they all can max out the 6mbps. But, transfers directly on the openbsd box

Anchor File Consolidation

I keep my anchor rules in separate files and load them as needed, but I'd like to get away from this anchor file sprawl. I understand I can move all these anchors into pf.conf inline, but doing so causes all of them to be loaded at startup and this doesn't meet my needs. Perhaps I'm missing

Re: Question about ral max speed?

On 9/12/07, Sergey Prysiazhnyi [EMAIL PROTECTED] wrote: I'm using a lot of MiniPCI ral cards in my work with OpenBSD, such as: dmesg | g ral ral0 at pci0 dev 16 function 0 Ralink RT2561S rev 0x00: irq 10, address 00:1a:4d:28:e0:47 ral0: MAC/BBP RT2561C, RF RT2527 In this case I have Subj

Re: altq priq Anomaly (Solved)

On 7/22/07, Daniel Melameth [EMAIL PROTECTED] wrote: On 7/22/07, Stuart Henderson [EMAIL PROTECTED] wrote: On 2007/07/20 15:20, Daniel Melameth wrote: then go back to the broken behavior sometime later. A reboot of the box or removing altq is the only way to resolve the issue

Re: Thank you developers... 4.2 arrived in the mail today

On 10/5/07, Chad M Stewart [EMAIL PROTECTED] wrote: Okay, well fresh from an install on my Sun X2100M2 my daughter wanted to check it out http://balius.com/openbsd.4.2.jpg Why does the packaging of an ultra secure UNIX-like operating system seem so apropos next to a child ;) ? If the cover

pgt/Netgear WG511

I have, what appears to be, v1 of this card, but I get the following from dmesg--even when booting from the latest snapshot of cd42.iso: Intersil, ISL3890, -, - (manufacturer 0xb, product 0x3890) Intersil Prism GT/Duette rev 0x01 at cardbus1 dev 0 function 0 not configured I'm not certain

Re: pgt/Netgear WG511

On 10/24/07, Jonathan Gray [EMAIL PROTECTED] wrote: On Wed, Oct 24, 2007 at 12:32:19PM -0600, Daniel Melameth wrote: I have, what appears to be, v1 of this card, but I get the following from dmesg--even when booting from the latest snapshot of cd42.iso: Intersil, ISL3890

Re: ne3 interface funny behaviour

Manuel Ravasio wrote: Problem solved. The card is faulty: it doesn't work on other systems either. It *apparently* works, it gets recognized, it can be assigned an IP address, connection led lights up, but no actual connection is available. A close look to the card-dongle connector

altq priq Anomaly

For years now I have been unable to get altq to limit bandwidth properly. In a nutshell, if I give altq an example bandwidth value of 1024Kb, my bandwidth will be incorrectly capped to about 512Kb. This is not completely consistent as altq mucks with my bandwidth improperly at various times, but

ral AP Requires ifconfig down/up Daily

I just setup a ral-based AP doing 802.11g and WEP and it stops working once a day-all wireless clients cease being able to pass packets through the AP and an ifconfig ral0 down and ifconfig ral0 up is required to temporarily address the issue. Any thoughts on how to fix? Thanks. $ cat

Re: malo driver

On 5/8/07, Jonathan Gray [EMAIL PROTECTED] wrote: On Mon, May 07, 2007 at 10:27:15PM -0500, Default User wrote: On Sun, 2007-05-06 at 11:14 +0200, Henning Brauer wrote: * Default User [EMAIL PROTECTED] [2007-05-05 05:03]: cbb0 at pci1 dev 4 function 0 ENE CB-1410 CardBus rev

Re: ral AP Requires ifconfig down/up Daily (Kind of Solved)

RT2661B, RF RT2529 (MIMO XR) On 5/6/07, Daniel Melameth [EMAIL PROTECTED] wrote: I just setup a ral-based AP doing 802.11g and WEP and it stops working once a day-all wireless clients cease being able to pass packets through the AP and an ifconfig ral0 down and ifconfig ral0 up is required

Re: ral AP Requires ifconfig down/up Daily (Kind of Solved)

with that legendary wi reliability? On 5/25/07, Daniel Melameth [EMAIL PROTECTED] wrote: I have since replaced the 2560 card with a 2661 and it has been running fairly well for a week. Whether this is an issue with the 2500 card or the driver though, I'm not certain. Cheers. $ dmesg | grep

Re: nat trouble accessing web

Sounds like a possible MTU issue... Liberal use of tcpdump should help in diagnosing the problem. On 6/25/07, Lawrence Horvath [EMAIL PROTECTED] wrote: Im having some trouble accessing certain sites from my laptop going through a obsd router doing nat I have 2 tested configurations

Re: wireless access point woes

On 1/17/08, Juan Miscaro [EMAIL PROTECTED] wrote: I am using OpenBSD 4.2 as my WAP with a ral adapter. My wireless client is running Kubuntu. However, after a while the connection breaks completely and the only thing that rectifies the situation is a reboot on the serverside. I thought

pgt0: timeout waiting for management packet response to 0x17000013

On rare occasion, I receive the following on the console and need to ifconfig the interface down and up again to restore normal operations. Any recommends on a way to address this? pgt0: timeout waiting for management packet response to 0x1713 pgt0: state dump: control 0x20004400

Re: Using Altq?

On 2/2/08, Brian [EMAIL PROTECTED] wrote: Basically, I want to attempt to avoid getting watchdog timeouts on my bittorrent connections. altq will not help you with this. This is an IRQ, driver or hardware problem. I would suggest trying an ACPI kernel (see archives), filing a bug report or

Re: pf scrub max-mss question

On 2/4/08, Richard Green [EMAIL PROTECTED] wrote: I have this rule: 'scrub in all max-mss 1400' When when two peers on opposite sides of this firewall attempt to connect, a TCP SYN packet passes in from peer-1 though one interface, with it's MSS field set to 1360, through a bi-nat rule and

Re: OpenBSD poster

On 3/1/08, Edd Barrett [EMAIL PROTECTED] wrote: Which reminds me, a birthday card my housemate drew for me: http://students.dec.bmth.ac.uk/ebarrett/files/obsdcard.jpg Why do I have a feeling this might do really well as a sticker

Incorrect pfctl -vvq s Output

In piloting HFSC's service curves on 4.2-release, I uncovered something wrong. In sending one 1024 byte ICMP packet every second (ping -s 1016), pfctl gets it mostly right: queue interac on pcn0 bandwidth 64Kb priority 7 hfsc( realtime(128Kb 128 32Kb) ) [ pkts:333 bytes:

Re: Incorrect pfctl -vvq s Output

On Tue, Apr 8, 2008 at 7:22 PM, Ryan McBride [EMAIL PROTECTED] wrote: On Tue, Apr 08, 2008 at 07:04:31PM -0600, Daniel Melameth wrote: 8.25Kb/s? I know this is 1Kb/s so what's going on? Is this just an inaccuracy in the pfctl output or does altq really think I'm moving 8Kb/s? I assume

Re: timeouts on http connects outbound

On Fri, Apr 18, 2008 at 7:39 PM, Moe Sizlak [EMAIL PROTECTED] wrote: Recently I moved from freebsd 6 to openbsd 4.2 but have had some problems. I get a lot of timeouts on web pages with a high number of hops and I think it may be something to do with either pf and/or sysctl.

Re: ral(4) hostap plea

On Tue, May 6, 2008 at 9:05 PM, James Turner [EMAIL PROTECTED] wrote: I've been trying to get my new ral(4) card to work like I would expect it to. I've read through most if not all the talk on misc@ about running these cards in hostap mode. I would really like to replace my wi(4), which

Re: Can't browse to Microsoft web sites...

Might be an MTU issue. Try tcpdumping an interface other than pflog0. On Tue, May 20, 2008 at 10:15 AM, Jeff Ross [EMAIL PROTECTED] wrote: I had a more complex pf rule set but now I'm using a simple rule set based almost entirely on the one from the PF FAQ: ext_if=em0 # External Public

Re: Can connect to some sites but not others

On Thu, Jun 5, 2008 at 8:47 PM, Kareem Kazkaz [EMAIL PROTECTED] wrote: I have an OpenBSD box running as my firewall (v4.2, PPPoE with ATT over a Netopia 2210). I am using pf to share the internet connection to the local network, which is made up of two Mac laptops (one 10.5.3, one 10.4.6) and

Re: How to overwrite MSS value in SYN packets?

On Mon, Jun 9, 2008 at 9:06 AM, B A [EMAIL PROTECTED] wrote: bash-3.2# pfctl -sr scrub all no-df random-id max-mss 1400 fragment reassemble pass in quick all flags S/SA keep state pass out quick all flags S/SA keep state Ok. Here is openbsd tcpdump. But I still see len 1440 packets.

Re: why pf log output to /var/log/messages /dev/console ?

On Wed, Jul 9, 2008 at 6:48 PM, Dongsheng Song [EMAIL PROTECTED] wrote: I searched /etc/syslog.conf, but can't find how to disable it. Jul 10 08:40:04 proxy /bsd: pf: loose state match: TCP in wire: 192.168.4.132:3833 58.253.67.248:80 stack: - [lo=3472355129 high=3472419308 win=65535

Re: ping: sendto: No buffer space available when using bittorrent or another p2p

Does the issue go away when you make ping part of the high priority queue? On Mon, Jul 21, 2008 at 7:55 AM, Amaury De Ganseman [EMAIL PROTECTED] wrote: Hi all, I run OpenBSD 4.3 on my gateway. But when a machine behind the NAT/gateway uses bittoreent (or gtk-gnutella) I loss packets. For

Re: ping: sendto: No buffer space available when using bittorrent or another p2p

On Mon, Jul 21, 2008 at 10:39 AM, Joe Warren-Meeks [EMAIL PROTECTED] wrote: The default limit for number of states is quite low. Try adding the following to pf.conf and running pfctl -vf /etc/pf.conf set limit { states 5000, frags 5000, src-nodes 5000 } You can up the values if they are

Re: bad tcp cksum and odd delay to close a connection on OpenBSD?

On Fri, Jul 25, 2008 at 5:35 PM, Frank Denis [EMAIL PROTECTED] wrote: Hello, Well, I didn't have enough sleep lately, so probably this is an obvious and expected result. But connecting to a closed TCP port (that replies with RST) from OpenBSD doesn't immediately return. Extremely

Re: bad tcp cksum and odd delay to close a connection on OpenBSD?

On Fri, Jul 25, 2008 at 6:03 PM, Frank Denis [EMAIL PROTECTED] wrote: Le Fri, Jul 25, 2008 at 05:54:28PM -0600, Daniel Melameth ecrivait : Can't reproduce on a 4.2 -stable box with fxp NICs: Hello Daniel, Try to with net.inet.tcp.ecn=1 With that I can reproduce the issue. It appears we

Re: Performance issues with the DNS patch?

On Sat, Jul 26, 2008 at 4:12 PM, J Duke [EMAIL PROTECTED] wrote: I wonder is anyone is seeing performance issues with the patched DNS in the late snapshots? I installed the July 22 snapshot on our DNS servers, which handle a pretty heavy load of lookups, mostly for anti-spam action. It was

Re: pf visualization

On Thu, Aug 28, 2008 at 9:52 AM, Jason Dixon [EMAIL PROTECTED] wrote: If I ever get off my lazy ass and finish/package it up, maybe this? http://www.netflowdashboard.com/demo/ VERY nice and simple Jason--which, unfortunately, is such a rarity. Here's to you getting your second wind ;) .

Re: uvm_fault again...

On Thu, Sep 25, 2008 at 5:54 AM, ng-sup01 [EMAIL PROTECTED] wrote: I have 4.3 running flawlessly since almost three months on an old machine used as firewall: now, in less than a week, it froze twice. This time I managed to copy down what's on the screen. uvm_fault

Re: reliable, dd over simple ip network

On Wed, Oct 15, 2008 at 10:28 PM, Neko [EMAIL PROTECTED] wrote: i have found a really dirty way of going around this, so im fishing for advices on finding a reliable way to dd over simple ip network with the generic bsd. could this be done in a straight pipe ? i have an ftp on the generic

Re: dhcpd problem on OpenBSD 4.4 with release / renew

On Tue, Nov 11, 2008 at 9:43 AM, Administrator [EMAIL PROTECTED] wrote: I have been struggling with this very weird behaviour of DHCPd server on OpenBSD 4.4 for some low-price routers such as EUSSO, Edimax, D-Link. DHCPd server log output seems OK (see below), but still those low-price routers

Re: OpenBSD 4.4 panics when using AICCU

On Thu, Nov 13, 2008 at 7:18 PM, Felipe Alfaro Solana [EMAIL PROTECTED] wrote: On Fri, Nov 14, 2008 at 12:58 AM, Felipe Alfaro Solana [EMAIL PROTECTED] wrote: On Fri, Nov 14, 2008 at 12:00 AM, Felipe Alfaro Solana [EMAIL PROTECTED] wrote: Are any of you using AICCU on OpenBSD 4.4 patched to

Re: In a bit of a pickle with ral0

On Thu, Nov 13, 2008 at 5:54 PM, Juan Miscaro [EMAIL PROTECTED] wrote: I'm providing wireless internet access for a small building with OpenBSD 4.3 (some snapshot) as access point. I'm using the ral driver. I regularly need to bring down and then back up the interface with ifconfig. Is this

Re: Logging interface state changes

On Mon, Nov 17, 2008 at 10:35 AM, (private) HKS [EMAIL PROTECTED] wrote: My apologies if this has already been addressed, but I couldn't find it in the man pages or mailing list archives. Is there a way to enable logging of network interface state changes on OpenBSD 4.3 or 4.4? This is mostly

Re: PF blocking outbound packets that don't have S/SA flags

On Fri, Nov 21, 2008 at 10:46 AM, Joe S [EMAIL PROTECTED] wrote: I added flags any to my pass out rule and my packets are no longer blocked by rule 0. # pfctl -s rules block return log all block return in quick inet6 all pass quick proto icmp all keep state allow-opts pass out quick all

Re: Wondering about openbsd way to update for patches.

On Sat, Nov 22, 2008 at 5:52 AM, Javier Vasquez [EMAIL PROTECTED] wrote: I'm just looking at how openbsd works to see if it suits my needs. I have a small old box (piii celeron @797 MHz 32KB $, with 512 MB ram), and in my experience compiling just the linux kernel takes ~4 hrs, and compiling

Re: Toshiba ToPIC97 CardBus: couldn't map interrupt

On Mon, Dec 8, 2008 at 11:28 AM, k z [EMAIL PROTECTED] wrote: ne3 works but couldn't map interrupt errors do appear: cbb0 at pci0 dev 19 function 0 Toshiba ToPIC97 CardBus rev 0x20: couldn't map interrupt cbb1 at pci0 dev 19 function 1 Toshiba ToPIC97 CardBus rev 0x20: couldn't map interrupt

Re: OpenBSD on home router - error requesting several URLs

On Sun, Jan 4, 2009 at 3:23 PM, Sergey Khentov sergey.khen...@gmail.com wrote: I have a very little experience in OpenBSD and network configuration / troubleshooting, so any advice / keyword to google / etc is welcome. Description: I have installed and configured OpenBSD 4.4-release to be

Re: OpenBSD on home router - error requesting several URLs

On Sun, Jan 4, 2009 at 5:00 PM, FRLinux frli...@gmail.com wrote: On Sun, Jan 4, 2009 at 11:29 PM, Daniel Melameth dan...@melameth.com wrote: scrub out on $adsl_if all max-mss 1352 What I ever had to use here was : scrub out on pppoe0 max-mss 1440 So, why that value of 1352 instead? I

Re: Updating AD DNS server

On Tue, Jan 6, 2009 at 3:41 PM, Peter Bako pe...@bakonet.org wrote: I'm looking for a script that I can run on my OpenBSD boxes that would allow them to register their DHCP assigned IP addresses with my Windows 2003 DNS server. My windows boxes do this automatically and its convenient to be

Re: pppoe

On Sun, Nov 20, 2011 at 6:37 PM, John Tate j...@johntate.org wrote: I am setting up an OpenBSD firewall, and have everything working but I am using userland pppoe. I am not sure if it ever became an official part of OpenBSD, but I've heard there might be kernel level pppoe support. Is there

Re: packet loss

On Tue, Nov 29, 2011 at 11:47 AM, rik rikc...@gmail.com wrote: Sorry, I've mised the top 2 rows of the dmesg: OpenBSD 3.9 (FIREWALL) #0: Sun Sep 17 15:49:07 CEST 2006 r...@fw1.domain.com:/usr/src/sys/arch/i386/compile/FIREWALL Firewall is just the generic.mp with a device (cpu temp

pdksh typeset

While I realize this might not be the best forum for this, it is the ksh that is in base--and the official pdksh-5.2.14 has been abandoned since '99. That said, I'm not too familiar with shell scripting, but I'm giving it a spin and am having some issues with typeset that I'd appreciate an

Re: pdksh typeset (solved)

On Fri, Dec 9, 2011 at 1:22 AM, Daniel Melameth dan...@melameth.com wrote: While I realize this might not be the best forum for this, it is the ksh that is in base--and the official pdksh-5.2.14 has been abandoned since '99. That said, I'm not too familiar with shell scripting, but I'm giving

wiconfig - simplifies the configuration of wireless interfaces

So, I got tired of doing my little time saving workarounds every time I connected to a wireless network--and decided to look for a solution. Several people have posted little wireless scripts and minor modifications here to help simplify and automate the configuration of wireless, but the scripts

Re: problem with download limit

On Tue, May 10, 2011 at 12:44 PM, Wesley MOUEDINE ASSABY open...@e-solutions.re wrote: When PF is enabled on the box, there's no queuing limit. And disable PF, don't solve the problem. Really, i don't understand why i download the file at 32Ko/s instead of ~80Ko/s At work, connection used is

iwi versus ath scan

I recently picked up another notebook and the ath card in it cannot see my SSIDs (meth, meth2.4 and open) at home. However, my two other notebooks, one using iwi and other other running Windows, can see these just fine (and all three notebooks are next to each other). The following is an

Re: iwi versus ath scan

On Sun, Jul 24, 2011 at 8:55 AM, Daniel Melameth dan...@melameth.com wrote: I recently picked up another notebook and the ath card in it cannot see my SSIDs (meth, meth2.4 and open) at home. However, my two other notebooks, one using iwi and other other running Windows, can see these just

Re: Only the first nameserver entry in resolv.conf is being queried

On Tue, Aug 16, 2011 at 12:05 PM, Brett brett.ma...@gmx.com wrote: I have customised dhclient.conf so I can use nameservers other than my ISP's. The first one on my list is unreliable, but instead of going to the next on the list, ping, xxxterm and firefox are not finding the sites (ie DNS

rfc1323 and mirror.team-cymru.org (and others)

When using one of the mirrors, mirror.team-cymru.org, ftp connectivity works sporadically--and the issue is resolved when net.inet.tcp.rfc1323=0. My first thought is some issue with the mirror's firewall, but I have no issue using this mirror from a Windows machine. With pf enabled (pass

cwm autogroup confusion

I'm trying to put one xterm in a different autogroup. This xterm's relevant properties (via xprop) are: WM_CLASS(STRING) = xterm, XTerm WM_NAME(STRING) = largexterm The relevant portion of my .cwmrc is: autogroup 1 xterm,XTerm autogroup 3 largexterm,XTerm With this, largexterm is

Re: cwm autogroup confusion

On Thu, Sep 8, 2011 at 3:39 AM, Okan Demirmen o...@demirmen.com wrote: On Tue 2011.09.06 at 18:46 -0600, Daniel Melameth wrote: I'm trying to put one xterm in a different autogroup. This xterm's relevant properties (via xprop) are: WM_CLASS(STRING) = xterm, XTerm WM_NAME(STRING

Re: No OS safe??

On Fri, May 8, 2009 at 12:17 PM, (private) HKS hks.priv...@gmail.com wrote: Wait, so you're saying OpenBSD can't even protect me from myself? Also I left my laptop running OpenBSD on a table at Starbucks while I went to the bathroom and when I came back it was gone! So much for secure by

Re: Unexpected port change inside STUN packet

I use something similar, but it appears this is only required for UDP packets: nat on $ext_pppoe_if proto udp from $ps3 to ! $ext_ether_if:network - \ ( $ext_pppoe_if ) static-port 2009/7/25 John Blaze ssjkakar...@gmail.com: Amazing, I can't believe it was something so simple. Thank

Re: bind 9.x DoS

On Thu, Jul 30, 2009 at 2:21 PM, Maurice Janssenmaur...@z74.net wrote: I noticed that there's a patch for 4.4 , 4.5 and 4.6 on the FTP-servers, but a checkout of the -stable tree still gives me the unpatched revision. Shouldn't this fix be in CVS with a OPENBSD_4_x tag? Appears these commits

Re: Some strange blocking packets

On Tue, Aug 18, 2009 at 8:56 AM, Rioux, Christophecri...@viseo.net wrote: I have some strange packet filtering on an openbsd 4.4 at the beginning a normal block all (not a block in quick, but only a block in) block in log on em0 all block out log on em0 all then I

Re: re(4) performance on openbsd and freebsd

On Fri, Sep 11, 2009 at 2:15 AM, Tobias Sarnowski sarnow...@new-thoughts.org wrote: I am running an OpenBSD 4.6 generic smp amd64 snapshot on a server with a Realtek 8168 network card. I have problems with identiying the root of my performance problem. I only get ~500kb/s upstream while

Re: applying errata vrs building userland from source

On Wed, Sep 16, 2009 at 1:17 PM, Andres Salazar ndrsslz...@gmail.com wrote: What is the best practice when building a new machine, or why would one prefer one aside from the other: a.) Compile kernel and userland from a recent -stable src checkout or b.) Apply all the errata from

Re: Slow HDD speed on Dell E6400

2009/9/28 TomC!E! BodEC!r tomas.bod...@gmail.com: when I try dd command I will get similar numbers : $ dd if=/dev/urandom of=test bs=1k count=1024 1024+0 records in 1024+0 records out 1048576 bytes transferred in 6.798 secs (154233 bytes/sec) On my old desktop with Ubuntu I have about

ALIX and PC Engines CompactFlash

With the positive response of OpenBSD on this hardware, I'm considering purchasing these in preparation for a proof of concept. As such, if anyone has purchased the 4GB COMPACTFLASH CARDS THAT PC ENGINES SELLS (http://www.pcengines.ch/cf4dp.htm or http://www.pcengines.ch/cf4slc.htm), would you

Re: Stopped at pf_test_rule+0xa87

On Tue, Dec 1, 2009 at 3:53 AM, Alastair Johnson att...@googlemail.com wrote: Got the following error on 2 identical firewalls last night: uvm_fault(0xd0891180, 0x0 0, 3) - e kernel: page fault trap, code=0 Stopped atpf_test_rule+0xa87: movl %ecx,0x4(%eax) OpenBSD 4.6 installed from

Re: wl54ag wifi card errors with cardbus support disabled

On Wed, Dec 9, 2009 at 5:05 PM, Corey J. Bukolt 0...@mail.ru wrote: I have OpenBSD 4.6 GENERIC on my Acer laptop and can't seem to get my NEC Aterm wl54ag pcmcia wfi card to work. The chipset is AR5212, which _should_ be supported by the ath driver. However, when I insert the card it isn't

pflow and pf

Am I correct in my understanding that, while you can create multiple pflow interfaces, you cannot configure pf to selectively export different states to different pflow interfaces? It appears pf exports to all pflow interfaces or none. If I have missed something, someone please chime in on how

Re: strangely slow OpenBSD server connection

On Sun, May 9, 2010 at 3:13 PM, Andreas Gerdd kryptos...@gmail.com wrote: My problem is, whenever i download a file from my server over HTTP, the MAXIMUM speed i can reach is: ~80 KB/s. This is not because of my own internet connection, i've a 8 Mbit internet line. Not because of my server's

pf, altq and interface groups

I've considered migrating my macro-based interface names to interface groups, but, it appears, altq does not grok interface groups--and pfctl spits back a pfctl: SIOCGIFMTU: Device not configured when I try. Am I missing something here? pf.conf's BNF, it appears, says I'm not...

Running systat queues Leads to System Hang

On my firewall at home, on occasion, running systat queues leaves me with an unresponsive system. pings are not returned and the keyboard at the console is unresponsive. Sometimes the command works fine and sometimes it does not--though it does system the issue is more likely to occur when the

OpenBSD Makes Other Things Better (Advocacy)

While most of us already know how the subject rings true, I still found the following from REBOL's CTO's public blog post interesting nonetheless (I've never used REBOL): This was an interesting build, because it exposed a unique bug due to the more secure methods of memory allocation on OpenBSD.

Re: Running systat queues Leads to System Hang

Would love for someone to hit me with a clue stick here. Once I run this command, I don't see anything--and the box instantly locks up. On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan...@melameth.com wrote: On my firewall at home, on occasion, running systat queues leaves me

Re: Update on altq and interface groups

On Mon, Jul 5, 2010 at 8:50 AM, Olivier Mehani sht...@ssji.net wrote: I know this question has been asked before, but I'm after an up-to-date answer, or at least a confirmation. Has support for interface groups been implemented for altq? No.

Re: Running systat queues Leads to System Hang

On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan...@melameth.com wrote: On my firewall at home, on occasion, running systat queues leaves me with an unresponsive system. pings are not returned and the keyboard at the console is unresponsive. Sometimes the command works fine and sometimes

Re: Running systat queues Leads to System Hang

On Thu, Jul 8, 2010 at 12:34 AM, Richard Toohey richardtoo...@paradise.net.nz wrote: On 8/07/2010, at 2:45 PM, Daniel Melameth wrote: On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan...@melameth.com wrote: On my firewall at home, on occasion, running systat queues leaves me

Multipath Weirdness

On a 4.6 system, I'm seeing something that I believe to be wrong. When sourcing packets from a specific IP, the traffic is being (incorrectly?) routed out the wrong interface. In this case, packets sourced via vr2's IP are being sent out vr1. While this doesn't happen all the time, it happens

round-robin sticky-address Issues

In doing round-robin on two egress connections on 4.6, I am expecting all outgoing connections from a single IP to be redirected to the same redirection address, but this is not what's happening. In the details below, LAN client 172.16.0.101 is being redirected out both redirection

Load Balance Outgoing Traffic and Killing Interface-Specific States

Using the example from the PF User's Guide (http://www.openbsd.org/faq/pf/pools.html#outgoing), what's the best way to kill all states related to ONE of the route-to interfaces created by the pass in on $int_if route-to { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) }... rule? It is a simple thing to

Re: Load Balance Outgoing Traffic and Killing Interface-Specific States

Would love it if someone could share a thought on how to handle this--can't seem to think up a way to do this simply... On Tue, Mar 23, 2010 at 7:54 PM, Daniel Melameth dan...@melameth.com wrote: Using the example from the PF User's Guide (http://www.openbsd.org/faq/pf/pools.html#outgoing

Re: Soekris net5501 locks up with Ralink 2860 miniPCI

On Wed, Apr 7, 2010 at 7:04 AM, Stuart Henderson s...@spacehopper.org wrote: The newest ones that I've had personal experience of being problem- free in AP mode are the old PRISM cards (when running suitable firmware on them) and one specific model of ath(4) (the one IBM used to use in some

Re: OpenBSD performance numbers

On Wed, Aug 11, 2010 at 12:12 PM, James Peltier james_a_pelt...@yahoo.ca wrote: Hello fellow OpenBSD'ers. I would just like to share some information with the list about our new firewall/bridge and perhaps get some input as to where I might be able to look to squeeze some additional

[SOLVED] Re: Running systat queues Leads to System Hang

On Wed, Jul 7, 2010 at 8:45 PM, Daniel Melameth dan...@melameth.com wrote: On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan...@melameth.com wrote: On my firewall at home, on occasion, running systat queues leaves me with an unresponsive system. pings are not returned and the keyboard

Re: [SOLVED] Re: Running systat queues Leads to System Hang

On Mon, Nov 22, 2010 at 9:50 PM, Daniel Melameth dan...@melameth.com wrote: On Wed, Jul 7, 2010 at 8:45 PM, Daniel Melameth dan...@melameth.com wrote: On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan...@melameth.com wrote: On my firewall at home, on occasion, running systat queues leaves

Killing nfsd and then running netstat -m causes lockup

While looking into why one of my OpenBSD machines was locking up on occasion, I have uncovered a series of repeatable steps that now reproduces the issue on all OpenBSD machines I've tried it on--so I've decided to start a new thread in the hopes of seeing it resolved. Here are the steps: #

Re: Killing nfsd and then running netstat -m causes lockup

On Wed, Dec 1, 2010 at 3:55 PM, Ted Unangst ted.unan...@gmail.com wrote: On Wed, Dec 1, 2010 at 4:43 PM, Daniel Melameth dan...@melameth.com wrote: At this point the CPU is completely utilized, no panic is reported at the console and the console is unresponsive. Since this is reproducible

[SOLVED] Re: Killing nfsd and then running netstat -m causes lockup

A fix for this has just been committed to -current by kette...@. Thanks again Mark. On Wed, Dec 1, 2010 at 2:43 PM, Daniel Melameth dan...@melameth.com wrote: While looking into why one of my OpenBSD machines was locking up on occasion, I have uncovered a series of repeatable steps that now

Re: [SOLVED] Re: Running systat queues Leads to System Hang

On Wed, Dec 1, 2010 at 12:18 PM, Daniel Melameth dan...@melameth.com wrote: On Mon, Nov 22, 2010 at 9:50 PM, Daniel Melameth dan...@melameth.com wrote: On Wed, Jul 7, 2010 at 8:45 PM, Daniel Melameth dan...@melameth.com wrote: On Fri, Jun 18, 2010 at 11:08 PM, Daniel Melameth dan

Re: OT - secondary DNS recommendations

On Wed, Dec 8, 2010 at 9:49 AM, Scott McEachern sc...@blackstaff.ca wrote: Given the (general) support of WikiLeaks here, I was wondering if anyone could recommend a free alternative to replace EveryDNS.net? I know how to use Google to find free alternatives, I'm looking for *recommendations*

Re: Pflow netflows exported twice for each connection?

On Wed, Jan 5, 2011 at 3:54 AM, Bernd Bornkessel bbornkes...@dunkel.de wrote: I plan to move our core routers from FreeBSD to OpenBSD. Currently I use netgraph and ng_netflow on the FreeBSD machines for netflow accounting. As there is a netflow kernel implentation with pflow in OpenBSD, too, I

Re: No data in pfstat-queues graph

On Fri, Mar 18, 2011 at 12:34 AM, Indunil Jayasooriya induni...@gmail.com wrote: I use pfstat to get the graphs. every graph is working fine other than pfstat-queues graph. This graph is always blank. No data to display. always empty. Here's the output of # pfctl -sq queue std_out on em0

Troubleshooting hostap and ral (and pgt)

Leveraging OpenBSD for hostap at home, in the past the wi driver and related hardware was rock solid and I never had an issue. I've since moved to 802.11g using ral, but I've had issues with it. Most notably, every couple of weeks, or sometimes every couple of days, the ral card stops accepting

pgt prevents pf from scrubbing?

I recently changed my 4.1-stable AP from ral to pgt only to find pf not scrubbing packets anymore. To make this confusion more simple, I made a temporary simple pf.conf: $ sudo cat /etc/pf.conf external_if = pppoe0 set debug loud scrub in on $external_if all scrub out on $external_if all

Re: Troubleshooting hostap and ral (and pgt)

On 10/31/07, Daniel Melameth [EMAIL PROTECTED] wrote: Leveraging OpenBSD for hostap at home, in the past the wi driver and related hardware was rock solid and I never had an issue. I've since moved to 802.11g using ral, but I've had issues with it. Most notably, every couple of weeks

Re: pgt prevents pf from scrubbing?

I was able to reproduce this issue with a clean installation of 4.2 as wellso long as the AP uses pgt, pf's scrub is broken. Thoughts? On 10/31/07, Daniel Melameth [EMAIL PROTECTED] wrote: I recently changed my 4.1-stable AP from ral to pgt only to find pf not scrubbing packets anymore

  1   2   >