jared r r spiegel wrote:
On Wed, Nov 08, 2006 at 02:46:35PM -0500, Daniel Ouellet wrote:
So, I see absolutely nothing wrong with this, but only huge benefit.
with the not wildcard stuff, it seems like that would perhaps be
a bit heavier to implement than the definately is matching.
Yes
Edgars wrote:
Bad :(
And when will be available greylist synchronization, and white/blacklist
sharing? :)
Not so bad.
It's already available for your download if you want Bob university
list. It is updated each hour and include a bunch of needs to be
castrated spamer with also a bunch of
Daniel Ouellet wrote:
Hi,
I am trying to isolate this issue, but the exact same setup and
configuration for the 3.9 was working and after the upgrades to 4.0
without any changes what so ever to the bgpd.conf doesn't work anymore.
All bgp sessions are up as before, all ibgp sessions are up
Claudio Jeker wrote:
Please check that the routes on your route-reflector. My guess is that you
need to set nexthop qualify via bgp at least that was the error I had
while testing it now. Afterwards route reflection worked for me.
I just tried it and still not it. A clear session came back
Damien Miller wrote:
On Tue, 31 Oct 2006, Daniel Ouellet wrote:
I am looking for some feedback on this DMESG if possible.
I am playing with an old Sun T1 105 and does look like it work well, but I
never saw so many not configure message in a single DMESG.
This is normal and harmless
I am looking for some feedback on this DMESG if possible.
I am playing with an old Sun T1 105 and does look like it work well, but
I never saw so many not configure message in a single DMESG.
Can anyone clue me in. Is that really normal, did I most likely forgot
something, etc.
That's my
Claus wrote:
Since apparently all developers are humppa lovers I was wondering what
I'm into with my soon to be three year old son.
I think he real understood the meaning of blog and the lack of
documentations and was just not understanding why so many on the list
and in other projects don't
Hi all,
Just for the records and for the interested in case you were looking at
the new Sun X2100 M2.
Here is the DMESG for it as of Sun Oct 22 22:42:18 MDT 2006.
A few more devices are present in the current version oppose to the 4.0
release version.
Very short differences:
-mainbus0:
Damian Wiest wrote:
Besides the Broadcom, what other nic is on the system board? ISTR newer
x2100's shipping with Nvidia ck8-04 Gigabit Ethernet for the primary
interface which may not be supported.
It's in the dmesg in archive:
Two Broadcom bge Broadcom BCM5715
and two NVIDIA nfe NVIDIA
Hi,
Any better way or suggestion to test through put on various network
cards and architecture to find one somewhat meaning full numbers for
kpps other then doing timed flooding pings?
I am trying to tests a bunch of different network cards, on different
architecture with different loads
stan wrote:
That's actually not a given IFIRK Sun says the RAID on the 2100's
is Windows only.
Interesting! I didn't read that. Must have skip my reading then somehow.
The choice are in the BIOS to enable it. I didn't buy two drives as it
was for testing only, so I can't say if it would
The man page doesn't have the usual -l for logging for the tftpd, so
what other choice could be done, or not logging for this.
I am trying to log the traffic to syslog and so far, my research still
haven't given me anything other then needed to setup and use tftp-proxy
with the -v flag.
Is
Stuart Henderson wrote:
On 2006/10/22 17:29, Daniel Ouellet wrote:
It work,s but as soon as the setup for OpenBSD start to boot the bsd.rd,
the access to both the ethernet management port as well as the serial
console is lost and the only way is to use local keyboard and monitor.
Usually
Hi,
I loaded 4.0 into a nice new Sun x2100 M2 and looks like it's working
pretty well so far anyway.
But I see a few weird things in the dmesg, like the dual core cpu
display one core at 1.8GHz and the other at 2.4 sometime?
Some device show not configure, but looks like they work.
Bob Dobb wrote:
My home office is growing as my wife moves from the office to the home.
Her work requires her to have an 831 to which is attached a 7960 IP phone.
Currently, my network just has a cheap intel box with OpenBSD doing
nat/firewall. My question is how do I make the openbsd
Bob Dobb wrote:
My home office is growing as my wife moves from the office to the home.
Her work requires her to have an 831 to which is attached a 7960 IP phone.
Currently, my network just has a cheap intel box with OpenBSD doing
nat/firewall. My question is how do I make the openbsd
Bryan Vyhmeister wrote:
As far as I know, Cisco has typically used SCCP which is their own
proprietary protocol. It uses port 2000. Cisco is now switching to SIP
and this could be the case for this phone.
You are 100% right. The Skinny client from Cisco does use the SCCP. Why
in hell did I
What's up with undeadly.org.
It's dying at:
cat6509-vlan300.edm.tera-byte.com (66.244.192.42)
* * *
Claudio Jeker wrote:
500kpps sustained is a crazy amount of packets (especially think about
possible peaks). Currently you can fine tune a OpenBSD box to do over
450kpps but there is not much headroom left for peaks.
It is better to split the load on two routers that do 250kpps each.
Stefan Klein wrote:
Just a shy question - if version 4 CDs have been shipped already, there
*should* be a downloadable version laying around somewhere, shouldn't it ?
Nope.
You want it early, you by the CD or you wait on the release date that
will be November 1. (:
What's the fun of
Jeroen Massar wrote:
Daniel Ouellet wrote:
What strike me, among many things wrong and unreal here is the specific
part as well:
Marvell is not in a position to open their wireless firmware as it is
currently dependent on the third party operating system kernel that they
do not own. A GPL
Gustavo Rios wrote:
I meant more CPU processing cycles per a given constant amount of money!
That's it.
Then go for AMD, they have more instructions then Intel that now try to
catch up to them!
So, call it more instructions machine per dollar if you like that!
Jeroen Massar wrote:
Daniel Ouellet wrote:
[.. a part that you didn't want to make a 'point' about anyway..]
Men,
I must be pretty darn stupid I have to say.
My point wasn't about the dam licenses or comparing GPL to BSD for
crying at loud!
Then don't mention it. Also learn how to reply
Gustavo Rios wrote:
I am evaluating processor hardware for using with openbsd. Two options
of course: Intel and AMD. For the 64 bit version, which delivers the
best relation price/benefits?
Thanks in advance.
Why even asked these days!
Until Intel come clean, use AMD.
I don't understand
Adriaan wrote:
On 10/5/06, Theo de Raadt [EMAIL PROTECTED] wrote:
I have decided to make public this letter which I sent to the OLPC
(One Laptop Per Child group, which is strongly associated with Red
Hat.
[snip]
See Jim Gettys defense at http://www.gettysfamily.org/wordpress/?p=27
=Adriaan=
The attitude that the end (hardware support) justifies the means
(complete sacrifice of the principles the thing was written under
in the first place) has to stop.
In a private reply to my initial mail Jim Gettys (OLPC / Red Hat) said:
Free and open software is a means to an end, rather
Paul de Weerd wrote:
On Thu, Oct 05, 2006 at 03:54:47PM -0600, Jack J. Woehr wrote:
| Free and open software is a means to an end, rather than the
| sole end unto itself for OLPC.
|
| I was totally stunned by this admission. morally bankrupt, as Bob
| says, is exactly what is going
David Gwynne wrote:
On 29/09/2006, at 11:09 PM, Francois Slabbert wrote:
hi misc,
i'm looking to purchase a sata raid controller, and have shortlisted
it down to two models for no particular reason other than the
controllers being supported by openbsd, being 'afordable',compatible
with the
Toni Mueller wrote:
Hello,
I've recently read that these machines are now fully supported on
OpenBSD. What experience do you have with them, please? Any advices on
what to watch out for?
Are you sure for your model.
They have the x336 or the eSeries 326m, but not the x326m. So, I assume
you
Just in case you haven't seen it yet.
http://www.undeadly.org/cgi?action=articlesid=20060927091645
Daniel Hartmei posted a great article at undeadly.org and announce more
to come!
I very much enjoy the reading a LOTS!
Try all the example he showed as well just to see how good or bad my
Chris Cappuccio wrote:
doing it all in one step is trivial.
Please guys. Nick spend a lots of time trying to make the process very
clear and exact for everyone. He put many warning in there and even with
that, some users find ways to shoot themselves in the foot by using none
standard,
John Draper wrote:
Can someone please make a recommendation, or point me to any docs that
might be in the
OpenBSD Site... the only docs I could find is in the FAQ, and it only
mentions operation of
the server in chrooted mode, but nothing on setting it up.
All is ready and the server
Marian Hettwer wrote:
Q: How can I use replication to improve performance of my system?
A: You should set up one server as the master and direct all writes to
it. Then configure as many slaves as you have the budget and rackspace
for, and distribute the reads among the master and the slaves.
Marian Hettwer wrote:
Starting by looking at errors and then making sure a replication setup
doesn't have any errors is always a good thing before saying it doesn't
work. So, when no errors happen, may be many things will work just fine.
I haven't said that it doesn't work. I said its bloody
edgarz wrote:
I do it too :)
Same answer:
http://marc.theaimsgroup.com/?l=openbsd-miscm=115846012811205w=2
Daniel
Marian Hettwer wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Daniel,
Daniel Ouellet wrote:
Marian Hettwer wrote:
As soon as replication starts, mysql gets very unresponsive:
- -bash-3.1$ time mysqladmin -uroot -p proc stat
Enter password
Okay... but by looking in iostat, it looks like pretty low traffic. 1 to
2 MB/sec. A higher number of transfers per second, though.
You are right! Yes But the question is also, is there something else then...
A few ideas below. Sure not all apply for sure, but just to show you
that assuming
Gilles Chehade wrote:
Hi misc@,
I am looking for companies that provide OpenBSD-powered dedicated hosting.
Currently, I am being hosted by a french company which turned out to be as
incompetent as can be, and I am willing to switch as soon as possible
(preferably before the 25th of September).
Marian Hettwer wrote:
As soon as replication starts, mysql gets very unresponsive:
- -bash-3.1$ time mysqladmin -uroot -p proc stat
Enter password:
++-+---++-+--+---+--+
|
Jason Dixon wrote:
On Sep 13, 2006, at 8:54 PM, Bryan Vyhmeister wrote:
I did some searching in the archives and it looked like somebody
started working on a port to the Cobalt MIPS-based machines back in
2001. Is there a developer who is interested in making this port
happen? I know very
Toni Mueller wrote:
mind you that my problems radically increased with 5.x - nobody is
talking about 4.x anymore.
You checked these right?
Many details that might help you.
http://www.openbsdsupport.org/mysql.htm
Just a thought.
Daniel
Joachim Schipper wrote:
Your worries about losing proxies is correct; it looks like you have
that problem mostly covered. I'm not sure it would help much about
bandwidth hogs, though - I don't have any numbers on what programs are
most often used, but something like wget certainly does respect
Daniel Ouellet wrote:
3.1 Good users supply data check.
So far most/all of the variations of attacks on web sites are with
scripts trying to inject itself to your servers. Well, you need to do
sanity checks on your code. Nothing can really protect you for that if
you don't check what you
Here to reduce the questions on the installation and configuration of
MySQL on OpenBSD. I put a document up with more details on it.
http://openbsdsupport.org/mysql.htm
Yeap, the English may not be perfect, but the steps are there.
Hope this help anyway.
Best,
Daniel
PS: I don't think I
Tom Bombadil wrote:
One funny story about redundancy in general: we run raidframe to mirror
the 2 disks in the system... And like I said both firewalls were
crashing together... After the crash our allegedly redundant firewalls
were both down for 20 minutes for parity rebuilding... simplicity is
I have been asked to provide updates to the list when/if I got any
progress on this.
I have. Not sure what to do next however and if the finding should be
put out fully. I don't know as i never done that before.
But the attack keep growing and is now reaching 300,000 logged source
IP's. I
Hi,
I am looking on feedback and comments of the following ideas as well as
possible additions to it. Please read on as I would very much appreciate
inputs. But also know it is long too. Sorry, but lots of ideas are
include here.
I am working on this idea and put into place a series of
Gustavo Rios wrote:
Hey folks,
On 6/20/06, Jesse Gumm [EMAIL PROTECTED] wrote:
It's good, but if it's a multiprocessor machine, OpenBSD won't take
full advantage of the other processors with MySQL since MySQL is
multi-threaded. But it's stable, and runs reasonably fast (and you
are assured
Make sure that you have your 'open-files-limit' parameter set to a sane
value in your my.cnf. If you don't have anything set for that limit
the default is extremely low (so low that using views tended to not
work on my dev box). I have been using open-files-limit = 8192,
however YMMV.
A very
Kyle George wrote:
On Thu, 7 Sep 2006, Jacob Yocom-Piatt wrote:
i too was unlucky until i read some posts on misc@ several months
back. adding
_mysql:\
:datasize=1024M:\
:maxproc=4096:\
:openfiles-cur=2048:\
:openfiles-max=8192:\
:stacksize-cur=16M:\
Ryan McBride wrote:
On Mon, Aug 28, 2006 at 09:15:44PM +0200, Joachim Schipper wrote:
On Mon, Aug 28, 2006 at 11:58:39AM -0600, Tim Pushor wrote:
Only question is to whether or not to use the/a carp address for the DNS.
It will work, but as noted, there's no particular reason to do this;
Stuart Henderson wrote:
On 2006/08/28 15:26, Daniel Ouellet wrote:
I have a list of 46K computers that from the logs are all the same OS,
patch, etc and I want to get the OSFP of it to see what it might be and
if that's the only connection with that specific signature.
If you log the traffic
I looked at the site:
http://lcamtuf.coredump.cx/p0f-help/
There isn't any updated signature file available at this time right?
I know there is a new beta version of the p0f there.
Just wondering?
I also see in the docs that:
# KEEP IN MIND: Some packet firewalls configured to normalize
Joachim Schipper wrote:
However, *if* he did, you might have some interesting tricks to play on
him. Many scanners [1], for instance, will not send a SYN twice - and
(almost?) all TCP/IP stacks will. Dropping the first SYN from a new IP
can be done easily with pf, and while the impact on
Mike Frantzen wrote:
Last, as for the signature that may be different on the same computer if
control by a webbot, is that possible? I guess not as the TCP stack
isn't changed, but anyone know for sure? I am curious on that part.
It will only change if the application does a setsockopt() and
Ryan Corder wrote:
On Wed, 2006-08-23 at 20:36 -0400, Daniel Ouellet wrote:
200.82.74.176 - - [23/Aug/2006:12:42:37 -0400] GET
/events/index.php?EventID=58 HTTP/1.1 200 5 - Mozilla/4.0
(compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
the following URL may be of interest to you
If I may ask. One part of my original question was if the CARP interface
is view as a bridge setup as far as Sync Proxy is concern. Is it the
case here? What I understand of the FaQ is clear for not working on
bridge setup, however, it's not clear to me if CARP setup is view as
bridge as well.
Joachim Schipper wrote:
Did you already check that the page is, indeed, the page you expect it
to be? And not, say, some botnet-controller?
Yes I did and even moved it and replace it with special hacking of my
own there. (;
Not that dumm. But thanks for your concern. (;
Plus it is really
well
become a night mare sooner then I would like if you follow my drift.
Thanks for your suggestions never the less.
Ryan Corder wrote:
On Thu, 2006-08-24 at 12:30 -0400, Daniel Ouellet wrote:
I am now up to 11,149 simultaneous sources for the last 22 hours.
Someone is having fun at my
Here is an interesting approach. Could spamd be use here?
I was suggested that may be I fight to much spamer and that I got
reposted to this. Well very possible.
I got a suggested that may be trapitting the connections might help.
Hmmm. Could this be done. Obviously not want to delay
I am curious as to if this is possible that the three step of the TCP
connection is bypass somehow, or not completed when it is connecting
directly to the apache server on OpenBSD? I wouldn't think so, but may
be I am missing something or not understanding something here.
I am asking as I
Nick Guenther wrote:
No it's not possible to bypass the handshake. These must be zombie
hosts. Compromised Windows boxes go for 5cents, I hear. You should try
to figure out who would want to do this to you.
Well finding the source of this as you can imagine is not that easy.
In my database
Nick Guenther wrote:
Additionally I just ran nmap on the address listed in your log and
although it didn't identify it positively it says it's a windows box.
So there you go. It has an open port at 1026/tcp and I'll bet that's
the control channel.
Got to love Micro$oft I tell you. If true,
Marcos Marconcini wrote:
I did an upgrade from 3.8 stable to 3.9 current ( I don't know if this is
the problem )
Start with a snapshot and read the FAQ first. That's why they exists.
[EMAIL PROTECTED] wrote:
Running OpenBSD 3.9-stable
# start mysql server.
/usr/local/bin/mysqld_safe
I am using this:
# Start MySQL server
if [ -x /usr/local/bin/mysqld_safe ] ; then
su -c _mysql root -c '/usr/local/bin/mysqld_safe ' /dev/null
echo -n ' mysql'
fi
But in rc.local
[EMAIL PROTECTED] wrote:
Running OpenBSD 3.9-stable
# start mysql server.
/usr/local/bin/mysqld_safe
A shorter answer now that I look in more details as you pick my
curiosity a bit.
Selected extract from:
http://openbsd.org/faq/faq10.html#rc
* /etc/rc.conf - Configuration file used by
Karsten McMinn wrote:
On 8/15/06, Marian Hettwer [EMAIL PROTECTED] wrote:
I played with a bit when I had access to lots of
RaQ3s and 4s but it wasnt worth the time with
their custom bios in the way.
I only maintain somewhat a distribution of it for the RaQ 2+ and Cube:
Marian Hettwer wrote:
I don't think it can be done. I had a RaQ3 once - way back when. The
But the RaQ3 was MIPS based, wasn't it ?
Nope, I386, the MIPS based stop at the RaQ2+ after witch they switch. To
bad if you asked me, but that's the new one. Yea, I bit more complicated
with the
stan wrote:
Does OpenBSD work well on a Sun Ultra 25?
I don't see it on the list here:
http://openbsd.org/sparc64.html#hardware
Also on the same page, if you scroll at the bottom you will get your
answer as well:
Unsupported machines
Ultra 25
stan wrote:
Does OpenBSD work well on a Sun Ultra 25?
I don't see it on the list here:
http://openbsd.org/sparc64.html#hardware
So, I would venture to say no. But the best way to know is to try.
On Wed, Jul 19, 2006 at 08:21:01PM +0200, Peter Philipp wrote:
Hi I'm looking for clue. Does anyone have any?
Google provide some:
http://www.hasbro.com/clue/
Make sure you fit the minimum requirements however:
http://www.hasbro.com/clue/pl/page.browse/dn/default.cfm
May be CLUE JR.
Steve Glaus wrote:
Hello all,
I'm finally desperate enough to post this to a list...
I have been trying for two days to set up a basic VPN between my OpenBSD
box at home and my OpenBSD box at work.
The box at home is running 3.7 and the box here at work is running 3.9.
May be worth to have
Blah blah blah. Let's please drop this sociopolitical debate and get onto
some BSD?
Sure we can. What do you want to talk about?
VoIP would be nice and selfish as well, but oh well...
Christopher Snell wrote:
Hi,
Is the Intel PRO/1000 PT still non-functional under our favorite OS?
I searced around and found a message from Darrian Hale in late April
that said he was having kernel panics with this NIC. Has anything
changed?
# dmesg
OpenBSD 3.9 (GENERIC.MP) #736: Thu Mar 2
Paolo Supino wrote:
Hi
I'm in the process of building firewall (Obviously it will run OpenBSD)
and I need to put in a quad NIC card. There's Intel Quad card that I had
a success with in the past but is expensive as hell. I found a company
called Mikrotik that makes a Quad NIC card and I'm
Is there a special reason why we couldn't see the
set skip on interface
in the display of the rules in pf with the regular:
pfctl -sr
That's on 3.9.
it is not a rule.
OK, not a rule, but still shouldn't it be possible or useful to see that
in effect? If you make changes for testing or what not and you use this
temporary, etc on a box of 10+ interfaces, just my thinking, but I was
expecting to see this in display of how the pf was
If this was to be implemented, it might be more appropriate to show in the
runtime state (pfctl -si) than the rule output.
I don't know. May be may be not. But I got cut with this. I had a
sysadmin do changes in a pretty big multi interface box and he use the
set skip to test new rules on
Indeed it does, but not by hacking up `-s rules`. pfctl(8) lists all
the various things you can display with -s. 'options' (as per
pf.conf(5)) do not seem to be among them, however, which I agree is
unfortunate. It also doesn't help that the manpage say, next to, -s
Rule:
Note that the ``skip
set skip on interface
in the display of the rules in pf with the regular:
pfctl -sr
it is not a rule.
I guess one could argue that:
set block-policy option
is not a rule either, but it does show up however:
Example 1:
In pf.conf
snip
set block-policy return
block all
snip
pfctl -sr
snip
J.C. Roberts wrote:
On Fri, 30 Jun 2006 14:27:53 -0400, Nick Guenther [EMAIL PROTECTED]
wrote:
On 6/30/06, Breen Ouellette [EMAIL PROTECTED] wrote:
J.C. Roberts wrote:
This should take care of any of the long standing issues OpenBSD has had
with the HiFn's procedures for releasing
I have a general question and I am curious to understand the difference
why for example the package for MySQL on i386 3.9 stable branch provides
multiple versions and the same versions are not available in the stable
branch of amd64, but can be found in the current version of 3.9.
I fail to
mysql status;
--
44 Open tables: 455 Queries per second avg: 5.117
--
# dmesg
OpenBSD 3.9 (GENERIC) #617: Thu Mar 2 02:26:48 MST 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III (GenuineIntel 686-class) 844 MHz
real mem =
Looks like the packages for Weblizer on AMD64 is corrupted.
One three different systems, it all show thew same errors.
If I am not mistaken it is here:
freetype.13.1
Freetype is version 1.3.1, not 13.1 as below.
# pkg_add webalizer
Error from
Berk D. Demir wrote:
No. Packages are not damaged.
In fact it's looking for
/usr/X11R6/lib/libfontconfig.so.3.0
/usr/X11R6/lib/libfreetype.so.13.1
libraries which are provided with xbase39 installation set.
Extract the xbase39.tgz and voila you're done.
tar -pzxf xbase39.tgz -C /
Berk D. Demir wrote:
You installed the libs but system's dynamic linker doesn't have a clue
about them.
Tell him the location of newcomers with
ldconfig -m /usr/X11R6/lib
OK, I needed to also do ldconfig -m /usr/local/lib as well and then redo
the ldconfig -m /usr/X11R6/lib and now
Marian Hettwer wrote:
I'd love to have the time to give OpenBSD a chance on our production
system. Seems unlikely, since we're running Linux only :(
Time, well a coffee break, that's all you need.
See setting up OpenBSD in 5 minutes from scratch, even here with pause
in the process too:
Marian Hettwer wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Julian,
Julian Bolivar wrote:
I use MySQL 5.0.18 and OpenBSD 3.9 for AMD64 and work fine, and I used
a lot of insert / hour in it, using Innodb tables.
What means a lot ? Can you provide a mysqladmin status, or a show
Frank Bax wrote:
Actually, the option is really --disable-keys. The --opt option is just
a shorthand for several options (including --disable-keys).
There is more as well and refer to the man page for all the details:
http://dev.mysql.com/doc/refman/5.0/en/mysqldump.html
The --opt
Doesn't
Nick Guenther wrote:
On 6/13/06, Stuart Henderson [EMAIL PROTECTED] wrote:
On 2006/06/13 22:07, Nick Guenther wrote:
What is the prefered method for NAT-traversal these days? The options
I know are:
UPnP
I suppose this one doesn't work unless the protocol bends well to it,
and both ends
vladimir plotnikov wrote:
Hello!
I have installed OpenBSD 3.8 and MySQL server 4.0.24 (from ports)
From time to time (after high load) I got next - mysql drops connects
by TCP/IP (simple connection closed after telnet to port 3306) and
next in logs:
Few lines like
060620 14:51:06 [ERROR]
Anders J wrote:
My self have experienced mixed issues with MysSQL on OpenBSD and also
read and heard about performance and stability problems with MySQL on
OpenBSD.
I use it for years (7+) without issues. The only one I recall was with
3.23.46, yeap, really old, where the database restart
Bryan Irvine wrote:
Works ok for me. Hasn't crashed or anything like that. I use mysql 5 on
OpenBSD that some web apps talk too. I just did an import of a previous
dump, and it took somewhere in the neighboorhood of 7 hours give or take.
(for a few tens of million INSERTS that's not bad).
On Tue, Jun 13, 2006 at 08:43:16AM -0600, Theo de Raadt wrote:
[snip]
And if you continue baiting me, I will delete the driver from our
source tree.
Here is my conclusion on this.
OpenBSD is the MOST secure OS on the planet and no one can dispute that.
PF is also the most secure firewall as
2006/6/13, Hank Cohen [EMAIL PROTECTED]:
Folks,
There has been some discussion of late on this list about Hifn's policy
with respect to releasing documentation to the general public. That
discussion lead to a great deal of uninformed speculation and
unflattering statement's about Hifn's
Martin Toft wrote:
To Daniel Quellet: Sorry for disturbing the topic of your thread.
That's cool! No worry, I guess your subject is way more interesting to
many, or no one is using NAT traversal or have any needs for it.
That's fair game. (;
Daniel
Matt Wilkins wrote:
hi,
i just recently upgraded our firewall from 3.7 to 3.8 and am now
seeing errors on our internal interface:
fw:~ netstat -i -I em1 1
em1 inem1 out total in total out
packets errs packets errs colls packets errs packets errs colls
Stuart Henderson wrote:
On 2006/06/13 14:58, Daniel Ouellet wrote:
That's cool! No worry, I guess your subject is way more interesting to many,
or no one is using NAT traversal or have any needs for it.
I don't know much about H.323, but for SIP draft-biggs-sip-nat has some
useful information
Hi,
May be I don't understand this properly, or I keep running around to my
tail in reading the man pages, etc.
But I am trying to show the announcement sent to specific peer when I
apply filter for example.
Looks like I do not have a way to do this.
Something like:
show ip bgp neighbors
Henning Brauer wrote:
* Daniel Ouellet [EMAIL PROTECTED] [2006-06-12 11:54]:
show ip bgp neighbors 1.2.3.4 advertised-routes
I want to make sure of what I do send to some peer is really what I want
to send to them.
the asbove command doesn't quite resample that... yeah, it is
non-optimal
801 - 900 of 1128 matches
Mail list logo
