Re: BiDi sfp in ix

[Ivo Chutkin]

On 2.1.2023 г. 16:58 ч., Hrvoje Popovski wrote:

On 28.12.2022. 20:21, Stuart Henderson wrote:

On 2022-12-28, Hrvoje Popovski  wrote:

Hi all,

I don't have much experience with BiDi sfp, so I'm asking you guys,
should openbsd ix work with 1G BiDi sfp.


should do, yes.

in case you're not aware, bidi transceivers come in different types, e.g.
your MaxLink ML-S5531-20 transmits at 1550nm and receives at 1310nm, so
must be paired with a transceiver that transmits at 1310nm and receives
at 1550nm (e.g. the MaxLink model is ML-S3155-20) - do you have that?

also, they should normally be used with single-mode fibre (due to how
the bidi optics are coupled into the fibre they *can* also work with
multimode fibre, though if you do that, insertion loss is high so
distance is much more limited, plus it's even more sensitive to bending
than usual in that case).




Hi,

everything is fine regarding transceiver and fiber. I've played with it
for few days with my ISP and that BiDI sfp works on mikrotik
RB5009UG+S+IN and cisco 2960 switch. On aruba 2540 (allow unsupported
transceiver), ibm switch and openbsd ix(4) it won't work.

I've ordered few BiDi sfp from fs.com and maybe my ISP will lend me
MaxLink sfp so I could test them in lab.

Thank you Stuart for information ...


Hi Hrvoje,

Can you try setting NIC to use speed 1G since it is SFP, not 10G SFP+ 
module.

My experience is that "media: Ethernet autoselect" not always work.

Best regards,
Ivo

OT iBGP without full meesh

[Ivo Chutkin]

Hello guys,
It is not related to OpenBSD. Since I started my admin "career" with 
OpenBGPD and OpenBSD, I just need some thoughts and advises from anyone 
more experienced.


The situation is as follows:
I have 2 border routers in main location. All Upstreams,IX-es and 
clients have eBGP sessions. Clients are mostly small regional ISPs.
We carry customers traffic from main location to their region over L2 
vlans. On all regional POPs, I have L3 switches (Brocade ICX6650).


The idea I have is to make eBGP session with regional ISPs on their 
local POP switch and distribute their prefixes to other ISPs connected 
there. To make some kind of Internet Exchange on regional level or even 
national level for our customers.


As far as I know, all routers (BGP running switches) in a single AS, 
should be connected via iBGP (If I am not mistaken, it is called full 
mesh). But, on main routers, I have number of full feeds that regional 
switches are not capable to handle.


Do you think it could be done somehow without iBGP full mesh or it is 
stupid idea by design?


Thanks for any help,
Ivo

Unable to log in with Pubkey after upgrade to 7.0

[Ivo Chutkin]

Hello all,

I am unable to log in with Pubkey after upgrade to 7.0

I can log in with user/password.

What i get in the log is:

Oct 22 15:10:01 sklad sshd[88986]: userauth_pubkey: key type ssh-rsa not 
in PubkeyAcceptedAlgorithms [preauth]


Here is output of
~ $  ssh -Q key
ssh-ed25519
ssh-ed25519-cert-...@openssh.com
sk-ssh-ed25...@openssh.com
sk-ssh-ed25519-cert-...@openssh.com
ssh-rsa
ssh-dss
ecdsa-sha2-nistp256
ecdsa-sha2-nistp384
ecdsa-sha2-nistp521
sk-ecdsa-sha2-nistp...@openssh.com
ssh-rsa-cert-...@openssh.com
ssh-dss-cert-...@openssh.com
ecdsa-sha2-nistp256-cert-...@openssh.com
ecdsa-sha2-nistp384-cert-...@openssh.com
ecdsa-sha2-nistp521-cert-...@openssh.com
sk-ecdsa-sha2-nistp256-cert-...@openssh.com


The key was working on 6.9.

Dmesg is below.

Any help will be appreciated.

Thanks a lot,
Ivo



~ $ dmesg
OpenBSD 7.0 (GENERIC.MP) #232: Thu Sep 30 14:25:29 MDT 2021
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4259958784 (4062MB)
avail mem = 4114817024 (3924MB)
random: good seed from bootblocks
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xcfe9e020 (13 entries)
bios0: vendor coreboot version "v4.12.0.1" date 05/29/2020
bios0: PC Engines apu4
acpi0 at bios0: ACPI 6.0
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP SSDT MCFG APIC HEST SSDT SSDT HPET
acpi0: wakeup devices PWRB(S4) PBR4(S4) PBR5(S4) PBR6(S4) PBR7(S4) 
PBR8(S4) UOH1(S3) UOH2(S3) UOH3(S3) UOH4(S3) UOH5(S3) UOH6(S3) XHC0(S4)

acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimcfg0 at acpi0
acpimcfg0: addr 0xf800, bus 0-64
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: AMD GX-412TC SOC, 998.25 MHz, 16-30-01
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,PCLMUL,MWAIT,SSSE3,CX16,SSE4.1,SSE4.2,MOVBE,POPCNT,AES,XSAVE,AVX,F16C,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,OSVW,IBS,SKINIT,TOPEXT,DBKP,PERFTSC,PCTRL3,ITSC,BMI1,XSAVEOPT
cpu0: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 2MB 
64b/line 16-way L2 cache

cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative
cpu0: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 99MHz
cpu0: mwait min=64, max=64, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: AMD GX-412TC SOC, 998.13 MHz, 16-30-01
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,PCLMUL,MWAIT,SSSE3,CX16,SSE4.1,SSE4.2,MOVBE,POPCNT,AES,XSAVE,AVX,F16C,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,OSVW,IBS,SKINIT,TOPEXT,DBKP,PERFTSC,PCTRL3,ITSC,BMI1,XSAVEOPT
cpu1: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 2MB 
64b/line 16-way L2 cache

cpu1: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative
cpu1: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu1: smt 0, core 1, package 0
cpu2 at mainbus0: apid 2 (application processor)
cpu2: AMD GX-412TC SOC, 998.13 MHz, 16-30-01
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,PCLMUL,MWAIT,SSSE3,CX16,SSE4.1,SSE4.2,MOVBE,POPCNT,AES,XSAVE,AVX,F16C,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,OSVW,IBS,SKINIT,TOPEXT,DBKP,PERFTSC,PCTRL3,ITSC,BMI1,XSAVEOPT
cpu2: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 2MB 
64b/line 16-way L2 cache

cpu2: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative
cpu2: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu2: smt 0, core 2, package 0
cpu3 at mainbus0: apid 3 (application processor)
cpu3: AMD GX-412TC SOC, 998.14 MHz, 16-30-01
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,PCLMUL,MWAIT,SSSE3,CX16,SSE4.1,SSE4.2,MOVBE,POPCNT,AES,XSAVE,AVX,F16C,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,OSVW,IBS,SKINIT,TOPEXT,DBKP,PERFTSC,PCTRL3,ITSC,BMI1,XSAVEOPT
cpu3: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 2MB 
64b/line 16-way L2 cache

cpu3: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative
cpu3: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu3: smt 0, core 3, package 0
ioapic0 at mainbus0: apid 4 pa 0xfec0, version 21, 24 pins
ioapic1 at mainbus0: apid 5 pa 0xfec2, version 21, 32 pins
acpihpet0 at acpi0: 14318180 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PBR4)
acpiprt2 at acpi0: bus 2 (PBR5)
acpiprt3 at acpi0: bus 3 (PBR6)
acpiprt4 at acpi0: bus 4 (PBR7)
acpiprt5 at acpi0: bus -1 (PBR8)
acpibtn0 at acpi0: PWRB

Re: OT: Dell EMC switches

[Ivo Chutkin]

Hello guys,

Thanks for replies. To add some more info for the case.

We have DWDM network with star topology. Switches will be connected to 
center point with 100G uplink (currently 10G or 2x10G) via DWDM lambda.

Customers are connected to 10G ports.

We carry Internet traffic and IPTV multicast to regional ISPs over VLANs.

What is important for me is switch to be capable to carry traffic on 
wire speed without packet loss. Latency is not big issue here.


I will also have a look at Arista switches.

Thanks a lot for the help,
Ivo

On 10.4.2021 г. 00:10 ч., Tom Smyth wrote:

+1 re arista switches...

On Friday, 9 April 2021, Diana Eichert  wrote:


I second Arista switches, in my day job we use a lot of Arista
switches.  Though one of the "issues" we see is Arista
drops older tech regularly.  I believe their last presentation to us
was 25G/100G/400G switches.

On Thu, Apr 8, 2021 at 1:18 PM Mischa  wrote:


Hi Ivo,

I don’t have any experience with the Dell switches but what about the

Arista DCS-7050QX-32 or DCS-7050QX-32S?

32x40G QSFP+ for the 7050QX-32
32x40G QSFP+ of which one QSFP+ can act as a dual personality to 4xSFP+

for the 7050QX-32S. (mind the S)


There are converters for the QSFP+ to turn them into a SFP+ port if you

need more 10G but want to have a way to migrate to 40G.

You can do this with the Mellanox 655902-001 QSA adapter.

Which is pretty much what we have in production. :)
Are you planning to buy new or eBay? There are some pretty good deals on

eBay.


Mischa

OT: Dell EMC switches

[Ivo Chutkin]

Hello everyone,

Does anyone have experience with Dell EMS switches?

Namely S4100 series, S4128F-ON or S4188F-ON.

Are they robust and reliable?

I need to replace number of Extreme Networks X650. 10G ports are loaded 
nearly 80% all the time. We are pushing Internet traffic and some multicast.


Also, Dell EMC support third party OS like FTOS, Cumulus Linux OS or Big 
Switch Networks Switch Light. It it means any good.


Thanks,
Ivo

Supermicro X10SLH-LN6TF X10SLH-N6-ST031

[Ivo Chutkin]

Hello everyone,

Is there anyone with experience with this MB? Has anyone installed 
OpenBSD on such a MB?


What I found is that it is from some OEM security device.

Here is link to ebay item 133362966075:

https://www.ebay.co.uk/itm/Supermicro-Motherboard-X10SLH-LN6TF-X10SLH-N6-ST031-6x-10GBE-PW-CLEARED-X540-T2/133362966075?_trkparms=aid%3D111001%26algo%3DREC.SEED%26ao%3D1%26asc%3D20160908105057%26meid%3Dbddd2c271e334dda8ac3dfa2a07f4af2%26pid%3D100675%26rk%3D6%26rkt%3D15%26mehot%3Dpp%26sd%3D143586569305%26itm%3D133362966075%26pmt%3D1%26noa%3D1%26pg%3D2380057%26brand%3DSupermicro&_trksid=p2380057.c100675.m4236&_trkparms=pageci%3A14b00f79-62e4-11eb-abe9-467a4e9fa992%7Cparentrq%3A52ca5f341770ad4eac5dab5bfffda88c%7Ciid%3A1

Thanks a lot,
Ivo

Re: Droping UDP traffic

[Ivo Chutkin]

On 1.8.2020 г. 14:43 ч., Stuart Henderson wrote:

On 2020-07-31, Ivo Chutkin  wrote:

Hello guys,

Thanks for suggestions.

Tweacking sysctl

net.inet.udp.recvspace=131072
net.inet.udp.sendspace=131072

solved the problem.

Test between routers that started to drop packets over 10Mbit, now run
test at 100Mbit with less than 1% drops (over 50% before).


net.inet.udp.recvspace and net.inet.udp.sendspace only affect traffic
generated on a machine itself, they do not affect forwarded traffic.

Generating packets on the router itself isn't a good test for how well
they can forward packets.




Hi Stuart,

I have read it many times that increasing the values do not affect 
forwarding performance. That is is why I was skeptical about calomel.org 
solution.


Can you point some directions for increasing forwarding performance?

I upgraded all routers to 6.7 with patches and I think problem 
disappears, using the same hardware.


Thanks for your help,
Ivo

Re: Droping UDP traffic

[Ivo Chutkin]

Hello guys,

Thanks for suggestions.

Tweacking sysctl

net.inet.udp.recvspace=131072
net.inet.udp.sendspace=131072

solved the problem.

Test between routers that started to drop packets over 10Mbit, now run 
test at 100Mbit with less than 1% drops (over 50% before).


I run the folowing test:

APU 6.7 -->vlan-->Supermicro 6.7 (production)-->ospf over 
vlan-->supermicro 6.4 (production)-->APU 6.4


softnet on supermicro 6.4 is about 22% and increses to 27-30% during the 
test with 100Mbit.


On supermicro 6.7 it is about 2% and does not change during the tests.

Supermicro are identical sysytems as dmesg below, running 6.7 and 6.4.

To answer other questions, I do not do a lot filtering, just block ssh 
on external interfaces. There is no noticable increase in cpu and momory 
loads during the tests.


Routers run bgp and ospf but I do not think it is a problem.

After upgrading routers I will report back.

Thanks for your help.

Best regards,
Ivo



On 31.7.2020 г. 10:14 ч., Tom Smyth wrote:

Can you post your pf.conf...

If ur not using much filtering try pfctl -d  to diasble pf and repeat 
testing


Run top -S  to see if sofnet is at 100%






On Thursday, 30 July 2020, Ivo Chutkin <mailto:open...@bgone.net>> wrote:


Hello all,

I run small ISP. All routers and firewalls run OpenBSD.

Reticently, client started to complain that their Citrix based
systems started to drop connections.

After some research, they tested with iperf and clearly see droped
UDP packets between my routers.

After that, I made test lab, and the results are not very nice.

I tested with iperf between directly connected (via Juniper EX4200
switch) OpenBSD 6.7 amd64 MP, dmeseg of sender and server are below.

APU Sender--->Juniper EX4200 ---> Supermicro Server

iperf -c serverIP -u -t 60 -b 10M -p 5003 no drops

iperf -c serverIP -u -t 60 -b 20M -p 5003 average 2% drops

iperf -c serverIP -u -t 60 -b 30M -p 5003 avarage 15% drops

iperf -c serverIP -u -t 60 -b 40M -p 5003 avarage 20% drops

iperf -c serverIP -u -t 60 -b 50M -p 5003 between 25% drops


Also tested other lab with simmular results

APU Sender--->Juniper EX4200 ---> Supermicro Forwardig > TPlink
switch > Supermicro Server


Is this expected or know behavior?

Am I missing some tweaks?

Is the hardware not powerful enough?

Any ideas and suggestions are appreciated.

Thanks for your help,
Ivo


APU:
~ # dmesg
OpenBSD 6.7 (GENERIC.MP <http://GENERIC.MP>) #5: Tue Jul 21 13:50:07
MDT 2020


r...@syspatch-67-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
<http://GENERIC.MP>
real mem = 4246003712 (4049MB)
avail mem = 4104691712 (3914MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xdf16d820 (7 entries)
bios0: vendor coreboot version "4.0" date 09/08/2014
bios0: PC Engines APU
acpi0 at bios0: ACPI 4.0
acpi0: sleep states S0 S1 S3 S4 S5
acpi0: tables DSDT FACP SPCR HPET APIC HEST SSDT SSDT SSDT
acpi0: wakeup devices AGPB(S4) HDMI(S4) PBR4(S4) PBR5(S4) PBR6(S4)
PBR7(S4) PE20(S4) PE21(S4) PE22(S4) PE23(S4) PIBR(S4) UOH1(S3)
UOH2(S3) UOH3(S3) UOH4(S3) UOH5(S3) [...]
acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpihpet0 at acpi0: 14318180 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: AMD G-T40E Processor, 1000.14 MHz, 14-02-00
cpu0:

FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,SSSE3,CX16,POPCNT,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,IBS,SKINIT,ITSC
cpu0: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache,
512KB 64b/line 16-way L2 cache
cpu0: 8 4MB entries fully associative
cpu0: DTLB 40 4KB entries fully associative, 8 4MB entries fully
associative
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 199MHz
cpu0: mwait min=64, max=64, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: AMD G-T40E Processor, 1000.01 MHz, 14-02-00
cpu1:

FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,SSSE3,CX16,POPCNT,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,IBS,SKINIT,ITSC
cpu1: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache,
512KB 64b/line 16-way L2 cache
cpu1: 8 4MB entries fully associative
cpu1: DTLB 40 4KB entries fully associative, 8 4MB entries fully
associative
cpu1: smt 0, core 1, package 0
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 21, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpi

Droping UDP traffic

[Ivo Chutkin]

Hello all,

I run small ISP. All routers and firewalls run OpenBSD.

Reticently, client started to complain that their Citrix based systems 
started to drop connections.


After some research, they tested with iperf and clearly see droped UDP 
packets between my routers.


After that, I made test lab, and the results are not very nice.

I tested with iperf between directly connected (via Juniper EX4200 
switch) OpenBSD 6.7 amd64 MP, dmeseg of sender and server are below.


APU Sender--->Juniper EX4200 ---> Supermicro Server

iperf -c serverIP -u -t 60 -b 10M -p 5003 no drops

iperf -c serverIP -u -t 60 -b 20M -p 5003 average 2% drops

iperf -c serverIP -u -t 60 -b 30M -p 5003 avarage 15% drops

iperf -c serverIP -u -t 60 -b 40M -p 5003 avarage 20% drops

iperf -c serverIP -u -t 60 -b 50M -p 5003 between 25% drops


Also tested other lab with simmular results

APU Sender--->Juniper EX4200 ---> Supermicro Forwardig > TPlink 
switch > Supermicro Server



Is this expected or know behavior?

Am I missing some tweaks?

Is the hardware not powerful enough?

Any ideas and suggestions are appreciated.

Thanks for your help,
Ivo


APU:
~ # dmesg
OpenBSD 6.7 (GENERIC.MP) #5: Tue Jul 21 13:50:07 MDT 2020

r...@syspatch-67-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4246003712 (4049MB)
avail mem = 4104691712 (3914MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xdf16d820 (7 entries)
bios0: vendor coreboot version "4.0" date 09/08/2014
bios0: PC Engines APU
acpi0 at bios0: ACPI 4.0
acpi0: sleep states S0 S1 S3 S4 S5
acpi0: tables DSDT FACP SPCR HPET APIC HEST SSDT SSDT SSDT
acpi0: wakeup devices AGPB(S4) HDMI(S4) PBR4(S4) PBR5(S4) PBR6(S4) 
PBR7(S4) PE20(S4) PE21(S4) PE22(S4) PE23(S4) PIBR(S4) UOH1(S3) UOH2(S3) 
UOH3(S3) UOH4(S3) UOH5(S3) [...]

acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpihpet0 at acpi0: 14318180 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: AMD G-T40E Processor, 1000.14 MHz, 14-02-00
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,SSSE3,CX16,POPCNT,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,IBS,SKINIT,ITSC
cpu0: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 512KB 
64b/line 16-way L2 cache

cpu0: 8 4MB entries fully associative
cpu0: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 199MHz
cpu0: mwait min=64, max=64, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: AMD G-T40E Processor, 1000.01 MHz, 14-02-00
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,SSSE3,CX16,POPCNT,NXE,MMXX,FFXSR,PAGE1GB,RDTSCP,LONG,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,IBS,SKINIT,ITSC
cpu1: 32KB 64b/line 2-way I-cache, 32KB 64b/line 8-way D-cache, 512KB 
64b/line 16-way L2 cache

cpu1: 8 4MB entries fully associative
cpu1: DTLB 40 4KB entries fully associative, 8 4MB entries fully associative
cpu1: smt 0, core 1, package 0
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 21, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (AGPB)
acpiprt2 at acpi0: bus -1 (HDMI)
acpiprt3 at acpi0: bus 1 (PBR4)
acpiprt4 at acpi0: bus 2 (PBR5)
acpiprt5 at acpi0: bus 3 (PBR6)
acpiprt6 at acpi0: bus -1 (PBR7)
acpiprt7 at acpi0: bus 5 (PE20)
acpiprt8 at acpi0: bus -1 (PE21)
acpiprt9 at acpi0: bus -1 (PE22)
acpiprt10 at acpi0: bus -1 (PE23)
acpiprt11 at acpi0: bus 4 (PIBR)
acpicpu0 at acpi0: C2(0@100 io@0x841), C1(@1 halt!), PSS
acpicpu1 at acpi0: C2(0@100 io@0x841), C1(@1 halt!), PSS
acpipci0 at acpi0 PCI0: 0x 0x0011 0x0001
acpicmos0 at acpi0
acpibtn0 at acpi0: PWRB
cpu0: 1000 MHz: speeds: 1000 800 MHz
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 "AMD 14h Host" rev 0x00
ppb0 at pci0 dev 4 function 0 "AMD 14h PCIE" rev 0x00: msi
pci1 at ppb0 bus 1
re0 at pci1 dev 0 function 0 "Realtek 8168" rev 0x06: RTL8168E/8111E 
(0x2c00), msi, address 00:0d:b9:3d:ea:fc

rgephy0 at re0 phy 7: RTL8169S/8110S/8211 PHY, rev. 4
ppb1 at pci0 dev 5 function 0 "AMD 14h PCIE" rev 0x00: msi
pci2 at ppb1 bus 2
re1 at pci2 dev 0 function 0 "Realtek 8168" rev 0x06: RTL8168E/8111E 
(0x2c00), msi, address 00:0d:b9:3d:ea:fd

rgephy1 at re1 phy 7: RTL8169S/8110S/8211 PHY, rev. 4
ppb2 at pci0 dev 6 function 0 "AMD 14h PCIE" rev 0x00: msi
pci3 at ppb2 bus 3
re2 at pci3 dev 0 function 0 "Realtek 8168" rev 0x06: RTL8168E/8111E 
(0x2c00), msi, address 00:0d:b9:3d:ea:fe

rgephy2 at re2 phy 7: RTL8169S/8110S/8211 PHY, rev. 4
ahci0 at pci0 dev 17 function 0 "ATI SBx00 SATA" rev 0x40: apic 2 int 
19, AHCI 1.2

ahci0: port 0: 6.0Gb/s
scsibus1 at ahci0: 32 targets
sd0 at scsibus1 targ 0 lun 0:  naa.
sd0: 122104MB, 512 

Anyone got Nagios 4.3.1 web working?

[Ivo Chutkin]

Hello everyone,

I try to get nagios 4.3.1 web page working with no luck so far.

It opens first page (main.php) but when I try to get to Hosts, Services 
etc. I get 500 Internal Server Error.


On home page there is warning "Unable to get process status" but nagios 
seems to be working, I see checks going on, I am getting alerts by 
e-mail and sms.


It is on 6.3 amd64, httpd, nagios installed from packages. Configs below.

Is there something I am missing?

Thanks for your help,
Ivo

/etc/httpd.conf

domain = "nagios.mydomain.net"
ext_ip = "XX.XX.XX.XX"

server $domain {
listen on $ext_ip port 80
block return 301 "https://$SERVER_NAME$REQUEST_URI;
}

server $domain {
listen on $ext_ip tls port 443

tls {
key "/etc/ssl/private/nagios.key"
certificate "/etc/ssl/nagios.crt"
}
authenticate "/nagios" with "/nagios/nagios.passwd"
authenticate "/cgi-bin" with "/nagios/nagios.passwd"
root "/nagios"
directory {
index "index.php"
}
location "/cgi-bin/nagios/*.cgi" {
root { "/nagios" }
fastcgi socket "/run/slowcgi.sock"
}
location "*.php" {
root { "/nagios" }
fastcgi socket "/run/php-fpm.sock"
}
}
types {
include "/usr/share/misc/mime.types"
}


~ # pkg_info
bzip2-1.0.6p8   block-sorting file compressor, unencumbered
femail-1.0p1simple SMTP client
femail-chroot-1.0p2 simple SMTP client for chrooted web servers
gdiff-3.6   GNU versions of the diff utilities
gettext-0.19.8.1p1  GNU gettext runtime libraries and programs
glib2-2.54.3p1  general-purpose utility library
intel-firmware-20180312v0 firmware binary images for intel(4) driver
jpeg-1.5.3v0SIMD-accelerated JPEG codec replacement of libjpeg
libelf-0.8.13p4 read, modify, create ELF files on any arch
libffi-3.2.1p4  Foreign Function Interface
libiconv-1.14p3 character set conversion library
libltdl-2.4.2p1 GNU libtool system independent dlopen wrapper
libsigsegv-2.12 library for handling page faults in user mode
libslang-2.2.4p2stack-based interpreter for terminal applications
libssh2-1.8.0   library implementing the SSH2 protocol
libxml-2.9.8XML parsing library
mc-4.8.20   free Norton Commander clone with many useful features
monitoring-plugins-2.2p4 monitoring plugins (for Nagios, Icinga, etc)
mtr-0.92p1  Matt's traceroute - network diagnostic tool
nagios-4.3.1p0-chroot host and service monitor
nagios-plugins-resmon-20090802p1 nagios plugin for resmon
nagios-web-4.3.1-chroot cgis and webpages for nagios
oniguruma-5.9.6 regular expressions library
pcre-8.41   perl-compatible regular expression library
php-5.6.34  server-side HTML-embedded scripting language
php-gd-5.6.34   image manipulation extensions for php
png-1.6.34  library for manipulating PNG images
python-2.7.14p1 interpreted object-oriented programming language
quirks-2.414exceptions to pkg_add rules
sqlite3-3.22.0p0embedded SQL implementation
t1lib-5.1.2p0   Type 1 rasterizer library for UNIX/X11
unzip-6.0p11extract, list & test files in a ZIP archive
xz-5.2.3p0  LZMA compression and decompression tools
zip-3.0p0   create/update ZIP files compatible with PKZip(tm)

~ # dmesg
OpenBSD 6.3 (GENERIC) #4: Sun Jun 17 11:09:51 CEST 2018

r...@syspatch-63-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC
real mem = 4278124544 (4079MB)
avail mem = 4141481984 (3949MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe0010 (556 entries)
bios0: vendor Phoenix Technologies LTD version "6.00" date 09/21/2015
bios0: VMware, Inc. VMware Virtual Platform
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP BOOT APIC MCFG SRAT HPET WAET
acpi0: wakeup devices PCI0(S3) USB_(S1) P2P0(S3) S1F0(S3) S2F0(S3) 
S8F0(S3) S16F(S3) S18F(S3) S22F(S3) S23F(S3) S24F(S3) S25F(S3) PE40(S3) 
S1F0(S3) PE50(S3) S1F0(S3) [...]

acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Xeon(R) CPU E5440 @ 2.83GHz, 2833.29 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,MMX,FXSR,SSE,SSE2,SS,SSE3,SSSE3,CX16,SSE4.1,x2APIC,DEADLINE,XSAVE,HV,NXE,LONG,LAHF,PERF,ITSC,SENSOR,MELTDOWN

cpu0: 6MB 64b/line 16-way L2 cache
acpitimer0: recalibrated TSC frequency 2833433365 Hz
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 65MHz
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 11, 24 pins
acpimcfg0 at acpi0 addr 0xf000, bus 0-127
acpihpet0 at acpi0: 14318179 Hz
acpihpet0: recalibrated TSC frequency 2833447237 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpicpu0 at acpi0: C1(@1 halt!)
"PNP0A05" at acpi0 not configured
acpiac0 at acpi0: AC 

Re: mail and newaliases do not work 6.1 and 6.2 for me

[Ivo Chutkin]

On 1.5.2018 г. 13:23 ч., Marcus MERIGHI wrote:

open...@bgone.net (Ivo Chutkin), 2018.05.01 (Tue) 09:48 (CEST):

Hello misc,

I have strange problem with mail.

I edit  /etc/mail/aliases to set well known aliases like:

# Well-known aliases -- these should be filled in!
root:myn...@mydomain.net
manager:root
dumper:root

Then I run newaliases but mail is still delivered to local user.

I also run makemap -t aliases /etc/mail/aliases with no effect.

Here is mail log:

May  1 08:31:24 dns12 smtpd[7943]: smtp-in: New session fdcad19418c8f68d
from host dns12.domain.eu [local]

May  1 08:31:24 dns12 smtpd[7943]: smtp-in: Accepted message 4c55f050 on
session fdcad19418c8f68d: from=<r...@dns12.domain.eu>,
to=<r...@dns12.domain.eu>, size=2250, ndest=1, proto=ESMTP

May  1 08:31:24 dns12 smtpd[7943]: smtp-in: Closing session fdcad19418c8f68d

May  1 08:31:24 dns12 smtpd[7943]: delivery: Ok for 4c55f0507959f826:
from=<r...@dns12.domain.eu>, to=<r...@dns12.domain.eu>, user=myname,
method=mbox, delay=0s, stat=Delivered

It happens on 6.1 and 6.2 but not on all machines I run.

Am I missing something obvious?


$ doas smtpctl update table aliases
-- OR --
$ doas rcctl restart smtpd

assuming that you have the default of

"table aliases file:/etc/mail/aliases"

in your smtpd.conf(5), which you didn't show, grrr!

Marcus


Hi Mark and Markus,

Restarting smtpd did it.

I did not know I have to restart smtpd in order to get it working after 
change in alias.


Otherwise, smtp.conf is default.

Thanks for the help,
Ivo

mail and newaliases do not work 6.1 and 6.2 for me

[Ivo Chutkin]

Hello misc,

I have strange problem with mail.

I edit  /etc/mail/aliases to set well known aliases like:

# Well-known aliases -- these should be filled in!
root:myn...@mydomain.net
manager:root
dumper:root

Then I run newaliases but mail is still delivered to local user.

I also run makemap -t aliases /etc/mail/aliases with no effect.

Here is mail log:

May  1 08:31:24 dns12 smtpd[7943]: smtp-in: New session fdcad19418c8f68d 
from host dns12.domain.eu [local]


May  1 08:31:24 dns12 smtpd[7943]: smtp-in: Accepted message 4c55f050 on 
session fdcad19418c8f68d: from=, 
to=, size=2250, ndest=1, proto=ESMTP


May  1 08:31:24 dns12 smtpd[7943]: smtp-in: Closing session fdcad19418c8f68d

May  1 08:31:24 dns12 smtpd[7943]: delivery: Ok for 4c55f0507959f826: 
from=, to=, user=myname, 
method=mbox, delay=0s, stat=Delivered


It happens on 6.1 and 6.2 but not on all machines I run.

Am I missing something obvious?

Thanks for your help,
Ivo

Re: OT strange nsd behavior

[Ivo Chutkin]

On 17.3.2018 г. 09:20 ч., Peter J. Philipp wrote:

On Fri, Mar 16, 2018 at 10:40:37PM +0200, Ivo Chutkin wrote:

It should be, here is the result:

~ # nsd-checkzone proprevod.com /var/nsd/zones/master/clients/proprevod.com
zone proprevod.com is ok

and nsd-checkconf does not return errors.

I am lost here...


Make sure you don't deviate from the spelling of the zone.  Ie. a
"propervod.com" in the zone conf declaration and vs. a "proprevod.com" in
the zonefile itself.  There is a log that you provided that has both
spelling.  I believe that would be it.  If not show me your config file as
well.

Also try not to combine the A for proprevod.com. that you have in your zone
file with the @, otherwise it's confusing for any reader.

Regards,

-peter



Thanks a lot Peter,

It was this typing mistake I could not see.

Everything works now.

Have a nice weekend!


On 16.3.2018 ??. 21:35 ??., Stephane HUC "PengouinBSD" wrote:

Are you sure your zonefile is really good?

Have you tested with nsd-checkzone tool?
idem for your nsd config with nsd-checkconf tool?

Le 03/16/18 ?? 18:55, Ivo Chutkin a ??crit :

Hi to all there,

I am running authoritative dns servers on 5.9 and nsd.

I add new domain but I got these errors:

Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:9: SOA
record with invalid domain name
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:11: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:12: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:14: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:16: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:17: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:18: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:19: zone
configured as 'propervod.com' has no SOA record.
Mar 16 19:29:16 dns11 nsd[7480]: zone propervod.com file
master/clients/proprevod.com read with 8 errors

Domain is valid, dns records point to my dns servers (dns11.bg1.eu and
dns12.bg1.eu).

The zone file looks like this:

/var/nsd/zones/master # cat ./clients/proprevod.com

$ORIGIN proprevod.com.
$TTL 86400

@   3600SOA dns11.bg1.eu. support.bg1.eu. (
  2018031601  ; serial
  1800; refresh
  7200; retry
  1209600 ; expire
  3600 )  ; negative

  NS  dns11.bg1.eu.
  NS  dns12.bg1.eu.

  MX  0 mail.dih.bg.

www A   91.235.248.25
proprevod.com.  A   91.235.248.25
mailCNAME   mail.dih.bg.

What could be wrong here?

Exactly the same zone but with different TLD loads and work as it should.

The only problem I could imagine is that I added this zone before my
servers were authoritative for this domain.

I will appreciate your help.

Thanks,
Ivo

Re: OT strange nsd behavior

[Ivo Chutkin]

It should be, here is the result:

~ # nsd-checkzone proprevod.com /var/nsd/zones/master/clients/proprevod.com
zone proprevod.com is ok

and nsd-checkconf does not return errors.

I am lost here...


On 16.3.2018 г. 21:35 ч., Stephane HUC "PengouinBSD" wrote:

Are you sure your zonefile is really good?

Have you tested with nsd-checkzone tool?
idem for your nsd config with nsd-checkconf tool?

Le 03/16/18 à 18:55, Ivo Chutkin a écrit :

Hi to all there,

I am running authoritative dns servers on 5.9 and nsd.

I add new domain but I got these errors:

Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:9: SOA
record with invalid domain name
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:11: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:12: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:14: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:16: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:17: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:18: out of
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:19: zone
configured as 'propervod.com' has no SOA record.
Mar 16 19:29:16 dns11 nsd[7480]: zone propervod.com file
master/clients/proprevod.com read with 8 errors

Domain is valid, dns records point to my dns servers (dns11.bg1.eu and
dns12.bg1.eu).

The zone file looks like this:

/var/nsd/zones/master # cat ./clients/proprevod.com

$ORIGIN proprevod.com.
$TTL 86400

@   3600SOA dns11.bg1.eu. support.bg1.eu. (
 2018031601  ; serial
 1800; refresh
 7200; retry
 1209600 ; expire
 3600 )  ; negative

 NS  dns11.bg1.eu.
 NS  dns12.bg1.eu.

 MX  0 mail.dih.bg.

www A   91.235.248.25
proprevod.com.  A   91.235.248.25
mailCNAME   mail.dih.bg.

What could be wrong here?

Exactly the same zone but with different TLD loads and work as it should.

The only problem I could imagine is that I added this zone before my
servers were authoritative for this domain.

I will appreciate your help.

Thanks,
Ivo

OT strange nsd behavior

[Ivo Chutkin]

Hi to all there,

I am running authoritative dns servers on 5.9 and nsd.

I add new domain but I got these errors:

Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:9: SOA 
record with invalid domain name
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:11: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:12: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:14: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:16: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:17: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:18: out of 
zone data
Mar 16 19:29:16 dns11 nsd[7480]: master/clients/proprevod.com:19: zone 
configured as 'propervod.com' has no SOA record.
Mar 16 19:29:16 dns11 nsd[7480]: zone propervod.com file 
master/clients/proprevod.com read with 8 errors


Domain is valid, dns records point to my dns servers (dns11.bg1.eu and 
dns12.bg1.eu).


The zone file looks like this:

/var/nsd/zones/master # cat ./clients/proprevod.com

$ORIGIN proprevod.com.
$TTL 86400

@   3600SOA dns11.bg1.eu. support.bg1.eu. (
2018031601  ; serial
1800; refresh
7200; retry
1209600 ; expire
3600 )  ; negative

NS  dns11.bg1.eu.
NS  dns12.bg1.eu.

MX  0 mail.dih.bg.

www A   91.235.248.25
proprevod.com.  A   91.235.248.25
mailCNAME   mail.dih.bg.

What could be wrong here?

Exactly the same zone but with different TLD loads and work as it should.

The only problem I could imagine is that I added this zone before my 
servers were authoritative for this domain.


I will appreciate your help.

Thanks,
Ivo

EdgeRouter Lite VS Alix2D3

[Ivo Chutkin]

Hello list,

When I read OpenBSD could run on EdgeRouter Lite, I give it a try (now 
with 6.2 current as of 28.11.2017).
I expected closer performance to Alix, but ERL even do not respond on 
console in reasonable times, for example, it takes 10-15 sec to log in.
After reboot, it takes about 5 min on "reordering libraries:" vs 30 sec 
on Alix.


Is it what I should expect from ERL or I am doing something wrong here?

Thanks for your input,
Ivo

Re: Asterisk + MariaDB + ODBC newbie questions

[Ivo Chutkin]

On 15.10.2015 г. 04:45 ч., Chris Cappuccio wrote:

Stuart Henderson [s...@spacehopper.org] wrote:

On 2015-10-14, Ivo Chutkin <open...@bgone.net> wrote:

Hello all,
I want to use Asterisk with MariaDB CDR backend.
I have working Asterisk.
I have working MariaDB.
As far as I understand, since Asterisk 11 I must use ODBC connector to
MariaDB.
Unfortunately I cannot find any practical info concerning OpenBSD,
Asterisk, ODBC and MariaDB.
I tried iodbc package but I cannot find mysql drivers.


The iodbc package just contains the ODBC library, it doesn't come with
any database drivers itself. AFAIK at the moment the only drivers we have
are sybase/sql server (in the "freetds" package), postgresql (the
"postgresql-odbc" package) and access ("mdbtools").

I think you need either "MariaDB Connector/ODBC" or "MySQL Connector/ODBC"
but these aren't in ports/packages yet.


In my experience asterisk is more reliable with text cdr logging. Creating
a script to import CSV into the mysql cli tool is trivial.



Hi Chris and Stuart,

Thanks for replies.
At least I did not miss anything obvious :-)

As I took deep thought, Chris idea for importing csv is much better than 
including more software (problems) in the equation.


Thanks for the info and ideas.
Ivo

Asterisk + MariaDB + ODBC newbie questions

[Ivo Chutkin]

Hello all,
I want to use Asterisk with MariaDB CDR backend.
I have working Asterisk.
I have working MariaDB.
As far as I understand, since Asterisk 11 I must use ODBC connector to 
MariaDB.
Unfortunately I cannot find any practical info concerning OpenBSD, 
Asterisk, ODBC and MariaDB.

I tried iodbc package but I cannot find mysql drivers.
Can anyone point me to some article or practical example?
I will provide any additional info if needed.
Thanks for the help,
Ivo

pkg_info, everything installed from packages and dmesg below:
~ # pkg_info
adwaita-icon-theme-3.14.1 base icon theme for GNOME
asterisk-11.16.0open source multi-protocol PBX and telephony toolkit
asterisk-core-sounds-en-gsm-1.4.26 core English sound files for Asterisk 
(gsm)

asterisk-moh-opsound-wav-2.03p2 opsound music-on-hold for Asterisk (wav)
asterisk-odbc-11.16.0 ODBC support for Asterisk
at-spi2-atk-2.14.1  atk-bridge for at-spi2
at-spi2-core-2.14.1 service interface for assistive technologies
atk-2.14.0  accessibility toolkit used by gtk+
avahi-0.6.31p15 framework for Multicast DNS Service Discovery
bzip2-1.0.6p1   block-sorting file compressor, unencumbered
cairo-1.14.0p1  vector graphics library
cups-libs-2.0.2 CUPS libraries and headers
curl-7.40.0 get files from FTP, Gopher, HTTP or HTTPS servers
dbus-1.8.16v0   message bus system
dconf-0.22.0p1  configuration backend system
desktop-file-utils-0.22 utilities for dot.desktop entries
e2fsprogs-1.42.12p0 utilities to manipulate ext2 filesystems
ffmpeg-20150107p0   audio/video converter and streamer
gcr-3.14.0p0library for bits of crypto UI and parsing
gdbm-1.11p0 GNU dbm
gdk-pixbuf-2.30.8   graphic library for gtk+2
gettext-0.19.4  GNU gettext
glib2-2.42.1p0  general-purpose utility library
glib2-networking-2.42.1 network-related gio modules for glib2
gmp-5.0.2p2 library for arbitrary precision arithmetic
gnome-icon-theme-3.12.0p1 base icon theme for GNOME
gnome-icon-theme-symbolic-3.12.0p1 base icon theme extension for special 
UI contexts

gnome-keyring-3.14.0 password agent for the GNOME project
gnupg-1.4.19GNU privacy guard - a free PGP replacement
gnutls-3.2.21   GNU Transport Layer Security library
graphite2-1.2.4 rendering for complex writing systems
gsettings-desktop-schemas-3.14.1 collection of shared GSettings schemas
gsm-1.0.13p2u-law to gsm encoding audio converter and library
gtk+2-2.24.26   multi-platform graphical toolkit
gtk+3-3.14.8multi-platform graphical toolkit
gtk-update-icon-cache-2.24.26 gtk+ icon theme caching utility
harfbuzz-0.9.38 text shaping library
hicolor-icon-theme-0.14 fallback theme of the icon theme specification
iksemel-1.4p3   XML parser designed for Jabber applications
iodbc-3.52.9p1  ODBC 3.x driver manager
iodbc-admin-3.52.9p1 ODBC 3.x driver manager admin application
jasper-1.900.1p2reference implementation of JPEG-2000
jpeg-9a IJG's JPEG compression utilities
lame-3.99.5 lame ain't an MP3 encoder
libbind-6.0p3v0 BIND stub resolver library
libcroco-0.6.8p0generic CSS parsing library for GNOME project
libdaemon-0.14p0lightweight C library that eases the writing of daemons
libdbi-0.8.4database-independent abstraction layer
libdbi-drivers-mysql-0.8.3.1p4 mysql driver for libdbi
libelf-0.8.13p2 read, modify, create ELF files on any arch
libexecinfo-0.2p4v0 clone of backtrace facility found in the GNU libc
libffi-3.0.13   Foreign Function Interface
libgcrypt-1.6.3 crypto library based on code used in GnuPG
libgda-5.2.2p2v2GNOME Data Access library
libgda-mysql-5.2.2p1v0 MySQL backend for libgda
libgpg-error-1.18   error codes for GnuPG related software
libiconv-1.14p1 character set conversion library
libidn-1.29p0   internationalized string handling
libnettle-2.7.1p1   cryptographic library
libogg-1.3.2Ogg bitstream library
libproxy-0.4.11p3   library handling all the details of proxy configuration
librsvg-2.40.7  SAX-based render library for SVG files
libsecret-0.18  library for storing and retrieving passwords and secrets
libslang-2.2.4p0stack-based interpreter for terminal applications
libsoup-2.48.1  HTTP client/server library for GNOME
libssh2-1.4.3   library implementing the SSH2 protocol
libtasn1-4.2p0  Abstract Syntax Notation One structure parser library
libtheora-1.1.1p2   open video codec
libvorbis-1.3.4 audio compression codec library
libvpx-1.3.0p1  Google VP8/VP9 video codec
libxml-2.9.2p0  XML parsing library
libxslt-1.1.28p0XSLT C Library for GNOME
lzo2-2.08   portable speedy lossless data compression library
mariadb-client-10.0.16v0 multithreaded SQL database (client)
mariadb-server-10.0.16v0 multithreaded SQL database (server)
mariadb-tests-10.0.16v0 multithreaded SQL database (regression test 
suite/benchmark)

mc-4.8.13   free Norton Commander clone with many useful features

Re: Unable to start dhcp server at boot on 5.7 stable

[Ivo Chutkin]

On 29.5.2015 г. 01:41 ч., Edgar Pettijohn III wrote:

On May 28, 2015, at 2:06 AM, Ivo Chutkin wrote:


Hello guys,
I am lost with this simple task.
DHCP server does not start at boot.
If I started by #/etc/rc.d/dhcpd start, it starts and works properly.
If I check it with #/etc/rc.d/dhcpd check, i get dhcpd(failed)
I cannot see any errors in logs.
May be I miss something obvious. I have done it many times without issues.
Please, take a look and help me if you can.

Thanks,
Ivo

It is alix2d3 board with read only file system.

My dhcpd.conf file is mostly default:

~ # cat /etc/dhcpd.conf
option  domain-name my.domain;
option  domain-name-servers 192.168.55.1;

subnet 192.168.55.0 netmask 255.255.255.0 {
option routers 192.168.55.1;

range 192.168.55.32 192.168.55.127;



vlan25 192.168.25.1 is not in this subnet
nor is vlan15 192.168.15.1
if you want them to work add a subnet section for them.  Same probably goes for vr0.  
Otherwise just start with dhcpd_flags=vr1 which appears to work.  Otherwise 
it will not start because of these previous errors.  I have read only system and no 
problems with dhcpd starting.


Thanks for reply.
The actual problem is that I was mounting /etc in mfs form backup partition.
In this case, during boot time, the systems reads /etc from CF card, 
which does not contain correct config files, so dhcpd does not start 
because it is not in /etc/rc.conf.local.
If I mount /etc from CF card and change the files, everything is working 
properly.

I just wanted to have /etc rw :-)

Thanks for the help,
Ivo



host static-client {
hardware ethernet 22:33:44:55:66:77;
fixed-address 192.168.55.200;
}

host pxe-client {
hardware ethernet 02:03:04:05:06:07;
filename pxeboot;
next-server 192.168.55.1;
}
}

My hostname.vr2 file:
~ # cat /etc/hostname.vr2
up
inet 192.168.55.1 255.255.255.0 192.168.55.255
description MNG

My rc.conf.local file:
~ # cat /etc/rc.conf.local
ntpd_flags=-s
dhcpd_flags=  # for normal use: 

ifconfig output:
~ # ifconfig
lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 32768
priority: 0
groups: lo
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff00
vr0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:80
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet XX.XXX.XXX.42 netmask 0xfff8 broadcast XX.XXX.XXX.47
vr1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:81
description: MTEL
priority: 0
media: Ethernet autoselect (none)
status: no carrier
vr2: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: MNG
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.55.1 netmask 0xff00 broadcast 192.168.55.255
enc0: flags=0
priority: 0
groups: enc
status: active
vlan15: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: VITA-OFFICE
priority: 0
vlan: 15 parent interface: vr2
groups: vlan
status: active
inet 192.168.15.1 netmask 0xff00 broadcast 192.168.15.255
vlan25: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: VITA-GUEST
priority: 0
vlan: 25 parent interface: vr2
groups: vlan
status: active
inet 192.168.25.1 netmask 0xff00 broadcast 192.168.25.255
pflog0: flags=141UP,RUNNING,PROMISC mtu 33192
priority: 0
groups: pflog

Unable to start dhcp server at boot on 5.7 stable

[Ivo Chutkin]

Hello guys,
I am lost with this simple task.
DHCP server does not start at boot.
If I started by #/etc/rc.d/dhcpd start, it starts and works properly.
If I check it with #/etc/rc.d/dhcpd check, i get dhcpd(failed)
I cannot see any errors in logs.
May be I miss something obvious. I have done it many times without issues.
Please, take a look and help me if you can.

Thanks,
Ivo

It is alix2d3 board with read only file system.

My dhcpd.conf file is mostly default:

~ # cat /etc/dhcpd.conf
option  domain-name my.domain;
option  domain-name-servers 192.168.55.1;

subnet 192.168.55.0 netmask 255.255.255.0 {
option routers 192.168.55.1;

range 192.168.55.32 192.168.55.127;

host static-client {
hardware ethernet 22:33:44:55:66:77;
fixed-address 192.168.55.200;
}

host pxe-client {
hardware ethernet 02:03:04:05:06:07;
filename pxeboot;
next-server 192.168.55.1;
}
}

My hostname.vr2 file:
~ # cat /etc/hostname.vr2
up
inet 192.168.55.1 255.255.255.0 192.168.55.255
description MNG

My rc.conf.local file:
~ # cat /etc/rc.conf.local
ntpd_flags=-s
dhcpd_flags=  # for normal use: 

ifconfig output:
~ # ifconfig
lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 32768
priority: 0
groups: lo
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff00
vr0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:80
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet XX.XXX.XXX.42 netmask 0xfff8 broadcast XX.XXX.XXX.47
vr1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:81
description: MTEL
priority: 0
media: Ethernet autoselect (none)
status: no carrier
vr2: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: MNG
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.55.1 netmask 0xff00 broadcast 192.168.55.255
enc0: flags=0
priority: 0
groups: enc
status: active
vlan15: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: VITA-OFFICE
priority: 0
vlan: 15 parent interface: vr2
groups: vlan
status: active
inet 192.168.15.1 netmask 0xff00 broadcast 192.168.15.255
vlan25: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:0d:b9:39:46:82
description: VITA-GUEST
priority: 0
vlan: 25 parent interface: vr2
groups: vlan
status: active
inet 192.168.25.1 netmask 0xff00 broadcast 192.168.25.255
pflog0: flags=141UP,RUNNING,PROMISC mtu 33192
priority: 0
groups: pflog


dmesg:
~ # dmesg
OpenBSD 5.7-stable (GENERIC) #0: Mon May 11 21:00:34 EEST 2015
r...@build.office.bgone.net:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 
586-class) 499 MHz

cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX,MMXX,3DNOW2,3DNOW
real mem  = 267931648 (255MB)
avail mem = 251179008 (239MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: date 01/15/14, BIOS32 rev. 0 @ 0xfd0e4
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xe/0xa800
cpu0 at mainbus0: (uniprocessor)
mtrr: K6-family MTRR support (2 registers)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, 
address 00:0d:b9:39:46:80
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr1 at pci0 dev 10 function 0 VIA VT6105M RhineIII rev 0x96: irq 11, 
address 00:0d:b9:39:46:81
ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr2 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, 
address 00:0d:b9:39:46:82
ukphy2 at vr2 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 
32-bit 3579545Hz timer, watchdog, gpio, i2c

gpio0 at glxpcib0: 32 pins
iic0 at glxpcib0
maxtmp0 at iic0 addr 0x4c: lm86
pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, 
channel 0 wired to compatibility, channel 1 wired to compatibility

wd0 at pciide0 channel 0 drive 0: TS4GCF133
wd0: 1-sector PIO, LBA48, 3823MB, 7831152 sectors

Re: Unable to start dhcp server at boot on 5.7 stable

[Ivo Chutkin]

On 28.5.2015 г. 10:25 ч., Jan Stary wrote:

On May 28 10:06:03, open...@bgone.net wrote:

Hello guys,
I am lost with this simple task.
DHCP server does not start at boot.
If I started by #/etc/rc.d/dhcpd start, it starts and works properly.
If I check it with #/etc/rc.d/dhcpd check, i get dhcpd(failed)
I cannot see any errors in logs.


Really? What does /var/log/daemon say after you restart dhcpd?


Yes, it is really strange...

Here is output of daemon log after restart by /etc/rc.d/dhcpd start:

May 28 11:15:42 vita dhcpd[14929]: Can't listen on vlan25 - dhcpd.conf 
has no subnet declaration for 192.168.25.1.
May 28 11:15:42 vita dhcpd[14929]: Can't listen on vlan15 - dhcpd.conf 
has no subnet declaration for 192.168.15.1.

May 28 11:15:42 vita dhcpd[14929]: Listening on vr2 (192.168.55.1).
May 28 11:15:42 vita dhcpd[14929]: Can't listen on vr1 - it has no IP 
address.
May 28 11:15:42 vita dhcpd[14929]: Can't listen on vr0 - dhcpd.conf has 
no subnet declaration for xx.xxx.xxx.42.


It listens on vr2 as it must be.

If I start it with /usr/sbin/dhcpd vr2 i get in daemon log:

May 28 11:18:50 vita dhcpd[25296]: Listening on vr2 (192.168.55.1).

which is perfectly fine.




May be I miss something obvious. I have done it many times without issues.
Please, take a look and help me if you can.

Thanks,
Ivo

It is alix2d3 board with read only file system.

My dhcpd.conf file is mostly default:

~ # cat /etc/dhcpd.conf
option  domain-name my.domain;
option  domain-name-servers 192.168.55.1;

subnet 192.168.55.0 netmask 255.255.255.0 {
 option routers 192.168.55.1;

 range 192.168.55.32 192.168.55.127;

 host static-client {
 hardware ethernet 22:33:44:55:66:77;
 fixed-address 192.168.55.200;
 }

 host pxe-client {
 hardware ethernet 02:03:04:05:06:07;
 filename pxeboot;
 next-server 192.168.55.1;
 }
}

My hostname.vr2 file:
~ # cat /etc/hostname.vr2
up
inet 192.168.55.1 255.255.255.0 192.168.55.255
description MNG

My rc.conf.local file:
~ # cat /etc/rc.conf.local
ntpd_flags=-s
dhcpd_flags=  # for normal use: 


Shouldn't that be dhcpd_flags=em0 ?
This way, you are trying to serve on all interfaces,
even those without a declaration in dhcpd.conf



It does not make any difference if I put dhcpd_flags=vr2 in rc.conf.local

Thanks,
Ivo

Re: Unable to start dhcp server at boot on 5.7 stable

[Ivo Chutkin]

On 28.5.2015 г. 13:00 ч., Stuart Henderson wrote:

On 2015-05-28, Ivo Chutkin open...@bgone.net wrote:

Hello guys,
I am lost with this simple task.
DHCP server does not start at boot.
If I started by #/etc/rc.d/dhcpd start, it starts and works properly.
If I check it with #/etc/rc.d/dhcpd check, i get dhcpd(failed)
I cannot see any errors in logs.
May be I miss something obvious. I have done it many times without issues.
Please, take a look and help me if you can.

Thanks,
Ivo

It is alix2d3 board with read only file system.


Perhaps the read-only fs is the problem.



Not exactly, but close.
If I mount it rw, it does not solve the problem.

It is not OpenBSD problem.

I use this tutorial as base setup:
http://techblagh.blogspot.com/2008/08/installing-openbsd-43-on-soekris-5501.html

It works fine till now, 5.7.

I guess, it reads /etc/rc.conf.local from wd0a before /etc is mounted on 
memory file system from backup partition.


If I boot -s and add entries in rc.conf.local, it works.

Strangely, it does read other files from /etc mounted on memory file 
systems corectly, for example hostname.if-s end so on...


When /etc/rc.conf.local is read?

Thanks,
Ivo

Re: Shaping VLANs

[Ivo Chutkin]

On 24.1.2013 г. 17:05 ч., Leonardo Lombardo wrote:

Hi all,

my setup is a firewall/router for a network in which I have a lot of VLANs.
WAN connection is only one so bandwith is a concern. WAN connection is
10Mbit/s.

Is there a way to shape N VLANs as a whole while having some other VLAN
with a minimum guarantee ?
I mean:

- N VLANs share the bandwith with no limits nor guarantee (max 10Mbit/s
cumulative)
- a specific VLAN (104) get a minimum of 2Mbit/s (guaranteed)
- another specific VLAN (105) get a minimum of 4Mbit/s (guaranteed)

Every VLAN is permitted to get all the bandwith but 104 and 105 always can
get their minimum.

Please can you give some advice on how to configure hfsc to do this ?

I cannot figure how to tell hfsc about the total bandwith to share between
many interfaces


Thanks in advanceLeonardo


As far as I know you cannot shape on vlan. Shaping is done on physical 
interface.

something like that:
#macro:

# To Border Routers
ext300=vlan300

# client net and vlan
int56=vlan56
net56=x.x.x.24/29

#queues on each physical interface (em1 and em2 in my case):

queue net56_out bandwidth 50Mb cbq {net56_gl, net56_bg}
queue net56_gl bandwidth 10Mb cbq (red)
queue net56_bg bandwidth 40Mb cbq (red, borrow)

queue net56_in bandwidth 50Mb cbq {net56_gl_in, net56_bg_in}
queue net56_gl_in bandwidth 10Mb cbq (red)
queue net56_bg_in bandwidth 40Mb cbq (red, borrow)

#then pass rules:

# Pass rules for client, VLAN56 on em1, NET56

pass in quick on $int56 from $net56 to bgnets queue net56_bg_in
pass out quick on $int56 from bgnets to $net56 queue net56_bg_in

pass in quick on $int56 from $net56 to any queue net56_gl_in
pass out quick on $int56 from any to $net56 queue net56_gl_in

# Pass rules for Client, VLAN56 on em2, NET56

pass out quick on $ext300 from $net56 to bgnets queue net56_bg
pass in quick on $ext300 from bgnets to $net56 queue net56_bg

pass out quick on $ext300 from $net56 to any queue net56_gl
pass in quick on $ext300 from any to $net56 queue net56_gl


It works for me in both directions. I also give client higher speed to 
local exchange, namely bgnets table.


Hope it helps,
Ivo

Re: unable to build -current from 5.2 beta

[Ivo Chutkin]

On 21.1.2013 г. 10:50 ч., Jamie Paul Griffin wrote:

* Ivo Chutkin open...@bgone.net [2013-01-20 15:43:22 +0200]:


Hello,  I am trying to build -current from 5.2 beta from Jul 1

but getting

Yes, the recommended way and documented way to upgrade to current
is to download the latest snapshot. I persoanlly, as i'm sure many
others do also, boot from bsd.rd.

So open an ftp session to a local mirror, making sure it's the
snapshot directory, copy *.tgz files and bsd* - I also download
INSTALL.amd64 and SHA files; copy bsd.rc to / :

cp /path/to/snapshot/files/download/bsd.rd /

then reboot the machine and enter `boot bsd.rc` at the boot prompt
and select upgrade. When it asks for the location of the file sets
select disk and enter the path to the files you downloaded using
the ftp session.

Then once it's finished, update the system configuration files using
sysmerge(8).

There's lots of info on the OpenBSD website and contributors have
written some good tutorials also.



Thanks a lot to all who respond.
Till now I have been using only -stable without any issues.
It is my first time I use -current.
I got what I missed. I really appreciate your help.

Thanks,
Ivo

unable to build -current from 5.2 beta

[Ivo Chutkin]

Hello,
I am trying to build -current from 5.2 beta from Jul 1 but getting the 
following error:


{standard input}: Assembler messages:
{standard input}:105: Error: no such instruction: `rdrand %rbx'
*** Error code 1

Stop in /usr/src/sys/arch/amd64/compile/GENERIC (line 89 of 
/usr/share/mk/sys.mk).


I am getting the same error with GENERIC and GENERIC.MP

Is this know problem or I am doing something wrong?
Dmesg bellow.

Thanks for the help,
Ivo


OpenBSD 5.2-beta (GENERIC.MP) #340: Sun Jul  1 23:18:37 MDT 2012
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 8560926720 (8164MB)
avail mem = 8310677504 (7925MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xeb4c0 (56 entries)
bios0: vendor American Megatrends Inc. version 2.00 date 05/08/2012
bios0: Supermicro X9SCL/X9SCM
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP APIC FPDT MCFG PRAD HPET SSDT SPMI SSDT SSDT 
SPCR EINJ ERST HEST BERT BGRT
acpi0: wakeup devices PS2K(S4) PS2M(S4) UAR1(S4) UAR2(S4) P0P1(S4) 
USB1(S4) USB2(S4) USB3(S4) USB4(S4) USB5(S4) USB6(S4) USB7(S4) PXSX(S4) 
RP01(S4) PXSX(S4) R
P02(S4) PXSX(S4) RP03(S4) PXSX(S4) RP04(S4) PXSX(S4) RP05(S4) PXSX(S4) 
RP06(S4) PXSX(S4) RP07(S4) PXSX(S4) RP08(S4) PEGP(S4) PEG0(S4) PEG1(S4) 
PEG2(S4) PEG3(S

4) GLAN(S4) EHC1(S4) EHC2(S4) HDEF(S4) PWRB(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Xeon(R) CPU E3-1220 V2 @ 3.10GHz, 3093.46 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,

EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,x2APIC,POPCNT,AES,XSAVE,AVX,NXE,LONG,LAHF
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: apic clock running at 99MHz
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Xeon(R) CPU E3-1220 V2 @ 3.10GHz, 3092.97 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,

EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,x2APIC,POPCNT,AES,XSAVE,AVX,NXE,LONG,LAHF
cpu1: 256KB 64b/line 8-way L2 cache
cpu2 at mainbus0: apid 4 (application processor)
cpu2: Intel(R) Xeon(R) CPU E3-1220 V2 @ 3.10GHz, 3092.97 MHz
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,

EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,x2APIC,POPCNT,AES,XSAVE,AVX,NXE,LONG,LAHF
cpu2: 256KB 64b/line 8-way L2 cache
cpu3 at mainbus0: apid 6 (application processor)
cpu3: Intel(R) Xeon(R) CPU E3-1220 V2 @ 3.10GHz, 3092.97 MHz
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,

EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,x2APIC,POPCNT,AES,XSAVE,AVX,NXE,LONG,LAHF
cpu3: 256KB 64b/line 8-way L2 cache
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
acpimcfg0 at acpi0 addr 0xf800, bus 0-63
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 3 (P0P1)
acpiprt2 at acpi0: bus 1 (RP01)
acpiprt3 at acpi0: bus -1 (RP02)
acpiprt4 at acpi0: bus -1 (RP03)
acpiprt5 at acpi0: bus -1 (RP04)
acpiprt6 at acpi0: bus 2 (RP05)
acpiprt7 at acpi0: bus -1 (RP06)
acpiprt8 at acpi0: bus -1 (RP07)
acpiprt9 at acpi0: bus -1 (RP08)
acpiprt10 at acpi0: bus -1 (PEG0)
acpiprt11 at acpi0: bus -1 (PEG1)
acpiprt12 at acpi0: bus -1 (PEG2)
acpiprt13 at acpi0: bus -1 (PEG3)
acpiec0 at acpi0: Failed to read resource settings
acpicpu0 at acpi0: C3, C1, PSS
acpicpu1 at acpi0: C3, C1, PSS
acpicpu2 at acpi0: C3, C1, PSS
acpicpu3 at acpi0: C3, C1, PSS
acpipwrres0 at acpi0: FN00
acpipwrres1 at acpi0: FN01
acpipwrres2 at acpi0: FN02
acpipwrres3 at acpi0: FN03
acpipwrres4 at acpi0: FN04
acpitz0 at acpi0: critical temperature is 106 degC
acpitz1 at acpi0: critical temperature is 106 degC
acpibat0 at acpi0: BAT0 not present
acpibat1 at acpi0: BAT1 not present
acpibat2 at acpi0: BAT2 not present
acpibtn0 at acpi0: PWRB
acpibtn1 at acpi0: LID0
acpivideo0 at acpi0: GFX0
acpivout0 at acpivideo0: DD02
ipmi at mainbus0 not configured
cpu0: Enhanced SpeedStep 3093 MHz: speeds: 3101, 3100, 3000, 2900, 2800, 
2700, 2600, 2500, 2300, 2200, 2100, 2000, 1900, 1800, 1700, 1600 MHz

pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 vendor Intel, unknown product 0x0158 
rev 0x09
em0 at pci0 dev 25 function 0 Intel 82579LM rev 0x05: msi, address 
00:25:90:77:64:19

ehci0 at pci0 dev 26 function 0 Intel 6 Series USB rev 0x05: apic 2 int 16
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb0 at pci0 dev 28 function 0 Intel 6 Series PCIE rev 0xb5: msi
pci1 at ppb0 bus 1
ppb1 at pci0 dev 28 function 4 Intel 6 Series PCIE rev 0xb5: msi
pci2 at ppb1 bus 2
em1 at pci2 dev 0 function 0 Intel 

Re: PF: block upd packets that allready have a state

[Ivo Chutkin]

On 25.6.2012 г. 21:42 ч., Matthias Cramer wrote:

Hi Marios

On 25/06/12 20:36, Marios Makassikis wrote:


Seeing your solution ( glad you solved your problem by the way :) ), it

looks

like someone is bruteforcing your server. Which implies that the first
step prior
to attempting to authenticate is to establish a connection. I'm
surprised PF doesn't
catch it though.
Even if the attacker is using the exact same packets, I recall reading
that PF tracks
connections by looking at source and destination transport addresses,
but also ISNs.
(Of course, you shouldn't take my word for it, as I couldn't find any
source that backs
this up.)
In that case, it would mean your server is using weak ISNs and using
modulate state
instead of keep state would help mitigate the issue, as new states
would be created
for each connection and you can effectively do some rate limiting.

There's also the possibility that your software keeps the connection
open upon a failed
auth, instead of closing after a predefined number of attempts. If
that's the case, I'd send
a bug report to the developers.


There are no connections to close ... It's SIP -- UDP .. The attacker can
always
use the same packet header.

Think there is no way to solve that at Layer 3 or 4, You have to look at the
content.

Regards

   Matthias

--
Matthias Cramer, Erachfeldstrasse 1b, CH-8180 Bülach, Switzerland
http://www.freestone.net
GnuPG 1024D/2D208250 = DBC6 65B6 7083 1029 781E  3959 B62F DF1C 2D20 8250

[demime 1.01d removed an attachment of type application/pgp-signature which had 
a name of signature.asc]



Hi guys,
I guess you are talking about asterisk setup.
I have experience such attacks very often, even now, I have 2 attackers 
running for two weeks even they are blocked, but continue trying.


The only solutions I find so far is blocking sip ports on external 
interface, accept connection only form peers listed in sip.conf, for 
example:

[pbx]
context=from-pbx
type=peer
deny=0.0.0.0/0.0.0.0
permit=10.10.1.14

If you need your clients to connect to pbx from Internet, try using vpn.

If not possable, I use swatch to read logs, extract IPs, put them in 
table and issue /sbin/pfctl -t blocksip -vT $1, /sbin/pfctl -k $1, 
/sbin/pfctl -k 0.0.0.0/0 -k $1, where $1 is attacker IP.


It blocks them on external interface but does not stop them.

General question about default route in OSPF

[Ivo Chutkin]

Hello,
I have general question about redistributing default route to ospf peers.
I have R1 which is connected to upstream ISPs via BGPd.
The R1 should redistribute (used to with openbsd 4.4 and after upgrading 
to 5.1 it stopped) default route to C1 via OSPFd.
I have read that in order to redistribute default R1 should have one 
itself, but in this case I get dynamic routes via BGPd and don't have 
default there.


I solve the problem by adding default on C1 to point R1 manually.

If I add loopback as default on B1, will it be better solution?

Thanks for the help,
Ivo

pfstat -t does not work for me (pfstat-2.3p1)

[Ivo Chutkin]

Hello,
I am collecting interface statistics with pfstat on OpenBSD 4.9.
Everything works fine except pfstat -t (days). The .db files getting big 
so I want to clear old entries, unfortunately it does not work.

Here is what I do:
root@storage.
~ # du -h /var/db/pfstat.db
801M/var/db/pfstat.db

root@storage.
~ # /usr/local/bin/pfstat -t 30:45 -d /var/db/pfstat.db

root@storage.
~ # du -h /var/db/pfstat.db
801M/var/db/pfstat.db

root@storage.
~ #

The .db file is at least 6 months old, so there should be entries to delete.
I miss something obvious?

Thanks for the help,
Ivo

spamd: ftp: Improper response from www.spamhaus.org

[Ivo Chutkin]

Hello,
Does anyone else get this message when update spamd blacklist:

ftp: Improper response from www.spamhaus.org

I use their blacklist with spamd and started to get this since yesterday.

Thanks,
Ivo

Issues with rdr-to and high latency connection (gsm network)

[Ivo Chutkin]

Hello guys,
I have some issues with the following configuration:
There are number of SIM cards, placed in taxi cars, collecting GPS data 
and sending them to two Windows servers with some application, than this 
application sends some data back.


Network topology is as follow:

Sim card - Telecom gsm/3G network-Metro link with vlan3728-Alix2d3 
OpenBSD 5.0-two Windows Servers


Sim card is static ip 192.168.16.3
OpenBSD
10.10.10.2 on vlan3728
10.11.33.1 on vr2
Windows servers
10.11.33.2 and 10.11.33.3

OpenBSD redirects all traffic from vlan3728 to vr2

Here is pf.conf

~ # cat /etc/pf.conf
# Macro
ext_if = vlan142
globul = vlan3768
vivasim = vlan3728
int_if = vr2
int_net = 10.11.33.0/24
ports1 = 12120:12124
ports2 = 12125:12129
ports3 = 12120:12124

#Tables

set skip on lo
set optimization high-latency
#NAT
pass out on $ext_if from $int_if:network to any nat-to ($ext_if)
#RDR
pass in on $ext_if proto {tcp,udp} from any to $ext_if port $ports1 
rdr-to 10.11.33.2 port $ports1
pass in on $ext_if proto {tcp,udp} from any to $ext_if port $ports2 
rdr-to 10.11.33.3 port $ports2
pass in on $globul proto {tcp,udp} from any to $globul port $ports3 
rdr-to 10.11.33.2 port $ports3
pass in on $globul proto {tcp,udp} from any to $globul port $ports2 
rdr-to 10.11.33.3 port $ports2
pass in on $vivasim proto {tcp,udp} from any to $vivasim port $ports1 
rdr-to 10.11.33.2 port $ports3
pass in on $vivasim proto {tcp,udp} from any to $vivasim port $ports2 
rdr-to 10.11.33.3 port $ports2

# By default, do not permit remote connections to X11
block in on ! lo0 proto tcp to port 6000:6010

The problem is, when the car is moving, sim card loose connection from 
time to time, then it tries to connect again with new session but 
OpenBSD keeps the old session up, so the card is unable to establish new 
session.  I need to clear the existing session, then everything starts fine.


Here is tcpdump on vlan3728 when the card cannot connect and after I 
clear the session:


~ # tcpdump -ni vlan3728
tcpdump: listening on vlan3728, link-type EN10MB
17:38:03.225484 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 89 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:38:49.185231 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 0 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:38:52.503574 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 5 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:38:52.503772 10.10.10.2.12122  192.168.16.3.2020: . ack 1728940723 
win 65535 nop,nop,timestamp 31291450 0 (DF)
17:38:58.504915 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 17 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:38:58.505088 10.10.10.2.12122  192.168.16.3.2020: . ack 1 win 65535 
nop,nop,timestamp 31291510 0 (DF)
17:39:10.482991 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 41 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:39:34.443167 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 89 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:40:33.867184 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 17 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:40:33.867354 10.10.10.2.12122  192.168.16.3.2020: . ack 1 win 65535 
nop,nop,timestamp 31292464 0 (DF)
17:40:45.823832 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 41 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:41:09.681923 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 89 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:41:59.742667 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 0 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:42:03.021653 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 5 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:42:03.021827 10.10.10.2.12122  192.168.16.3.2020: . ack 1 win 65535 
nop,nop,timestamp 31293355 0 (DF)
17:42:09.021598 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 17 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:42:09.021764 10.10.10.2.12122  192.168.16.3.2020: . ack 1 win 65535 
nop,nop,timestamp 31293416 0 (DF)
17:42:21.162916 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 41 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:42:44.982854 192.168.16.3.2020  10.10.10.2.12122: S 
1728940722:1728940722(0) win 5120 mss 1460,nop,wscale 
0,nop,nop,timestamp 89 0,nop,nop,ccnew 2 (DF) [tos 0x10]
17:43:34.983006 192.168.16.3.2020  10.10.10.2.12122: S 

Re: root/boot on softraid in 5.0

[Ivo Chutkin]

On 23.12.2011 P3. 08:01 Q., Raymond Lillard wrote:

On 12/22/2011 09:07 PM, Paul B. Henson wrote:

On Wed, Dec 21, 2011 at 08:08:08PM -0800, Josh Grosse wrote:


Woops. I misread your post. The commits were September 19, which is
-current, beyond 5.0-release.

You must either migrate to -current, or await 5.1-release.


Ah, ok, thanks for the clarification. The installboot piece that lets
you install bootblocks on softraid is in 5.0, so when that part worked I
assumed it all was. The dates (commits in Sept, your post in Oct,
5.0 release in Nov) also led me to misbelieve it was in 5.0. But looking
at the changelogs I see the bits that store boot info in softraid
metadata and dynamically figure out the root happened after the 5.0
freeze.

Something to look forward to in 5.1 :). Thanks again...


Why wait? I have two amd64 servers in production on -current
and all is humming along magnificently. One is heavily loaded
by large image file manipulation over samba. Of course that
has little to do with the boot block business. Both servers
were booted more than a dozen times during provisioning so
I feel good that they will come up after an extended power
outage.

I did boot with sd0 removed to force a boot from sd1. I
then took a third disk and rebuilt sd0 while the machine
was up and running. All went well.

To me it was worth the trouble to pick a snapshot between
commit storms by the developers, just so I didn't have to
deal with the altroot thing any more.

I have been using OBSD for Internet facing infrastructure for
the last 10 years but always used RedHat/CentOS for internal
servers. In Oct I installed the first of the two and don't
see going back. I am so done with Linux servers.

OBSD is getting close to the point where I can use it as
a workstation/desktop. My biggest hindrance is no wine.

I guess I am going to be forced to make friends with some
VM system and cross mount the filesystems via samba. I
assume smarter people than me have done that already.

I would take suggestions of a preferred VM off-list so as
not to hijack this tread.

Regards all



Sorry for hijacking this tread.
Can someone take time to clarify install process on softraid.
I read the article on undeadly.org, preform the install on sd2, my 
softraid0, copy kernels on sd0a and sd1a, everything went well, and 
after reboot, it does not find bootable media.
I put install cd, drop to shell, mount sd0a, then sd1a and then sd2a, 
everything is there.

Do I miss some obvious step here...
Can you point out what is wrong?

It is AMD64 20 December snapshot on HP microserver. I cannot take dmesg 
at this point. I can take one from standard install if you need it.


Happy Holidays!

Thanks for the help,

Ivo

Re: root/boot on softraid in 5.0

[Ivo Chutkin]

On 24.12.2011 P3. 15:06 Q., Josh Grosse wrote:

On Sat, Dec 24, 2011 at 02:26:26PM +0200, Ivo Chutkin wrote:


Sorry for hijacking this tread.
Can someone take time to clarify install process on softraid.
I read the article on undeadly.org, preform the install on sd2, my
softraid0, copy kernels on sd0a and sd1a, everything went well, and
after reboot, it does not find bootable media.
I put install cd, drop to shell, mount sd0a, then sd1a and then
sd2a, everything is there.
Do I miss some obvious step here...
Can you point out what is wrong?


The kernels are loaded from outside the softraid array (sd0a, or sd1a) by
the second stage bootloader.  But the second stage bootloader is loaded from
the array.  So, assuming sd2 is your softraid array, and you have an sd2a
root partition, reboot the install cd and try:

# mount /dev/sd2a /mnt
# cp -p /usr/mdec/boot /mnt/boot
# /usr/mdec/installboot -v /mnt/boot /usr/mdec/biosboot sd2


It is AMD64 20 December snapshot on HP microserver. I cannot take
dmesg at this point. I can take one from standard install if you
need it.


Both amd64 and i386 use the same installboot(8) program.



Hi Josh,
I try it but it does not boot as well.
Here is what I do step by step:
1.boot from cd
2.drop to shell
3.cd /dev, sh MAKEDEV sd1
4.fdisk -iy sd0 and sd1
5.disklabel -E sd0, add a, 100m, add d, the rest of disk, raid fail system
6. disklabel -R sd1 disklabel.sd1
7. bioctl -c 1 -l sd0d,sd1d softraid0
8.^D
9.install
10. when I am asked which one I wish to initiate i choose sd2 which is 
my raid partition.

11. continue with normal install and / is on sd2a
12. newfs sd0a and sd1a
13. copy kernels to sd0a and sd1a

everything went well

I tried installboot step before and after reboot, it does not boot.
I will change hardware now to check if it could be some HP specific problem.
Thanks,
Ivo

Re: root/boot on softraid in 5.0

[Ivo Chutkin]

On 24.12.2011 P3. 15:42 Q., Ivo Chutkin wrote:

On 24.12.2011 P3. 15:06 Q., Josh Grosse wrote:

On Sat, Dec 24, 2011 at 02:26:26PM +0200, Ivo Chutkin wrote:


Sorry for hijacking this tread.
Can someone take time to clarify install process on softraid.
I read the article on undeadly.org, preform the install on sd2, my
softraid0, copy kernels on sd0a and sd1a, everything went well, and
after reboot, it does not find bootable media.
I put install cd, drop to shell, mount sd0a, then sd1a and then
sd2a, everything is there.
Do I miss some obvious step here...
Can you point out what is wrong?


The kernels are loaded from outside the softraid array (sd0a, or sd1a) by
the second stage bootloader. But the second stage bootloader is loaded
from
the array. So, assuming sd2 is your softraid array, and you have an sd2a
root partition, reboot the install cd and try:

# mount /dev/sd2a /mnt
# cp -p /usr/mdec/boot /mnt/boot
# /usr/mdec/installboot -v /mnt/boot /usr/mdec/biosboot sd2


It is AMD64 20 December snapshot on HP microserver. I cannot take
dmesg at this point. I can take one from standard install if you
need it.


Both amd64 and i386 use the same installboot(8) program.



Hi Josh,
I try it but it does not boot as well.
Here is what I do step by step:
1.boot from cd
2.drop to shell
3.cd /dev, sh MAKEDEV sd1
4.fdisk -iy sd0 and sd1
5.disklabel -E sd0, add a, 100m, add d, the rest of disk, raid fail system
6. disklabel -R sd1 disklabel.sd1
7. bioctl -c 1 -l sd0d,sd1d softraid0
8.^D
9.install
10. when I am asked which one I wish to initiate i choose sd2 which is
my raid partition.
11. continue with normal install and / is on sd2a
12. newfs sd0a and sd1a
13. copy kernels to sd0a and sd1a

everything went well

I tried installboot step before and after reboot, it does not boot.
I will change hardware now to check if it could be some HP specific
problem.
Thanks,
Ivo



Hello again,
The problem was in HP microserver bios.
I have to change SATA mode from AHCI to IDE
When I moved disks to some ordinary PC everything went well and I 
realise what could be the problem.

Below is dmesg from it.

Thanks for the help,
Ivo

Here is dmesg from HP microserver running from softraid :-)

# dmesg
OpenBSD 5.0-current (GENERIC.MP) #159: Tue Dec 20 11:02:37 MST 2011
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 2011758592 (1918MB)
avail mem = 1944121344 (1854MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xfb330 (35 entries)
bios0: vendor HP version O41 date 04/02/2011
bios0: HP ProLiant MicroServer
acpi0 at bios0: rev 2
acpi0: sleep states S0 S4 S5
acpi0: tables DSDT FACP APIC MCFG SPMI OEMB HPET EINJ BERT ERST HEST SSDT
acpi0: wakeup devices PCE2(S4) PCE3(S4) PCE4(S4) PCE5(S4) PCE6(S4) 
PCE7(S4) PCE9(S4) PCEA(S4) PCEB(S4) PCEC(S4) SBAZ(S4) P0PC(S4) PE20(S4) 
PE21(S4) PE22(S4) PE23(S4)

acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: AMD Turion(tm) II Neo N40L Dual-Core Processor, 1497.77 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,CX16,POPCNT,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW
cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 
64b/line 16-way L2 cache
cpu0: ITLB 32 4KB entries fully associative, 16 4MB entries fully 
associative
cpu0: DTLB 48 4KB entries fully associative, 48 4MB entries fully 
associative

cpu0: apic clock running at 199MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: AMD Turion(tm) II Neo N40L Dual-Core Processor, 1497.52 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,CX16,POPCNT,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW
cpu1: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 
64b/line 16-way L2 cache
cpu1: ITLB 32 4KB entries fully associative, 16 4MB entries fully 
associative
cpu1: DTLB 48 4KB entries fully associative, 48 4MB entries fully 
associative

ioapic0 at mainbus0: apid 2 pa 0xfec0, version 21, 24 pins
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318180 Hz
acpi0: unable to load \\_SB_._INI.EXH1
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (P0P1)
acpiprt2 at acpi0: bus -1 (PCE2)
acpiprt3 at acpi0: bus 2 (PCE4)
acpiprt4 at acpi0: bus 3 (PCE6)
acpicpu0 at acpi0: PSS
acpicpu1 at acpi0: PSS
acpibtn0 at acpi0: PWRB
ipmi at mainbus0 not configured
cpu0: 1497 MHz: speeds: 1500 1300 1000 800 MHz
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 AMD RS880 Host rev 0x00
ppb0 at pci0 dev 1 function 0 vendor Hewlett-Packard, unknown product 
0x9602 rev 0x00

pci1 at ppb0 bus 1
vga1 at pci1 dev 5 function 0 ATI Mobility Radeon HD 4200 rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
radeondrm0 at vga1: apic 2 int 18
drm0 at radeondrm0
ppb1 at pci0 dev 4 function 0 AMD RS780 PCIE

Re: How to destroy softraid partition

[Ivo Chutkin]

On 18.11.2011 P3. 15:50 Q., Nigel Taylor wrote:

On 11/18/11 13:29, Ivo Chutkin wrote:

Hi all,

How can I destroy softraid partition on disk?
I was playing with sofraid, now I want to install fresh copy on same disk.
When I try to delete raid partition disklebel reports:

disklebel: ioctl DIOCWDINFO: Open partition would move or shrink
disklebel: unable to write lebel

How can I delete this partition?

It is snapshot from 16.11.2011. I am not able to extract dmesg, it is HP
microserver with no com port.

Thanks for the help,
Ivo



Hi,

I recently hit the same problem, when trying to change a partition. I
booted using bsd.rd then I could do what I wanted with disklabel.

Nigel



Hi guys,
Unfortunately both solutions does not help.
I booted bsd.rd and disklabel reports the same errors.

If I issue bioctl -d sd2 (which is the softraid disk made from sd0 and 
sd2) it does not find it.

In dmesg there is sd2 and softraid on it.

Any suggestions?

Thanks for the help,
Ivo

How to destroy softraid partition

[Ivo Chutkin]

Hi all,

How can I destroy softraid partition on disk?
I was playing with sofraid, now I want to install fresh copy on same disk.
When I try to delete raid partition disklebel reports:

disklebel: ioctl DIOCWDINFO: Open partition would move or shrink
disklebel: unable to write lebel

How can I delete this partition?

It is snapshot from 16.11.2011. I am not able to extract dmesg, it is HP 
microserver with no com port.


Thanks for the help,
Ivo

IGNOR does the list works?

[Ivo Chutkin]

?

Re: IGNOR does the list works?

[Ivo Chutkin]

On 4.10.2011 P3. 20:56 Q., Ingo Schwarze wrote:

Hi Igor,

Ivo Chutkin wrote on Tue, Oct 04, 2011 at 07:12:31PM +0300:


?


you are asking for flames, right?

Here is a gentle one:

A good way to test a public list is to look at a public web
archive, figure out the latest posting, and look into your
own mailbox whether you got that one, too.

There is no need to create an additional, empty posting
just to check whether the list works, unless you want to post
actual content.  And then you test by sending the actual content,
not an empty posting.

/flame   ;-)

Yours,
   Ingo


Sorry for the noise. I was not getting any mails from the list these days.
The problem was that IP 192.43.244.163 was listed in uatraps black list, 
so it was blocked by spamd.


Regards,
Ivo

spamd in blacklist mode 4.8 not working?

[Ivo Chutkin]

Hello Misc,
Some months ago I upgraded my firewall to 4.8 -stable form 4.5.
Everything went well except my spamd setup. I run it in blacklist mode only.
It is running according to logs, netstat, ps ax and top. The table spamd 
in pf.conf gets populated by spamd-setup but nothing gets to the spamd.

I am missing something obvious here but I am lost...

Thanks for the help.


Here are my configs:

~ # cat /etc/rc.conf.local

# PF

pf=YES   # Packet filter / NAT

# SPAMD

spamd_flags=-bv  # for normal use: 

spamd_black=YES  # set to YES to run spamd without greylisting


from pf.conf:

 pass in log on $ext300 proto tcp from spamd to any port smtp rdr-to 
127.0.0.1 port spamd


pass in log on $ext300 proto tcp from spamd-black to any port smtp 
rdr-to 127.0.0.1 port spamd


~ # pfctl -t spamd -T show |wc -l
   51302

~ # netstat -anf inet | grep LISTEN
tcp  0  0  127.0.0.1.8026 *.*LISTEN
tcp  0  0  *.8025 *.*LISTEN
tcp  0  0  127.0.0.1.587  *.*LISTEN
tcp  0  0  127.0.0.1.25   *.*LISTEN
tcp  0  0  *.37   *.*LISTEN
tcp  0  0  *.13   *.*LISTEN
tcp  0  0  *.113  *.*LISTEN
tcp  0  0  *.22   *.*LISTEN


~ # tail -f /var/log/spamd
~ # tail -f /var/log/spamd
Apr  2 18:45:59 core spamd[13791]: listening for incoming connections.
Apr  2 18:55:48 core spamd[24760]: listening for incoming connections.
Apr  2 19:45:56 core spamd[6987]: listening for incoming connections.
May 25 11:21:34 core spamd[25947]: listening for incoming connections.

Re: spamd in blacklist mode 4.8 not working?

[Ivo Chutkin]

On 25.5.2011 P3. 15:25 Q., Joakim Aronius wrote:

* Ivo Chutkin (open...@bgone.net) wrote:

from pf.conf:

  pass in log on $ext300 proto tcp fromspamd  to any port smtp
rdr-to 127.0.0.1 port spamd

pass in log on $ext300 proto tcp fromspamd-black  to any port smtp
rdr-to 127.0.0.1 port spamd



Hard to tell as you only show parts of the config. It could be a problem 
related to the changes to pf between 4.6 and 4.7. You should probably take a 
look at the current spamd(8) man page and update your pf rules for spamd 
according to the example. And you need to check the pf logs to see what is 
actually happening.

Regards,
/Joakim




Hi Joakim,
You gave me the right hint. I put quick in the rule and it start to 
work. I have to check which rule lat spammers get in.

I did not post my pf.conf because it is very long and a lot altq rules.

Thanks for the help,
Ivo

Re: spamd in blacklist mode 4.8 not working?

[Ivo Chutkin]

On 25.5.2011 P3. 15:32 Q., Stuart Henderson wrote:

On 2011-05-25, Ivo Chutkinopen...@bgone.net  wrote:

Hello Misc,
Some months ago I upgraded my firewall to 4.8 -stable form 4.5.
Everything went well except my spamd setup. I run it in blacklist mode only.
It is running according to logs, netstat, ps ax and top. The table spamd
in pf.conf gets populated by spamd-setup but nothing gets to the spamd.
I am missing something obvious here but I am lost...


in /etc/rc look for this line

/usr/libexec/spamd-setup -D

please add -b to it, see if that helps, and report back.



I did so, but I am not able to reboot it now. It is production system.
When I get it done I will report back for sure.
Thanks,
Ivo

Re: How to mount usb disk at boot

[Ivo Chutkin]

On 2.5.2011 P3. 14:03 Q., Olivier Cherrier wrote:

On Mon, May 02, 2011 at 12:31:47PM +0300, open...@bgone.net wrote:

Dmesg:
OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD
586-class) 499 MHz

[snip]

mount_ffs: /dev/sd0a on /data: Device not configured

[snip]

sd0 at scsibus0 targ 1 lun 0:WD, My Book 1130, 1012  SCSI4 0/direct fixed
sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
ses0 at scsibus0 targ 1 lun 1:WD, SES Device, 1012  SCSI4 13/enclosure


Your USB disk seems to take a lot of time to start and it is discovered
after /etc/rc issues the 'mount -a' command.  Try to put a 'sleep 10'
before mounting the FS.


Hi Olivier,
This solved the problem.
I put sleep 30 before mount -a in /etc/rc
I works perfect.
Thanks for the help.
Ivo

Re: 4.8 and 4.9 panic on Supermicro P8SCi

[Ivo Chutkin]

Hi Owain,
I was not able to disable it by config -e /bsd, it keeps panic.
I just compile new kernel with inteldrm disabled and it OK.
Thanks for the help,
Ivo

On 1.5.2011 P3. 18:16 Q., Owain Ainsworth wrote:

On Sun, May 01, 2011 at 05:57:47PM +0300, Ivo Chutkin wrote:

Hi Chris,
It solves the problem and system boots normally.
Do I need to compile custom kernel and disable inteldrm there?
Thanks for the help,



config -e /bsd

should allow you to make the disable permanent.

FWIW i just commited a fix to current that should stop the crash at
least.

-0-


Ivo
On 1.5.2011 P3. 17:10 Q., Chris Cappuccio wrote:

looks like a setup bug in the non-attachment of inteldrm?

try disabling inteldrm in the UKC

(boot -c
disable inteldrm
quit)

Ivo Chutkin [open...@bgone.net] wrote:

Hello sirs,
I have problem to get this system running.
It is Supermicro P8SCi, dmesg and panic messages are below.
I have three identical systens, I tried 4.8 stable, 4.9 official and
4.9 snapshot, all i386 GENERIC and 4.9 snapshot GENERIC.MP
ACPI enabled and disabled.
The result is the same. I am not skillful enough to diagnose the
problem myself.

I am glad to help you with any info or tests.

Thank you for the help.

Ivo




###

#

panic 4.8

OpenBSD 4.8-stable (GENERIC) #11: Thu Apr 28 11:24:34 EEST 2011
 r...@old.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21

GHzI

cpu0:

FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR

real mem  = 2137550848 (2038MB)/  CI Cntrlr
avail mem = 2092621824 (1995MB)6   2659   0C03  USB 1.0/1.1 UHCI
Cntrlr 10
mainbus0 at root  A   0C03  USB 1.0/1.1 UHCI
Cntrlr 12
bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @
0xfa000, SMBIOS rev. 2.3 @ 0xf0800 (49 entries)rom CD
bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005
bios0: Supermicro P8SC8
acpi at bios0 function 0x0 not configured
mpbios0 at bios0: Intel MP Specification 1.4
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
mpbios0: bus 0 is type PCI
mpbios0: bus 1 is type PCI
mpbios0: bus 2 is type PCI
mpbios0: bus 3 is type PCI
mpbios0: bus 4 is type PCI
mpbios0: bus 5 is type PCI
mpbios0: bus 6 is type PCI
mpbios0: bus 7 is type ISA
ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 4
ioapic1 at mainbus0: apid 5 pa 0xfec84400, version 20, 24 pins
pcibios0 at bios0: rev 3.0 @ 0xf/0xcb24
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc9f0/288 (16 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00)
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x9400! 0xcc000/0x4000! 0xd/0x1800
0xd2000/0x1800
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05: apic 4
int 16 (irq 5)
pci_intr_map: bus 0 dev 1 func 0 pin 2; line 5
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 3; line 12
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 4; line 10
pci_intr_map: no MP mapping found
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
Intel IOxAPIC rev 0x09 at pci1 dev 0 function 1 not configured
vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp at vga1 not configured
inteldrm0 at vga1: apic 4 int 16 (irq 5)
drm0 at inteldrm0: couldn't find agp
uvm_fault(0xd0a05960, 0x0, 0, 3) -   e
kernel: page fault trap, code=0
Stopped at  rw_cas_486+0xf: cmpxchgl%ebx,0(%ecx)
rw_cas_486(48,0,d0a05a64,0,0) at rw_cas_486+0xf
rw_enter_write(48,0,d0b75b68,0,d2e14000) at rw_enter_write+0x29
i915_gem_idle(d2e14000,d02094e0,0,d2e0f600,d0b75b74) at

i915_gem_idle+0x20

inteldrm_lastclose(d2e0f600,0,8,0,d09967b8) at inteldrm_lastclose+0x1a
drm_lastclose(d2e0f600,d2e0f600,d0b75bf8,d03e4aab,0) at

drm_lastclose+0x1b



config_attach(d2e14000,d09919cc,d0b75bf8,d0207cd0,0,2,0,d03eca77,d099b238,5

,d08

24200,d2dfac80,d09acea0,1,14,1,d0b75c05) at config_attach+0x140
drm_attach_pci(d0824200,d0b75d70,1,d2e14000,0) at drm_attach_pci+0xaa
inteldrm_attach(d2d0f900,d2e14000,d0b75d70,d03e4aab,d059b940) at
inteldrm_attac
h+0x40e
config_attach(d2d0f900,d09919f0,d0b75d70,0,258a,6280,628015d9) at
config_attach
+0x140
vga_pci_attach(d2dfde00,d2d0f900,d0b75d70,d03e4aab,d0598b60) at
vga_pci_attach+
0x12b
ddb

How to mount usb disk at boot

[Ivo Chutkin]

Hello misc,
I have problem mounting usb disk at boot time (namely Western Digital My 
Book 1130) on Alix2d2 board, dmesg below.

I am getting this message and the disk is not mounted:
mount_ffs: /dev/sd0a on /data: Device not configured

also:

r...@asterisk1.my.domain
~ # mount
/dev/wd0a on / type ffs (local)
/dev/wd0e on /home type ffs (local, nodev, nosuid)
/dev/wd0d on /mfs type ffs (local, nodev, nosuid)

After boot, I can mount it by hand without problem issuing:

r...@asterisk1.my.domain
~ # mount /dev/sd0a /data

and:

r...@asterisk1.my.domain
~ # mount
/dev/wd0a on / type ffs (local)
/dev/wd0e on /home type ffs (local, nodev, nosuid)
/dev/wd0d on /mfs type ffs (local, nodev, nosuid)
/dev/sd0a on /data type ffs (local)


My fstab is:

/dev/wd0a / ffs rw 1 1
/dev/wd0e /home ffs rw,nodev,nosuid 1 2
/dev/wd0d /mfs ffs rw,nodev,nosuid 1 2
/dev/sd0a /data ffs rw,nodev 0 0

How can I mount this disk at boot?
Thanks for the help,
Ivo

Dmesg:
OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 
586-class) 499 MHz

cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX
real mem  = 268009472 (255MB)
avail mem = 253669376 (241MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xe/0xa800
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, 
address 00:0d:b9:20:95:08
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr1 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, 
address 00:0d:b9:20:95:09
ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 
32-bit 3579545Hz timer, watchdog, gpio

gpio0 at glxpcib0: 32 pins
pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, 
channel 0 wired to compatibility, channel 1 wired to compatibility

wd0 at pciide0 channel 0 drive 0: TS4GCF133
wd0: 1-sector PIO, LBA, 3823MB, 7831152 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 ignored (disabled)
ohci0 at pci0 dev 15 function 4 AMD CS5536 USB rev 0x02: irq 12, 
version 1.0, legacy support

ehci0 at pci0 dev 15 function 5 AMD CS5536 USB rev 0x02: irq 12
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1
isa0 at glxpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com0: console
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
usb1 at ohci0: USB revision 1.0
uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1
biomask 7be7 netmask ffe7 ttymask 
mtrr: K6-family MTRR support (2 registers)
nvram: invalid checksum
softraid0 at root
root on wd0a swap on wd0b dump on wd0b
clock: unknown CMOS layout
umass0 at uhub0 port 2 configuration 1 interface 0 Western Digital My 
Book 1130 rev 2.10/10.12 addr 2

umass0: using SCSI over Bulk-Only
scsibus0 at umass0: 2 targets, initiator 0
Automatic boot in progress: starting file system checks.
/dev/rwd0a: file system is clean; not checking
/dev/rwd0e: file system is clean; not checking
/dev/rwd0d: file system is clean; not checking
mount_ffs: /dev/sd0a on /data: Device not configured
setting tty flags
pf enabled
net.inet.ip.forwarding: 0 - 1
starting network
DHCPREQUEST on vr0 to 255.255.255.255 port 67
DHCPACK from 192.168.75.1 (00:1e:58:9f:a5:ff)
bound to 192.168.75.66 -- renewal in 21600 seconds.
starting system logger
starting initial daemons: ntpd.
mount_ffs: /dev/sd0a on /data: Device not configured
savecore: no core dump
checking quotas: done.
building ps databases: kvm dev.
clearing /tmp
starting pre-securelevel daemons:.
setting kernel security level: kern.securelevel: 0 - 1
sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed
sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure 
services fixed

ses0: unable to read enclosure configuration
creating runtime link editor directory cache.
preserving editor files.
starting network daemons: sshd sendmail inetd.
starting local daemons:.
standard daemons: cron.
Mon May  2 09:36:28 EEST 2011

OpenBSD/i386 (asterisk1.my.domain) (tty00)

4.8 and 4.9 panic on Supermicro P8SCi

[Ivo Chutkin]

Hello sirs,
I have problem to get this system running.
It is Supermicro P8SCi, dmesg and panic messages are below.
I have three identical systens, I tried 4.8 stable, 4.9 official and 4.9 
snapshot, all i386 GENERIC and 4.9 snapshot GENERIC.MP

ACPI enabled and disabled.
The result is the same. I am not skillful enough to diagnose the problem 
myself.


I am glad to help you with any info or tests.

Thank you for the help.

Ivo


panic 4.8

OpenBSD 4.8-stable (GENERIC) #11: Thu Apr 28 11:24:34 EEST 2011
r...@old.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21 GHzI
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR

real mem  = 2137550848 (2038MB)/  CI Cntrlr
avail mem = 2092621824 (1995MB)6   2659   0C03  USB 1.0/1.1 UHCI Cntrlr 
10
mainbus0 at root  A   0C03  USB 1.0/1.1 UHCI Cntrlr 
12
bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @ 0xfa000, 
SMBIOS rev. 2.3 @ 0xf0800 (49 entries)rom CD

bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005
bios0: Supermicro P8SC8
acpi at bios0 function 0x0 not configured
mpbios0 at bios0: Intel MP Specification 1.4
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
mpbios0: bus 0 is type PCI
mpbios0: bus 1 is type PCI
mpbios0: bus 2 is type PCI
mpbios0: bus 3 is type PCI
mpbios0: bus 4 is type PCI
mpbios0: bus 5 is type PCI
mpbios0: bus 6 is type PCI
mpbios0: bus 7 is type ISA
ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 4
ioapic1 at mainbus0: apid 5 pa 0xfec84400, version 20, 24 pins
pcibios0 at bios0: rev 3.0 @ 0xf/0xcb24
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc9f0/288 (16 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00)
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x9400! 0xcc000/0x4000! 0xd/0x1800 
0xd2000/0x1800

pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05: apic 4 int 16 
(irq 5)

pci_intr_map: bus 0 dev 1 func 0 pin 2; line 5
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 3; line 12
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 4; line 10
pci_intr_map: no MP mapping found
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
Intel IOxAPIC rev 0x09 at pci1 dev 0 function 1 not configured
vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp at vga1 not configured
inteldrm0 at vga1: apic 4 int 16 (irq 5)
drm0 at inteldrm0: couldn't find agp
uvm_fault(0xd0a05960, 0x0, 0, 3) - e
kernel: page fault trap, code=0
Stopped at  rw_cas_486+0xf: cmpxchgl%ebx,0(%ecx)
rw_cas_486(48,0,d0a05a64,0,0) at rw_cas_486+0xf
rw_enter_write(48,0,d0b75b68,0,d2e14000) at rw_enter_write+0x29
i915_gem_idle(d2e14000,d02094e0,0,d2e0f600,d0b75b74) at i915_gem_idle+0x20
inteldrm_lastclose(d2e0f600,0,8,0,d09967b8) at inteldrm_lastclose+0x1a
drm_lastclose(d2e0f600,d2e0f600,d0b75bf8,d03e4aab,0) at drm_lastclose+0x1b
config_attach(d2e14000,d09919cc,d0b75bf8,d0207cd0,0,2,0,d03eca77,d099b238,5,d08
24200,d2dfac80,d09acea0,1,14,1,d0b75c05) at config_attach+0x140
drm_attach_pci(d0824200,d0b75d70,1,d2e14000,0) at drm_attach_pci+0xaa
inteldrm_attach(d2d0f900,d2e14000,d0b75d70,d03e4aab,d059b940) at 
inteldrm_attac

h+0x40e
config_attach(d2d0f900,d09919f0,d0b75d70,0,258a,6280,628015d9) at 
config_attach

+0x140
vga_pci_attach(d2dfde00,d2d0f900,d0b75d70,d03e4aab,d0598b60) at 
vga_pci_attach+

0x12b
ddb


panic 4.9

OpenBSD 4.9 (GENERIC) #671: Wed Mar  2 07:09:00 MST 2011
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR

real mem  = 2137550848 (2038MB)
avail mem = 2092449792 (1995MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @ 0xfa000, 
SMBIOS rev. 2.3 @ 0xf0800 (49 entries)

bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005
bios0: Supermicro P8SC8
acpi at bios0 function 0x0 not configured
mpbios0 at bios0: Intel MP Specification 1.1
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: 

Re: 4.8 and 4.9 panic on Supermicro P8SCi

[Ivo Chutkin]

Hi Chris,
It solves the problem and system boots normally.
Do I need to compile custom kernel and disable inteldrm there?
Thanks for the help,
Ivo
On 1.5.2011 P3. 17:10 Q., Chris Cappuccio wrote:

looks like a setup bug in the non-attachment of inteldrm?

try disabling inteldrm in the UKC

(boot -c
disable inteldrm
quit)

Ivo Chutkin [open...@bgone.net] wrote:

Hello sirs,
I have problem to get this system running.
It is Supermicro P8SCi, dmesg and panic messages are below.
I have three identical systens, I tried 4.8 stable, 4.9 official and
4.9 snapshot, all i386 GENERIC and 4.9 snapshot GENERIC.MP
ACPI enabled and disabled.
The result is the same. I am not skillful enough to diagnose the
problem myself.

I am glad to help you with any info or tests.

Thank you for the help.

Ivo


panic 4.8

OpenBSD 4.8-stable (GENERIC) #11: Thu Apr 28 11:24:34 EEST 2011
 r...@old.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21 GHzI
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR
real mem  = 2137550848 (2038MB)/  CI Cntrlr
avail mem = 2092621824 (1995MB)6   2659   0C03  USB 1.0/1.1 UHCI
Cntrlr 10
mainbus0 at root  A   0C03  USB 1.0/1.1 UHCI
Cntrlr 12
bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @
0xfa000, SMBIOS rev. 2.3 @ 0xf0800 (49 entries)rom CD
bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005
bios0: Supermicro P8SC8
acpi at bios0 function 0x0 not configured
mpbios0 at bios0: Intel MP Specification 1.4
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
mpbios0: bus 0 is type PCI
mpbios0: bus 1 is type PCI
mpbios0: bus 2 is type PCI
mpbios0: bus 3 is type PCI
mpbios0: bus 4 is type PCI
mpbios0: bus 5 is type PCI
mpbios0: bus 6 is type PCI
mpbios0: bus 7 is type ISA
ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 4
ioapic1 at mainbus0: apid 5 pa 0xfec84400, version 20, 24 pins
pcibios0 at bios0: rev 3.0 @ 0xf/0xcb24
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc9f0/288 (16 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00)
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x9400! 0xcc000/0x4000! 0xd/0x1800
0xd2000/0x1800
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05: apic 4
int 16 (irq 5)
pci_intr_map: bus 0 dev 1 func 0 pin 2; line 5
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 3; line 12
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 4; line 10
pci_intr_map: no MP mapping found
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
Intel IOxAPIC rev 0x09 at pci1 dev 0 function 1 not configured
vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp at vga1 not configured
inteldrm0 at vga1: apic 4 int 16 (irq 5)
drm0 at inteldrm0: couldn't find agp
uvm_fault(0xd0a05960, 0x0, 0, 3) -  e
kernel: page fault trap, code=0
Stopped at  rw_cas_486+0xf: cmpxchgl%ebx,0(%ecx)
rw_cas_486(48,0,d0a05a64,0,0) at rw_cas_486+0xf
rw_enter_write(48,0,d0b75b68,0,d2e14000) at rw_enter_write+0x29
i915_gem_idle(d2e14000,d02094e0,0,d2e0f600,d0b75b74) at i915_gem_idle+0x20
inteldrm_lastclose(d2e0f600,0,8,0,d09967b8) at inteldrm_lastclose+0x1a
drm_lastclose(d2e0f600,d2e0f600,d0b75bf8,d03e4aab,0) at drm_lastclose+0x1b
config_attach(d2e14000,d09919cc,d0b75bf8,d0207cd0,0,2,0,d03eca77,d099b238,5,d08
24200,d2dfac80,d09acea0,1,14,1,d0b75c05) at config_attach+0x140
drm_attach_pci(d0824200,d0b75d70,1,d2e14000,0) at drm_attach_pci+0xaa
inteldrm_attach(d2d0f900,d2e14000,d0b75d70,d03e4aab,d059b940) at
inteldrm_attac
h+0x40e
config_attach(d2d0f900,d09919f0,d0b75d70,0,258a,6280,628015d9) at
config_attach
+0x140
vga_pci_attach(d2dfde00,d2d0f900,d0b75d70,d03e4aab,d0598b60) at
vga_pci_attach+
0x12b
ddb


panic 4.9

OpenBSD 4.9 (GENERIC) #671: Wed Mar  2 07:09:00 MST 2011
 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR
real mem  = 2137550848 (2038MB)
avail mem = 2092449792 (1995MB)
mainbus0

not functioning spamd

[Ivo Chutkin]

Hello Misc,
Recently I upgraded my firewall to 4.8 -stable form 4.5.
Everything went well except my spamd setup. I run it in blacklist mode only.
It is running according to logs, netstat, ps ax and top. The table spamd 
in pf.conf gets populated by spamd-setup but nothing gets to the spamd.

I am missing something obvious here but I am lost...

Thanks for the help.


Here are my configs:

~ # cat /etc/rc.conf.local

# PF

pf=YES   # Packet filter / NAT

# SPAMD

spamd_flags=-bv  # for normal use: 

spamd_black=YES  # set to YES to run spamd without greylisting


from pf.conf:

 pass in log on $ext300 proto tcp from spamd to any port smtp rdr-to 
127.0.0.1 port spamd


pass in log on $ext300 proto tcp from spamd-black to any port smtp 
rdr-to 127.0.0.1 port spamd


~ # pfctl -t spamd -T show |wc -l
   82971

~ # netstat -anf inet | grep LISTEN
tcp  0  0  127.0.0.1.8026 *.*LISTEN
tcp  0  0  *.8025 *.*LISTEN
tcp  0  0  127.0.0.1.587  *.*LISTEN
tcp  0  0  127.0.0.1.25   *.*LISTEN
tcp  0  0  *.37   *.*LISTEN
tcp  0  0  *.13   *.*LISTEN
tcp  0  0  *.113  *.*LISTEN
tcp  0  0  *.22   *.*LISTEN

~ # tail -f /var/log/spamd
Apr  2 18:45:59 core spamd[13791]: listening for incoming connections.
Apr  2 18:55:48 core spamd[24760]: listening for incoming connections.
Apr  2 19:45:56 core spamd[6987]: listening for incoming connections.

Re: GENERIC.MP cold reboot at savecore

[Ivo Chutkin]

On 25.3.2011 P3. 11:00 Q., iridaoc iribag wrote:

Hello same problem  here on DELL PowerEdge R210.


Starting with OpenBSD 4.8 Release was Ok.

Applying patchs one by one until patch 006_cbc.patch

System cold reboots with this patch.

Back to kernel GENERIC.MP 4.8 release + patchs : 001_bgpd.patch,
002_pci.patch,  003_vr.patch, 004_openssl.patch 005_pf.patch, is Ok.



2011/3/24 Kapetanakis Giannisbil...@edu.physics.uoc.gr



I've tested a while ago the GENERIC.MP kernel of 4.8-stable and the system
cold reboots. GENERIC runs fine.

Trying to regenerate the problem I went into single user more and found out
that it reboots when it executes /sbin/savecore /var/crash

I tried ktrace but the dump was empty.
I also tried disabling apm without luck.

Any way to debug this?

Attaching the dmesg.

Thanx

Giannis




Hello,
Also, problem installing 4.8 -stable as of March 06 by PXE on DELL 
1655MC. The server just reboots after it gets ip address.

Installing 4.8 Release without problem.

Regards,
Ivo

Re: OpenBGP filter question

[Ivo Chutkin]

On 12.2.2010 P3. 11:10, Stuart Henderson wrote:

On 2010-02-11, Ivo Chutkinopen...@bgone.net  wrote:

match to $my_upstream_1 source-as {some_as} set prepend-self 4

I would like to prepend my as to make as path longer for some_as
trough my_upstream_1 and make it to prefer path trough my_upstream_2.
It does not produce error with bgpd-n but there is no effect as well.


Are you certain it has no effect (and how?) - you can't rely on
AS path prepending to change how traffic flows, if someone gives you
a higher localpref they'll use that path irrespective of the path length.



Hi Stuart,
I am certain as I don't see my prepend on some_as looking glass.

The actual filter looks like this without the comment:

match to $spnet_bg #(AS8717) sourse_as 9070 set prepend-seff 4

and this is what I see on 9070 looking glass:


This filter affects prefixes you send to the peer, and only those
with source_as 9070. Unless you are providing transit for 9070
you won't be sending anything to 34224 that matches this (and if
you are, it wouldn't be a useful thing to do, as 9070 won't
accept routes with their own AS in the path).

If I understand correctly, you'd like 9070 to see a longer path
to you via 34224, but not affect things for other AS that see you
via 34224.

I think there are just two ways you can do this via prepending

1. ask 34224 to prepend their announcements to 9070.
Some providers let you set communities on your prefixes to
do this, see e.g. whois -r as3356|more +/ties.acc
but many do not.

2. ask 9070 to prepend the paths they receive from 34224.




Hi Stuart, hi list,

Sorry for being away for so long.

You get me correct, that is what I wanted to achieve. The as 9070 is 
just an example. Obviously it is not the correct way to do it.

Thank you for clarifying it for me.

Regards,
Ivo

Re: OpenBGP filter question

[Ivo Chutkin]

On 10.2.2010 P3. 21:32, Stuart Henderson wrote:

On 2010-02-10, Ivo Chutkinopen...@bgone.net  wrote:

Hello misc,

Would the following filter work?

match to $my_upstream_1 source-as {some_as} set prepend-self 4

I would like to prepend my as to make as path longer for some_as
trough my_upstream_1 and make it to prefer path trough my_upstream_2.
It does not produce error with bgpd-n but there is no effect as well.


Are you certain it has no effect (and how?) - you can't rely on
AS path prepending to change how traffic flows, if someone gives you
a higher localpref they'll use that path irrespective of the path length.



Hi Stuart,
I am certain as I don't see my prepend on some_as looking glass.

The actual filter looks like this without the comment:

match to $spnet_bg #(AS8717) sourse_as 9070 set prepend-seff 4

and this is what I see on 9070 looking glass:

inet.0: 5185 destinations, 8315 routes (5184 active, 0 holddown, 1 hidden)
+ = Active Route, - = Last Active, * = Both

A DestinationP Prf   Metric 1   Metric 2  Next hopAS path
* 87.120.100.0/24B 170115212.116.129.38  34224 
20682 I
 B 170115 99 212.116.129.66  34224 
20682 I
 B 170115212.116.135.81  8717 
20682 I


{master:0}

where 20682 is my as.

Filter like:

match to $spnet_gl prefix {$net3 $net4 $net5 $net6} set prepend-self 2

works perfect but it prepends all as paths from this neighbor and it 
changes the routes to me.


I am aware of local preference.

Thanks for the help,
Ivo

OpenBGP filter question

[Ivo Chutkin]

Hello misc,

Would the following filter work?

match to $my_upstream_1 source-as {some_as} set prepend-self 4

I would like to prepend my as to make as path longer for some_as 
trough my_upstream_1 and make it to prefer path trough my_upstream_2.

It does not produce error with bgpd-n but there is no effect as well.

Thanks for the help,
Ivo

Re: Download rate and sysctl settings

[Ivo Chutkin]

On 05.2.2010 P3. 09:59, Sebastiano Pomata wrote:

On Fri, 5 Feb 2010 02:05:49 + (UTC)
Stuart Hendersons...@spacehopper.org  wrote:


On 2010-02-04, Sebastiano Pomatasebastianopom...@tiscali.it  wrote:

As doublechecking, I tried with another fast server inside the wan
network of our academy, and I'm getting almost the same results
(while absolute speeds are different from before, the gap is almost
the same in magnitude).

I've read the page about tcptune, it's pretty clear now (values are
almost the same I edited), still not having clear why on default
OpenBSD the transfer rates are so low.


we try to have safe defaults for the varioous machines/arch that
can run OpenBSD.

we would need some kind of auto-tuning to incrrease the defaults,
and don't have that yet.



I really can understand this, for the sake of system portability and so
on. Anyway, I really hardly understand why, without touching any of the
default settings, download rate from every server would never overcome
the value of 400 kB/s. Is it all due to the tcp windows size?


__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4836 (20100204) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com






I was about to post the same topic here.
I observe 250K/s on any OpenBSD server in my network, versions 4.2, 4.4, 
4.5 and 4.6, various hardware, using wget -O /dev/null
I can start the same download many times on the same machine with every 
download hitting 250K/s, so I can get total download speed 250K/s 
multiplied by downloads started. So it is not link speed issue...
The strangest thing is that I get better download speed on alix board 
outside my network then on much stronger hardware here, see attached 
dmesgs and speed tests.

On some debians I have here, I reach full link speed.

I have some questions.

Does this behavior/feature reflects forwarding capacity? I am using 
OpenBSD for routers.


Also, as Stuart said, is the tcp window size estimated by the machine 
every time I start download?
Sometimes I observe higher download speed on faster and shorter links, 
eventually close to wire speed.


Regards,
Ivo

chut...@rbs
e/debian-cd/5.0.4/i386/iso-cd/debian-504-i386-CD-1.iso 
  
--2010-02-05 10:52:57-- 
http://ftp.debian.de/debian-cd/5.0.4/i386/iso-cd/debian-504-i386-CD-1.iso

Resolving ftp.debian.de...
141.76.2.4
Connecting to ftp.debian.de|141.76.2.4|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 677117952 (646M) [application/octet-stream]
Saving to: `/dev/null'

 1% [= 


  ] 11,302,762   472K/s  eta 18m 24s ^C

related mtr:
HostLoss%   Snt   Last   Avg  Best  Wrst 
StDev
 1. 213.226.8.177 0.0%610.5   0.6   0.4 
7.7   0.9
 2. 213.226.1.201 0.0%610.8   0.8   0.7 
0.9   0.0
 3. sfk-inet-gw.mtel.net  0.0%610.9   1.6   0.8 
42.8   5.4
 4. GigabitEthernet9-8.ar2.VIE1.gblx  0.0%61   19.3  34.5  19.3 
369.5  58.2
 5. 64.213.78.238 0.0%61   38.3  38.9  37.7 
83.3   5.8
 6. zr-erl1-te0-0-0-4.x-win.dfn.de0.0%60   46.6  46.5  46.1 
48.9   0.4
 7. xr-dre1-te1-3.x-win.dfn.de0.0%60   49.1  51.9  49.1 
106.6  10.5
 8. kr-tu-dresden.x-win.dfn.de0.0%60   49.8  50.1  49.5 
56.8   1.0
 9. 141.30.1.182  0.0%60   50.0  50.2  49.7 
51.8   0.4
10. ftp.de.debian.org 0.0%60   53.9  54.0  53.7 
54.9   0.2


chut...@rbs
~ $ dmesg
OpenBSD 4.5-stable (GENERIC) #5: Sun Oct 11 19:35:57 EEST 2009
r...@tftp.office.bgone.net:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 
586-class) 499 MHz

cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX
real mem  = 268009472 (255MB)
avail mem = 250859520 (239MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xe/0xa800
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, 
address 00:0d:b9:19:22:fc
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr1 at pci0 dev 10 function 0 VIA VT6105M RhineIII rev 0x96: irq 11, 
address 00:0d:b9:19:22:fd
ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr2 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, 
address 00:0d:b9:19:22:fe
ukphy2 at vr2 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034

Re: mpi error on DELL1655MC and 4.5 -stable

[Ivo Chutkin]

Kenneth R Westerback wrote:

On Sat, Dec 05, 2009 at 02:40:08PM +0200, Ivo Chutkin wrote:

Hello misc,

I am getting this message mpi0: can't get RAID vol cfg page 0
 every 10 seconds on console and /var/log/messages.

The system is DELL PowerEdge 1655MC with PERC4/mi LSI logic hardware
raid controller, RAID1 (mirror) enabled, hard drives synced, OpenBSD
4.5 -stable as of December 3 2009.
Dmesg at the bottom.


You might try to add r1.110 (below, but I don't know if tabs/spaces
will be preserved) and see if it helps. This sounds like a related
issue.

If this doesn't help, you can try 4.6 or -current as there has been
work on mpi since 4.5.

 Ken

--- src/sys/dev/ic/mpi.c2009/02/16 21:19:07 1.109
+++ src/sys/dev/ic/mpi.c2009/03/06 01:28:44 1.110
@@ -1,4 +1,4 @@
-/* $OpenBSD: mpi.c,v 1.109 2009/02/16 21:19:07 miod Exp $ */
+/* $OpenBSD: mpi.c,v 1.110 2009/03/06 01:28:44 krw Exp $ */
 
 /*

  * Copyright (c) 2005, 2006 David Gwynne d...@openbsd.org
@@ -1124,13 +1124,9 @@ mpi_scsi_cmd(struct scsi_xfer *xs)
s = splbio();
ccb = mpi_get_ccb(sc);
splx(s);
-   if (ccb == NULL) {
-   xs-error = XS_DRIVER_STUFFUP;
-   s = splbio();
-   scsi_done(xs);
-   splx(s);
-   return (COMPLETE);
-   }
+   if (ccb == NULL)
+   return (NO_CCB);
+
DNPRINTF(MPI_D_CMD, %s: ccb_id: %d xs-flags: 0x%x\n,
DEVNAME(sc), ccb-ccb_id, xs-flags);




__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4664 (20091206) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com





Hello Kenneth,
The diff does not help, so the snapshop from December 4.
dmesg below.
What does this message mean?
Is this machine useful in this state?

Thanks for the help,

Ivo

dmesg:
OpenBSD 4.6-current (GENERIC.MP) #341: Fri Dec  4 22:57:58 MST 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Pentium(R) III CPU - S 1266MHz (GenuineIntel 686-class) 
1.26 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE

real mem  = 2146992128 (2047MB)
avail mem = 2071592960 (1975MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/24/02, BIOS32 rev. 0 @ 0xffe90, 
SMBIOS rev. 2.3 @ 0xfb040 (44 entries)

bios0: vendor Dell Computer Corporation version A00 date 09/24/2002
bios0: Dell Computer Corporation PowerEdge 1655MC
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP APIC SPCR
acpi0: wakeup devices PCI0(S5) PCI1(S5)
acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 1 (boot processor)
cpu0: apic clock running at 132MHz
cpu1 at mainbus0: apid 0 (application processor)
cpu1: Intel(R) Pentium(R) III CPU - S 1266MHz (GenuineIntel 686-class) 
1.26 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE

ioapic0 at mainbus0: apid 2 pa 0xfec0, version 11, 16 pins
ioapic0: misconfigured as apic 0, remapped to apid 2
ioapic1 at mainbus0: apid 3 pa 0xfec01000, version 11, 16 pins
ioapic1: misconfigured as apic 0, remapped to apid 3
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PCI1)
acpicpu0 at acpi0
acpicpu1 at acpi0
bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xcc000/0x4000 
0xd/0x1800 0xd1800/0x1800 0xec000/0x4000!

pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 ServerWorks CNB20LE Host rev 0x06
pchb1 at pci0 dev 0 function 1 ServerWorks CNB20LE Host rev 0x06
pci1 at pchb1 bus 1
bge0 at pci1 dev 10 function 0 Broadcom BCM5703X rev 0x02, 
BCM5702/5703 A2 (0x1002): apic 3 int 1 (irq 10), address 00:06:5b:ee:4a:47
bge1 at pci1 dev 11 function 0 Broadcom BCM5703X rev 0x02, 
BCM5702/5703 A2 (0x1002): apic 3 int 0 (irq 7), address 00:06:5b:ee:4a:48
mpi0 at pci0 dev 13 function 0 Symbios Logic 53c1030 rev 0x07: apic 3 
int 3 (irq 14)

scsibus0 at mpi0: 16 targets, initiator 7
sd0 at scsibus0 targ 1 lun 0: DELL, VIRTUAL DISK, 1000 SCSI2 0/direct 
fixed

sd0: 69878MB, 512 bytes/sec, 143110145 sec total
mpi0: phys disk 1 Sync at 80MHz width 16bit offset 127 QAS 0 DT 1 IU 0
mpi0: phys disk 0 Sync at 80MHz width 16bit offset 127 QAS 0 DT 1 IU 0
vga1 at pci0 dev 14 function 0 ATI Rage XL rev 0x27
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
piixpm0 at pci0 dev 15 function 0 ServerWorks CSB5 rev 0x93: polling
iic0 at piixpm0
admtemp0 at iic0 addr 0x18: adm1023
admtemp1 at iic0 addr 0x4c: adm1023
spdmem0 at iic0 addr 0x50: 1GB SDRAM registered ECC PC133CL2
spdmem1 at iic0 addr 0x51: 1GB SDRAM registered ECC PC133CL2
ohci0 at pci0 dev 15 function 2 ServerWorks OSB4/CSB5 USB rev 0x05: 
apic 2 int 11 (irq 11), version 1.0, legacy support

pchb2 at pci0 dev 15 function 3 ServerWorks CSB5 LPC rev 0x00
usb0 at ohci0: USB revision 1.0
uhub0 at usb0 ServerWorks OHCI

mpi error on DELL1655MC and 4.5 -stable

[Ivo Chutkin]

Hello misc,

I am getting this message mpi0: can't get RAID vol cfg page 0
 every 10 seconds on console and /var/log/messages.

The system is DELL PowerEdge 1655MC with PERC4/mi LSI logic hardware 
raid controller, RAID1 (mirror) enabled, hard drives synced, OpenBSD 4.5 
-stable as of December 3 2009.

Dmesg at the bottom.

I was searching the archives but found no solution.

Here is the output of bioctl:

r...@mail.
~ # bioctl mpi0
bioctl: BIOCVOL: Invalid argument

r...@mail.
~ # bioctl /dev/mpi0
bioctl: Can't locate /dev/mpi0 device via /dev/bio

What does this message mean and should I rely on this server?

Thanks for the help,

Ivo

Dmesg:

OpenBSD 4.5-stable (GENERIC.MP) #4: Thu Dec  3 20:09:48 EET 2009
r...@tftp.office...:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Pentium(R) III CPU - S 1266MHz (GenuineIntel 686-class) 
1.26 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE

real mem  = 2146992128 (2047MB)
avail mem = 2067759104 (1971MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/24/02, BIOS32 rev. 0 @ 0xffe90, 
SMBIOS rev. 2.3 @ 0xfb040 (44 entries)

bios0: vendor Dell Computer Corporation version A00 date 09/24/2002
bios0: Dell Computer Corporation PowerEdge 1655MC
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP APIC SPCR
acpi0: wakeup devices PCI0(S5) PCI1(S5)
acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 1 (boot processor)
cpu0: apic clock running at 132MHz
cpu1 at mainbus0: apid 0 (application processor)
cpu1: Intel(R) Pentium(R) III CPU - S 1266MHz (GenuineIntel 686-class) 
1.26 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE

ioapic0 at mainbus0: apid 2 pa 0xfec0, version 11, 16 pins
ioapic0: misconfigured as apic 0, remapped to apid 2
ioapic1 at mainbus0: apid 3 pa 0xfec01000, version 11, 16 pins
ioapic1: misconfigured as apic 0, remapped to apid 3
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PCI1)
acpicpu0 at acpi0
acpicpu1 at acpi0
bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xcc000/0x4000 
0xd/0x1800 0xd1800/0x1800 0xec000/0x4000!

pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 ServerWorks CNB20LE Host rev 0x06
pchb1 at pci0 dev 0 function 1 ServerWorks CNB20LE Host rev 0x06
pci1 at pchb1 bus 1
bge0 at pci1 dev 10 function 0 Broadcom BCM5703X rev 0x02, BCM5703 A2 
(0x1002): apic 3 int 1 (irq 10), address 00:06:5b:ee:4a:47
bge1 at pci1 dev 11 function 0 Broadcom BCM5703X rev 0x02, BCM5703 A2 
(0x1002): apic 3 int 0 (irq 7), address 00:06:5b:ee:4a:48
mpi0 at pci0 dev 13 function 0 Symbios Logic 53c1030 rev 0x07: apic 3 
int 3 (irq 14)

scsibus0 at mpi0: 16 targets, initiator 7
sd0 at scsibus0 targ 1 lun 0: DELL, VIRTUAL DISK, 1000 SCSI2 0/direct 
fixed

sd0: 69878MB, 512 bytes/sec, 143110145 sec total
mpi0: phys disk 1 Sync at 80MHz width 16bit offset 127 QAS 0 DT 1 IU 0
mpi0: phys disk 0 Sync at 80MHz width 16bit offset 127 QAS 0 DT 1 IU 0
vga1 at pci0 dev 14 function 0 ATI Rage XL rev 0x27
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
piixpm0 at pci0 dev 15 function 0 ServerWorks CSB5 rev 0x93: polling
iic0 at piixpm0
admtemp0 at iic0 addr 0x18: adm1023
admtemp1 at iic0 addr 0x4c: adm1023
spdmem0 at iic0 addr 0x50: 1GB SDRAM registered ECC PC133CL2
spdmem1 at iic0 addr 0x51: 1GB SDRAM registered ECC PC133CL2
ohci0 at pci0 dev 15 function 2 ServerWorks OSB4/CSB5 USB rev 0x05: 
apic 2 int 11 (irq 11), version 1.0, legacy support

pchb2 at pci0 dev 15 function 3 ServerWorks CSB5 LPC rev 0x00
usb0 at ohci0: USB revision 1.0
uhub0 at usb0 ServerWorks OHCI root hub rev 1.00/1.00 addr 1
isa0 at mainbus0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
mtrr: Pentium Pro MTRR support
mpi0: can't get RAID vol cfg page 0
softraid0 at root
root on sd0a swap on sd0b dump on sd0b
mpi0: can't get RAID vol cfg page 0
mpi0: can't get RAID vol cfg page 0
mpi0: can't get RAID vol cfg page 0
mpi0: can't get RAID vol cfg page 0
mpi0: can't get RAID vol cfg page 0
mpi0: can't get RAID vol cfg page 0


__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4661 (20091204) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Re: router/firewall

[Ivo Chutkin]

Sha'ul wrote:
Where can I find some information or some sort of guide for how to setup 
and configure OpenBSD to install on an old PC to use as a router and 
firewall?


This is very useful article:

http://www.benjaminheckmann.de/howto/openbsd42_altq_v2.7.pdf

Regs,
Ivo





__ Information from ESET NOD32 Antivirus, version of virus 
signature database 4393 (20090904) __


The message was checked by ESET NOD32 Antivirus.

http://www.eset.com







__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4394 (20090904) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Re: PF enabled - decreased performance

[Ivo Chutkin]

 packets/s, 0 b/s ]
queue  default_in on em1 bandwidth 10Mb cbq( borrow default )
  [ pkts: 125269  bytes:   76706097  dropped pkts:  0 bytes: 
   0 ]

  [ qlength:   0/ 50  borrows:  10468  suspends:  0 ]
  [ measured:   146.1 packets/s, 454.05Kb/s ]



Stuart Henderson wrote:

On 2009-08-04, Ivo Chutkin open...@bgone.net wrote:

Hello misc,

I have strange problem when I use PF for traffic shaping.
No such problem with PF disabled.
It is OpenBSD 4.5 stable. Here is dmesg: http://paste.lisp.org/display/84738


look for queue drops. pfctl -vvsq.


The problem is that the router start to generate losses.
It generates losses even to directly connected hosts. Here is an example:

r...@core1.bg
~ # ping a.a.a.230
PING a.a.a.230 (a.a.a.230): 56 data bytes
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
64 bytes from a.a.a.230: icmp_seq=4 ttl=255 time=0.954 ms
64 bytes from a.a.a.230: icmp_seq=5 ttl=255 time=1.363 ms
64 bytes from a.a.a.230: icmp_seq=6 ttl=255 time=1.288 ms
64 bytes from a.a.a.230: icmp_seq=7 ttl=255 time=1.213 ms
64 bytes from a.a.a.230: icmp_seq=8 ttl=255 time=1.136 ms
64 bytes from a.a.a.230: icmp_seq=9 ttl=255 time=1.214 ms
64 bytes from a.a.a.230: icmp_seq=10 ttl=255 time=1.022 ms
64 bytes from a.a.a.230: icmp_seq=11 ttl=255 time=1.409 ms
64 bytes from a.a.a.230: icmp_seq=12 ttl=255 time=1.334 ms
64 bytes from a.a.a.230: icmp_seq=13 ttl=255 time=1.741 ms
64 bytes from a.a.a.230: icmp_seq=14 ttl=255 time=1.183 ms

a.a.a.230 is on the other and of vlan600, my ip is a.a.a.229
It just happens to all directly connected hosts.

And also mtr to ibm.com:

http://paste.lisp.org/display/84728

Firs packets get lost and then the losses disappear.
Next time I issue ping or mtr command it starts with losses.
It also happen to web traffic and it is annoying for the users.

It does not happen with pf disabled.

There is no more than 10 to 15 Mbit per second load and maximum total 
pps I have seen according to systat ifstat is 8000, average 4000.


Here is my pf.conf:

http://paste.lisp.org/display/84727

I really appreciate your help.
If you need more info I did not provide or explain correctly just let me 
know. If the links are broken I will paste the configs to the list.


Thank you,
Ivo


__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4304 (20090804) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com




__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4306 (20090804) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com







__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4307 (20090805) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

PF enabled - decreased performance

[Ivo Chutkin]

Hello misc,

I have strange problem when I use PF for traffic shaping.
No such problem with PF disabled.
It is OpenBSD 4.5 stable. Here is dmesg: http://paste.lisp.org/display/84738

The problem is that the router start to generate losses.
It generates losses even to directly connected hosts. Here is an example:

r...@core1.bg
~ # ping a.a.a.230
PING a.a.a.230 (a.a.a.230): 56 data bytes
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
ping: sendto: No route to host
ping: wrote a.a.a.230 64 chars, ret=-1
64 bytes from a.a.a.230: icmp_seq=4 ttl=255 time=0.954 ms
64 bytes from a.a.a.230: icmp_seq=5 ttl=255 time=1.363 ms
64 bytes from a.a.a.230: icmp_seq=6 ttl=255 time=1.288 ms
64 bytes from a.a.a.230: icmp_seq=7 ttl=255 time=1.213 ms
64 bytes from a.a.a.230: icmp_seq=8 ttl=255 time=1.136 ms
64 bytes from a.a.a.230: icmp_seq=9 ttl=255 time=1.214 ms
64 bytes from a.a.a.230: icmp_seq=10 ttl=255 time=1.022 ms
64 bytes from a.a.a.230: icmp_seq=11 ttl=255 time=1.409 ms
64 bytes from a.a.a.230: icmp_seq=12 ttl=255 time=1.334 ms
64 bytes from a.a.a.230: icmp_seq=13 ttl=255 time=1.741 ms
64 bytes from a.a.a.230: icmp_seq=14 ttl=255 time=1.183 ms

a.a.a.230 is on the other and of vlan600, my ip is a.a.a.229
It just happens to all directly connected hosts.

And also mtr to ibm.com:

http://paste.lisp.org/display/84728

Firs packets get lost and then the losses disappear.
Next time I issue ping or mtr command it starts with losses.
It also happen to web traffic and it is annoying for the users.

It does not happen with pf disabled.

There is no more than 10 to 15 Mbit per second load and maximum total 
pps I have seen according to systat ifstat is 8000, average 4000.


Here is my pf.conf:

http://paste.lisp.org/display/84727

I really appreciate your help.
If you need more info I did not provide or explain correctly just let me 
know. If the links are broken I will paste the configs to the list.


Thank you,
Ivo


__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4304 (20090804) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Re: OSPFD + BGPD need to clarify behavior

[Ivo Chutkin]

Hi Claudio,
Thank you for your help.
Everything works as expected.

Regards,
Ivo

Claudio Jeker wrote:

On Thu, Jul 30, 2009 at 11:36:15AM +0300, Ivo Chutkin wrote:

Hi Claudio and Insan,

Thank you very much for clarified it.
I have another question.
Can I force the core to select only one border router as default and
switch to the other in case it fails?
Is there a point doing so, or I am better the way it is now?



Increasing the OSPF metric on the backup router should give you that.




__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4300 (20090803) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Re: OSPFD + BGPD need to clarify behavior

[Ivo Chutkin]

Hi Claudio and Insan,

Thank you very much for clarified it.
I have another question.
Can I force the core to select only one border router as default and 
switch to the other in case it fails?

Is there a point doing so, or I am better the way it is now?

Thank you,

Ivo

Insan Praja SW wrote:

Hi,

On Wed, 29 Jul 2009 14:38:43 +0700, Ivo Chutkin open...@bgone.net wrote:


Hallo Misc,

I need some general clarification about OSPF and BGP behavior.

I have tow border routers, border1(OpenBSD4.4 - stable)and 
border2(OpenBSD4.4 -stable), and one core router, core1(OpenBSD4.5 - 
stable).
Each border router talk eBGP(full feeds) with one upstream provider 
and have iBGP session between them. No problems here.


If your cores advertise default route, they both valid to core. So, ECMP 
occured. The Core will randomly select default routes.

There you go. See also netstat -nr and route -nv get default output.


The two borders and the core have ospf session to each other in one area.
Border routers redistribute default to core1.
Core1 redistribute connected to borders.
No problems here as well.

I noticed something strange though.
I start mtr to ibm.com for exampe, on the core1, I get different 
result every time I issue the command. See the attached results.


First trace:

  HostLoss%   Snt   Last   Avg  Best 
Wrst StDev
  1. border2  0.0% 20.3   0.3   0.3   
0.3   0.0

  2. border1  0.0% 20.8   0.8   0.8   0.8   0.0
  3. 212.73.129.85 0.0% 14.1   4.1   4.1 
4.1   0.0
  4. 212.162.46.17 0.0% 12.6   2.6   2.6 
2.6   0.0
  5. ae-10-10.ebr1.Frankfurt1.Level3.  0.0% 1   31.6  31.6  31.6 
31.6   0.0
  6. ae-61-61.csw1.Frankfurt1.Level3.  0.0% 1   31.6  31.6  31.6 
31.6   0.0
  7. ae-62-62.ebr2.Frankfurt1.Level3.  0.0% 1   31.3  31.3  31.3 
31.3   0.0
  8. ae-44-44.ebr2.Washington1.Level3  0.0% 1  120.6 120.6 120.6 
120.6   0.0
  9. ae-62-62.csw1.Washington1.Level3  0.0% 1  124.2 124.2 124.2 
124.2   0.0
10. ge-0-3-0-69.bbr1.Washington1.Lev  0.0% 1  121.1 121.1 121.1 
121.1   0.0
11. so-1-0-0.mpls2.Raleigh1.Level3.n  0.0% 1  127.5 127.5 127.5 
127.5   0.0
12. so-10-0.hsa2.Raleigh1.Level3.net  0.0% 1  126.5 126.5 126.5 
126.5   0.0
13. IBM-GS-NA.hsa2.Raleigh1.Level3.n  0.0% 1  127.2 127.2 127.2 
127.2   0.0

14. ???

Second trace:

HostLoss%   Snt   Last   Avg  Best  
Wrst StDev
  1. border2  0.0% 10.9   0.9   0.9   
0.9   0.0
  2. 212.36.5.217  0.0% 10.8   0.8   0.8 
0.8   0.0
  3. spectrum-ic-131757-ffm-b10.c.tel  0.0% 1   29.8  29.8  29.8 
29.8   0.0
  4. ffm-b10-link.telia.net0.0% 1   29.7  29.7  29.7 
29.7   0.0
  5. ffm-bb2-link.telia.net0.0% 1   29.6  29.6  29.6 
29.6   0.0
  6. prs-bb2-link.telia.net0.0% 1   42.0  42.0  42.0 
42.0   0.0
  7. ash-bb2-link.telia.net0.0% 1  121.4 121.4 121.4 
121.4   0.0
  8. 192.205.34.2090.0% 1  127.8 127.8 127.8 
127.8   0.0
  9. cr1.wswdc.ip.att.net  0.0% 1  164.2 164.2 164.2 
164.2   0.0
10. cr2.phlpa.ip.att.net  0.0% 1  158.7 158.7 158.7 
158.7   0.0
11. cr2.cl2oh.ip.att.net  0.0% 1  157.5 157.5 157.5 
157.5   0.0
12. cr1.sl9mo.ip.att.net  0.0% 1  163.0 163.0 163.0 
163.0   0.0
13. 12.122.142.29 0.0% 1  158.4 158.4 158.4 
158.4   0.0
14. 12.125.74.74  0.0% 1  160.3 160.3 160.3 
160.3   0.0

15. ???


The route is changed every time I issue the mtr command.
It also happens with yahoo and probably many other.

Is this behavior normal or there is something wrong with my 
configuration?


I will send my config files to you, just let me know what you need.
Also, I will provide any additional info you request.

I really appreciate your help.

Thank you,
Ivo


__ Information from ESET NOD32 Antivirus, version of virus 
signature database 4286 (20090728) __


The message was checked by ESET NOD32 Antivirus.

http://www.eset.com


Regards,





__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4289 (20090729) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

OSPFD + BGPD need to clarify behavior

[Ivo Chutkin]

Hallo Misc,

I need some general clarification about OSPF and BGP behavior.

I have tow border routers, border1(OpenBSD4.4 - stable)and 
border2(OpenBSD4.4 -stable), and one core router, core1(OpenBSD4.5 - 
stable).
Each border router talk eBGP(full feeds) with one upstream provider and 
have iBGP session between them. No problems here.


The two borders and the core have ospf session to each other in one area.
Border routers redistribute default to core1.
Core1 redistribute connected to borders.
No problems here as well.

I noticed something strange though.
I start mtr to ibm.com for exampe, on the core1, I get different result 
every time I issue the command. See the attached results.


First trace:

 HostLoss%   Snt   Last   Avg  Best 
Wrst StDev

 1. border2   0.0% 20.3   0.3   0.3   0.3   0.0
 2. border1   0.0% 20.8   0.8   0.8   0.8   0.0
 3. 212.73.129.85 0.0% 14.1   4.1   4.1 
4.1   0.0
 4. 212.162.46.17 0.0% 12.6   2.6   2.6 
2.6   0.0
 5. ae-10-10.ebr1.Frankfurt1.Level3.  0.0% 1   31.6  31.6  31.6 
31.6   0.0
 6. ae-61-61.csw1.Frankfurt1.Level3.  0.0% 1   31.6  31.6  31.6 
31.6   0.0
 7. ae-62-62.ebr2.Frankfurt1.Level3.  0.0% 1   31.3  31.3  31.3 
31.3   0.0
 8. ae-44-44.ebr2.Washington1.Level3  0.0% 1  120.6 120.6 120.6 
120.6   0.0
 9. ae-62-62.csw1.Washington1.Level3  0.0% 1  124.2 124.2 124.2 
124.2   0.0
10. ge-0-3-0-69.bbr1.Washington1.Lev  0.0% 1  121.1 121.1 121.1 
121.1   0.0
11. so-1-0-0.mpls2.Raleigh1.Level3.n  0.0% 1  127.5 127.5 127.5 
127.5   0.0
12. so-10-0.hsa2.Raleigh1.Level3.net  0.0% 1  126.5 126.5 126.5 
126.5   0.0
13. IBM-GS-NA.hsa2.Raleigh1.Level3.n  0.0% 1  127.2 127.2 127.2 
127.2   0.0

14. ???

Second trace:

HostLoss%   Snt   Last   Avg  Best  Wrst 
StDev

 1. border2   0.0% 10.9   0.9   0.9   0.9   0.0
 2. 212.36.5.217  0.0% 10.8   0.8   0.8 
0.8   0.0
 3. spectrum-ic-131757-ffm-b10.c.tel  0.0% 1   29.8  29.8  29.8 
29.8   0.0
 4. ffm-b10-link.telia.net0.0% 1   29.7  29.7  29.7 
29.7   0.0
 5. ffm-bb2-link.telia.net0.0% 1   29.6  29.6  29.6 
29.6   0.0
 6. prs-bb2-link.telia.net0.0% 1   42.0  42.0  42.0 
42.0   0.0
 7. ash-bb2-link.telia.net0.0% 1  121.4 121.4 121.4 
121.4   0.0
 8. 192.205.34.2090.0% 1  127.8 127.8 127.8 
127.8   0.0
 9. cr1.wswdc.ip.att.net  0.0% 1  164.2 164.2 164.2 
164.2   0.0
10. cr2.phlpa.ip.att.net  0.0% 1  158.7 158.7 158.7 
158.7   0.0
11. cr2.cl2oh.ip.att.net  0.0% 1  157.5 157.5 157.5 
157.5   0.0
12. cr1.sl9mo.ip.att.net  0.0% 1  163.0 163.0 163.0 
163.0   0.0
13. 12.122.142.29 0.0% 1  158.4 158.4 158.4 
158.4   0.0
14. 12.125.74.74  0.0% 1  160.3 160.3 160.3 
160.3   0.0

15. ???


The route is changed every time I issue the mtr command.
It also happens with yahoo and probably many other.

Is this behavior normal or there is something wrong with my configuration?

I will send my config files to you, just let me know what you need.
Also, I will provide any additional info you request.

I really appreciate your help.

Thank you,
Ivo


__ Information from ESET NOD32 Antivirus, version of virus signature 
database 4286 (20090728) __

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Re: SOEKRIS - How to install MTR to a Flashdist image

[Ivo Chutkin]

Frothingdog.ca wrote:

I've been working on a OpenBSD image for a soekris boxes.  I've actually made
some headway with some help and pointers from Chris (maker of flashdist).

I have the image mounted to /mnt/etc using vnconfig so I can modify the
files before flashing the image (ie. boot.conf, rc, dhcpd.conf...etc).  But
I'd like to install a coupe packages into the image, such as MTR and TTCP. 
However I'm not quite sure how to do it or even where to start.  I'm a newb

to this.

Any help would be great

Thanks


I think this are good points to start:

http://techblagh.blogspot.com/2008/08/installing-openbsd-43-on-soekris-5501.html

http://www.kernel-panic.it/openbsd/embedded/

I also started with flashdist and embedded but finally got convinced 
that  normal install is much easier for me (also newby).


Regards,

Ivo

Re: Empty /usr/src, is the box broken in?

[Ivo Chutkin]

Hi Ingo,

It was definitely bOh my god!b :) I was shocked because I usually extract
the source code.

Than, thanks to you I got my mind and realized that I did not extract the
source code when I installed the box.

It is one of my border routers, and I installed it during a bdisasterb
period, the old one is just R.I.P. sob :)

I have to be more careful when doing this.

Thanks a lot,
:)
Best regards,

Ivo

 Hi Ivo,

 Ivo Chutkn wrote on Sun, Jan 18, 2009 at 09:43:06PM +0200:

 I noticed strange thing on one of my OpenBSD 4.4 box.
 The directory /usr/src is empty except two patches I downloaded today
 and
 a file called Oops.rje.

 This is very funny, thanks for the good laugh!

 In German, the phrase Herrje! means Oh my god!.
 When you try to pronounce rje, it sounds exactly like Herrje.
 Thus, Oops.rje is really nice.   =:c)

 But, no more kidding, Oops.rej is a reject file written
 by patch(1) when it cannot find the file to patch.  For more details,
 search the patch(1) manual page for the string .rej.

 The content of this file is at the end.
 I tried to apply security fix 007 and it ended with File to patch:
 Then I noticed that the /usr/src is empty.

 Well, patching source code you never installed will not work.
 You should first extract the source tarball into /usr/src
 before you start patching...

 Try to at least roughly understand the commands you are typing.
 Otherwise, you will never have have a secure and very rarely
 a working system...  ;-(

 Is it at all possible or someone broke in?

 Nobody can exclude that the box was broken in.
 But the above does not contain any hint that there might have
 been a break-in, so _probably_, the box is not compromised.

 I receive daily output and did not notice any unknown or strange
 changes.

 Very probably, your attempt to patch non-existent source code
 broke nothing.  Just remove the contents of /usr/src,
 install the sources from your CD set, and retry.
 Also, have a look at

   http://www.openbsd.org/faq/faq10.html#Patches

 Yours,
   Ingo

Re: Trouble ticket system suggestions

[Ivo Chutkin]

Hello Guys,

Thank you for your suggestions.
I will give a try to RT first.

Although, it does not install on my 4.4 stable :-)
Exits with Error code 1 on other port, namely gd-2.0.35
I can provide more info if needed, but I think ports mailing list is 
appropriate place to report it.

Does some of you have similar problem?

Best regards,
Ivo

open...@bgone.net wrote:

Hello guys,

I would like to get your suggestions and experience with some Trouble
Ticket Systems on OpenBSD.
It should be rather simple.
Users should be able to sand notes to support and check status of it.
Support should be able to answer the tickets and check old tickets from
the same user, etc.
No need of phone integration.

I really appreciate your help.
Best regards,
Ivo



__ NOD32 3715 (20081224) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com

FSC Econel 100 S2 cannot install 4.4 stable

[Ivo Chutkin]

Hello to everyone,

I have problem installing 4.4 stable on FSC Econel 100 S2.
I try to use the RAID controller on board LSI Logic MegaRAID as RAID 1
After choosing install from (I)nstall, (U)pgrade or (S)hell?
OpenBSD reports  No disks found. 

Am I doing something wrong with it?

Or this is the problem?

 vendor Intel, unknown product 0x2925 (class mass storage subclass 
RAID, rev 0x02) at pci0 dev 31 function 2 not configured

Intel 82801I SMBus rev 0x02 at pci0 dev 31 function 3 not configured 

I appreciate your help.

Thanks,
Ivo


dmesg:

boot
booting cd0a:/4.4/i386/bsd.rd: 5155668+901212 [52+196208+181821]=0x623208
entry point at 0x200120

Copyright (c) 1982, 1986, 1989, 1991, 1993
The Regents of the University of California.  All rights reserved.
Copyright (c) 1995-2008 OpenBSD. All rights reserved. 
http://www.OpenBSD.org


OpenBSD 4.4-stable (RAMDISK_CD) #3: Sun Nov 16 18:13:33 CET 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz (GenuineIntel 686-class) 3 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR

real mem  = 1071964160 (1022MB)
avail mem = 1029955584 (982MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 03/19/08, BIOS32 rev. 0 @ 0xfdc02, 
SMBIOS rev. 2.4 @ 0x3feda000 (79 entries)
bios0: vendor FUJITSU SIEMENS // Phoenix Technologies Ltd. version 6.00 
R1.05.2679.A1 date 03/19/2008

bios0: FUJITSU SIEMENS ECONEL 100 S2
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP TCPA EINJ HEST BERT SSDT ERST SSDT SSDT SPCR 
MCFG HPET APIC BOOT

acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PENA)
acpiprt2 at acpi0: bus -1 (PENB)
acpiprt3 at acpi0: bus -1 (PESA)
acpiprt4 at acpi0: bus -1 (PESB)
acpiprt5 at acpi0: bus 1 (PCIH)
bios0: ROM list: 0xc/0x9000 0xc9000/0x5800!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 3200/3210 Host rev 0x01
em0 at pci0 dev 25 function 0 Intel ICH9 IGP AMT rev 0x02: irq 11, 
address 00:19:99:36:8e:4b

uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x02: irq 11
uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x02: irq 11
uhci2 at pci0 dev 26 function 2 Intel 82801I USB rev 0x02: irq 3
ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x02: irq 11
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
uhci3 at pci0 dev 29 function 0 Intel 82801I USB rev 0x02: irq 5
uhci4 at pci0 dev 29 function 1 Intel 82801I USB rev 0x02: irq 11
uhci5 at pci0 dev 29 function 2 Intel 82801I USB rev 0x02: irq 11
ehci1 at pci0 dev 29 function 7 Intel 82801I USB rev 0x02: irq 5
usb1 at ehci1: USB revision 2.0
uhub1 at usb1 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb0 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0x92
pci1 at ppb0 bus 1
skc0 at pci1 dev 5 function 0 D-Link Systems DGE-530T B1 rev 0x11, 
Yukon Lite (0x9): irq 11

sk0 at skc0 port A: address 00:1c:f0:d1:cd:a6
eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5
vga1 at pci1 dev 7 function 0 ATI ES1000 rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
ichpcib0 at pci0 dev 31 function 0 Intel 82801IR LPC rev 0x02: PM disabled
vendor Intel, unknown product 0x2925 (class mass storage subclass 
RAID, rev 0x02) at pci0 dev 31 function 2 not configured

Intel 82801I SMBus rev 0x02 at pci0 dev 31 function 3 not configured
usb2 at uhci0: USB revision 1.0
uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1
usb3 at uhci1: USB revision 1.0
uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1
usb4 at uhci2: USB revision 1.0
uhub4 at usb4 Intel UHCI root hub rev 1.00/1.00 addr 1
usb5 at uhci3: USB revision 1.0
uhub5 at usb5 Intel UHCI root hub rev 1.00/1.00 addr 1
usb6 at uhci4: USB revision 1.0
uhub6 at usb6 Intel UHCI root hub rev 1.00/1.00 addr 1
usb7 at uhci5: USB revision 1.0
uhub7 at usb7 Intel UHCI root hub rev 1.00/1.00 addr 1
isa0 at ichpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com0: console
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask ffed netmask ffed ttymask 
rd0: fixed, 3800 blocks
softraid0 at root
root on rd0a swap on rd0b dump on rd0b
erase ^?, werase ^W, kill ^U, intr ^C, status ^T

openbgpd bgplg ping and traceroute do not work

[Ivo Chutkin]

Hello misc,
I cannot get ping and traceroute working with bgplg on 4.4 stable.
Both show failed on the web interface.
Everything else works perfect.
I followed man pages and checked everything many times and there is no 
log entries for any errors.


I appreciate your help,
Ivo

Ideas about bidirectional traffic shaping

[Ivo Chutkin]

Hello to all here,
I would be grateful if you share your ideas and experience with me.
The problem is not related to OpenBSD as I do not use it yet in 
production environment, but I plan to go over it as soon as I finish my 
tests and feel comfortable with it. :-)

Actually the developers have done grate job, thanks and keep the good work.
I work for small ISP with clients over metro links.
The problem is that I could not get outgoing traffic (from my clients to 
the Internet) shaped the correct way. I have 4 bgp sessions with 
different transit providers on 4 different interfaces, so sometimes I 
see outgoing traffic loads by single client over all 4 links which is 4 
times this client should get :-(
Is there a way to shape the outgoing traffic, for example, to total of 
5Mbps to single client no mater which interface he uses to exit? 
Something like combined queue... not 5Mbps per interface.


I was thinking about creating loopback interface for each client and put 
queues and redirect all traffic through it.

Is there a point doing this?
Currently it is single router setup.

I hope I made it somehow clear. If you need additional info just let me 
know.


Thanks for your time,
Ivo

[solved] Re: problem installing some packages on 4.2

[Ivo Chutkin]

Hello Juan-Philippe,
Thank you for opening my eyes :-)))
I installed xbase42 and everything goes nice and smooth.
Thanks a lot.
Regards,
Ivo

Jean-Philippe Luiggi wrote:

Hello Ivo,

Did you check  : http://openbsd.org/faq/upgrade42.html because libexpat 
is now shipped with X (until 4.3).


Just install xbase42  (if you need to build ports, you may need xshare42).*

*Best regards,

Jean-philippe.

Ivo Chutkin a icrit :

Hello all,
I have problem installing packages via ftp on a new 4.2 installation.

# pkg_add -v 
ftp://ftp.stacken.kth.se/pub/OpenBSD/4.2/packages/i386/mc-4.6.1p1.tgz

Can't install gettext-0.14.6p0: lib not found expat.8.0




__ NOD32 2650 (20071109) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com

problem installing some packages on 4.2

[Ivo Chutkin]

Hello all,
I have problem installing packages via ftp on a new 4.2 installation.
It is a standard installation with 2 patches applied (001 and 002),dmesg 
is on the bottom.

I have tried rrdtool-1.0.49p4.tgz and mc-4.6.1p1.tgz so far.
I succeeded to get mtr-0.72-no_x11.tgz installed though. I have not 
tried other packages.
I tried to add missing packages manually, I mean install 
gettext-0.14.6p0 by pkg_add and so on, but then again some other things 
are missing.

Do I do something wrong?
Any help is appreciated.
Thanks,
Ivo

This is the result I am getting from pkg_add:

# pkg_add -v 
ftp://ftp.stacken.kth.se/pub/OpenBSD/4.2/packages/i386/mc-4.6.1p1.tgz
parsing 
ftp://ftp.stacken.kth.se/pub/OpenBSD/4.2/packages/i386/mc-4.6.1p1.tgz
Dependencies for mc-4.6.1p1 resolve to: gettext-0.14.6p0, unzip-5.52, 
zip-2.32, 
glib2-2.12.12p1, libiconv-1.9.2p3 (todo: 
gettext-0.14.6p0,glib2-2.12.12p1)

mc-4.6.1p1:parsing gettext-0.14.6p0
Dependencies for gettext-0.14.6p0 resolve to: libiconv-1.9.2p3
found libspec c.41.0 in /usr/lib
Can't install gettext-0.14.6p0: lib not found expat.8.0
Dependencies for gettext-0.14.6p0 resolve to: libiconv-1.9.2p3
Full dependency tree is libiconv-1.9.2p3
found libspec iconv.4.0 in package libiconv-1.9.2p3
mc-4.6.1p1:parsing glib2-2.12.12p1
Dependencies for glib2-2.12.12p1 resolve to: gettext-0.14.6p0, 
libiconv-1.9.2p3 
   (todo: gettext-0.14.6p0)

mc-4.6.1p1:parsing gettext-0.14.6p0
Dependencies for gettext-0.14.6p0 resolve to: libiconv-1.9.2p3
found libspec c.41.0 in /usr/lib
Can't install gettext-0.14.6p0: lib not found expat.8.0
Dependencies for gettext-0.14.6p0 resolve to: libiconv-1.9.2p3
Full dependency tree is libiconv-1.9.2p3
found libspec iconv.4.0 in package libiconv-1.9.2p3
Can't install glib2-2.12.12p1: can't resolve gettext-0.14.6p0
Can't install mc-4.6.1p1: can't resolve gettext-0.14.6p0,glib2-2.12.12p1

# pkg_add -v 
ftp://ftp.stacken.kth.se/pub/OpenBSD/4.2/packages/i386/rrdtool-1.0.49p4.tgz
parsing 
ftp://ftp.stacken.kth.se/pub/OpenBSD/4.2/packages/i386/rrdtool-1.0.49p4.tgz
Dependencies for rrdtool-1.0.49p4 resolve to: gd-2.0.35, 
libiconv-1.9.2p3 (todo: gd-2.0.35)

rrdtool-1.0.49p4:parsing gd-2.0.35
Dependencies for gd-2.0.35 resolve to: png-1.2.18, jpeg-6bp3, 
libiconv-1.9.2p3 (todo: jpeg-6bp3,png-1.2.18)

rrdtool-1.0.49p4:parsing jpeg-6bp3
found libspec c.41.0 in /usr/lib
rrdtool-1.0.49p4:jpeg-6bp3: complete
rrdtool-1.0.49p4:parsing png-1.2.18
rrdtool-1.0.49p4:png-1.2.18: complete
found libspec c.41.0 in /usr/lib
Can't install gd-2.0.35: lib not found expat.8.0
Dependencies for gd-2.0.35 resolve to: png-1.2.18, jpeg-6bp3, 
libiconv-1.9.2p3 (todo: jpeg-6bp3,png-1.2.18)

Full dependency tree is png-1.2.18,jpeg-6bp3,libiconv-1.9.2p3
Can't install gd-2.0.35: lib not found fontconfig.5.1
Can't install gd-2.0.35: lib not found freetype.14.0
found libspec iconv.4.0 in package libiconv-1.9.2p3
found libspec jpeg.62.0 in package jpeg-6bp3
found libspec m.2.3 in /usr/lib
found libspec png.5.2 in package png-1.2.18
found libspec z.4.1 in /usr/lib
Can't install rrdtool-1.0.49p4: can't resolve gd-2.0.35


# dmesg
OpenBSD 4.2 (RAMDISK_CD) #468: Tue Aug 28 11:02:17 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel Pentium III (GenuineIntel 686-class) 1 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE

real mem  = 535326720 (510MB)
avail mem = 511623168 (487MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 01/04/01, BIOS32 rev. 0 @ 0xfd87d, 
SMBIOS rev. 2.2 @ 0xe4010 (41 entries)
bios0: vendor Phoenix Technologies Ltd. version IP.01.06US date 
01/04/2001

bios0: Hewlett-Packard HP Vectra
apm0 at bios0: Power Management spec V1.2
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xfd810/0x7f0
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf30/176 (9 entries)
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82371FB ISA rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xa000 0xca000/0x1000 0xcb000/0x1000 
0xcc000/0x1800 0xe4000/0xc000!

cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 82815 Hub rev 0x02: rng active, 
800Kb/sec

vga1 at pci0 dev 2 function 0 Intel 82815 Graphics rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
ppb0 at pci0 dev 30 function 0 Intel 82801AA Hub-to-PCI rev 0x02
pci1 at ppb0 bus 1
em0 at pci1 dev 0 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 
11, address 00:07:e9:a0:13:e8
em1 at pci1 dev 1 function 0 Intel PRO/1000MT (82540EM) rev 0x02: irq 
5, address 00:07:e9:2e:e6:3b
re0 at pci1 dev 2 function 0 Realtek 8169 rev 0x10: RTL8169/8110SB 
(0x1000), irq 9, address 00:0c:76:ae:b5:b7

rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 2
xl0 at pci1 dev 4 function 0 3Com 3c905C 100Base-TX rev 0x78: irq 5, 
address 00:01:02:29:ee:81

bmtphy0 at xl0 phy 24: Broadcom 3C905C internal PHY, rev. 7
ichpcib0 at pci0 dev 

Re: a little small want

[Ivo Chutkin]

Hello Theo.
Is this sounds OK?
http://cgi.ebay.com/512MB-Memory-DRAM-Cisco-2811-2821-2851-MEM2811-512D_W0QQitemZ120134089244QQihZ002QQcategoryZ51209QQrdZ1QQssPageNameZWD1VQQcmdZViewItem
Let me know and I will try to buy it for you.
Regards,
Ivo
Theo de Raadt wrote:

It would be nice if someone could dig up a single DIMM for me.

A Samsung M381L6423ETM-CB0 (512MB PC1200 266MHz 64Mx72 ECC
non-buffered).  It's to expand a Cisco 2811 that's involved in moving
openbsd traffic, in case anyone needs to know.

Thanks.  Anything within about a week or so should be fine, otherwise
I'll find something else in my own ways.

If anyone can take a try, also look at openbsd.org/want.html to see
if there's any other requests other developers put up recently.

Thanks a lot.



__ NOD32 2342 (20070621) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com

Re: Migrate to OpenBSD + OpenBGP

[Ivo Chutkin]

Henning Brauer wrote:

* [EMAIL PROTECTED] [EMAIL PROTECTED] [2007-03-07 09:54]:
I use route-maps in my quagga setup, but i do not see this options in 
OpenBGP.


not having the route-map desaster was a design goal.

look at the filter language, it can do all you want.
there's a section about it in bgpd.conf(5) (yeah, opoosed to (%$@, we 
have docs).


I do not argue, you have nice docs. But the syntax it is completely new 
for me so from time to time I am lost. I am sorry for wasting your time 
with stupid questions.

Thanks,
Ivo