On Thu, 2 Jan 2020 at 14:04, Stuart Henderson wrote:
>
> On 2020-01-01, List wrote:
> > Hi *,
> > I am currently building a home router based upon OpenBSD.
> > I therefore need some kind of WIFI Hardware. This piece of hardware
> > needs to be connected over usb.
> > Do you have any suggestions o
On 18 November 2015 at 22:45, Adam Wolk wrote:
> On Wed, 18 Nov 2015 11:38:55 -0700 (MST)
> Theo de Raadt wrote:
>
>> >Adam Wolk wrote:
>> >> During the LibreSSL early days there were frequent KNFectomy
>> >> procedures executed by jsing@. Is the KNFectomy utensil script
>> >> available publicly?
On 23 September 2015 at 15:34, Giancarlo Razzolini wrote:
> Em 23-09-2015 04:40, Stuart Henderson escreveu:
>> Saves messing about with DHCPv6-PD
>
> I see. So you translate from what exactly? Wouldn't it be better to use
> af-to instead of nat?
Hello,
Rather than announcing the prefix obtained
On 16 June 2015 at 14:53, Alex wrote:
> On 05/28/2015 01:48 AM, Shaun Reiger wrote:
>> Hello Misc I'm looking at purchasing a Lenovo T450s as my main laptop, but
>> I wanted to find out if anyone has hit any major roadblocks using obsd 5.7
>> with this model. I know this is a fairly new machine an
On 18 April 2014 16:29, Tristan PILAT wrote:
> 2014-04-18 10:23 GMT+02:00 Tristan PILAT :
>
> > 2014-04-17 19:27 GMT+02:00 Tristan Pilat :
> >
> >>
> >>
> >> On 17 avril 2014 19:02:14 CEST, Claudio Jeker >
> >> wrote:
> >> >You can't use rtlabels for matching the source, at least I think it
> >>
On 18 April 2014 00:18, Alex Naumov wrote:
> Thank you for link, but... why? I mean, we are not going to continue work
> on translation anymore? Reason?
>
>
This was also discussed :
http://marc.info/?l=openbsd-misc&m=139653486420745&w=2
The translation was open sourced also, so nothing stops y
On 8 December 2013 17:54, dikshie wrote:
> On Mon, Dec 9, 2013 at 1:38 AM, Marios Makassikis
> wrote:
>> Is PF enabled ? If so, perhaps your current rules are IPv4 only.
>> Can you ping6 from this host ?
>
> pf is disable.
>
>
> # ndp -a
> Neighbor
Is PF enabled ? If so, perhaps your current rules are IPv4 only.
Can you ping6 from this host ?
On 8 December 2013 17:00, dikshie wrote:
> On Sun, Dec 8, 2013 at 10:14 PM, Marios Makassikis
> wrote:
>> Your /etc/mygate file can look like this :
>>
>> # cat /etc/mygate
Your /etc/mygate file can look like this :
# cat /etc/mygate
202.249.25.1
FE80::21B:2AFF:FEE2:A4C0%vio1
Make sure you have net.inet6.ip6.forwarding=1 in /etc/sysctl.conf
On 8 December 2013 09:59, dikshie wrote:
> Hi,
> I have an openbsd box with two interface.
>
> # cat /etc/hostname.vio0
> ine
On 6 December 2013 12:29, Andres Perera wrote:
> On Fri, Dec 6, 2013 at 5:22 AM, Alexander Hall wrote:
>> On 12/06/13 07:50, Andres Perera wrote:
>>>
>>> On Fri, Dec 6, 2013 at 1:58 AM, Jan Stary wrote:
On Dec 05 19:09:05, andre...@zoho.com wrote:
>
> but then if the shell impl
On 12 November 2013 20:42, Kapetanakis Giannis
wrote:
> On 12/11/13 19:29, Daniel Polak wrote:
>>
>> Original message from Kapetanakis Giannis at 8-11-2013 13:38
>>>
>>> I would like to discuss some suggestions about VPN to multiple road
>>> warriors.
>>>
>>> So far we're using OpenVPN, but I
On 19 October 2013 00:27, Stefan Wollny wrote:
>
> Hi there,
>
> having a personal dislike of Facebook (and the MeeToo-systems alike)
> for their impertinent sniffing for private data I tried on my laptop to
> block facebook.com via hosts-file. Interestingly this failed: Calling
> "http://www.face
What is recommended is to upgrade to -stable.
Then you can install php-5.3.27 / php-5.4.20 from ports or packages
On 2 October 2013 13:52, Markus Rosjat wrote:
> Hey there,
>
> I have a server that runs a OpenBSD 4.2 with a php of 5.2.3 and now I just
> need some information if it's possible to
On 25 September 2013 16:40, Adelin Balou <
adelin.ba...@etu.univ-valenciennes.fr> wrote:
> Dear Sir/Madame,
>
>
> I am a student in pending Master's degree in Network and Security at
> University of Valenciennes (France), I am currently encountering problems
> while setting up a Firewall with Pack
On 29 July 2013 10:19, lilit-aibolit wrote:
> Does someone have compiled i386 package for current nut?
> https://github.com/networkupstools/nut
> Or walkthrough how to build it on 5.3.
> The reason for install development version it's added
> Riello UPS support.
> This is my step:
> # git clone ht
On 6 July 2013 21:26, Pawel Jurusz wrote:
> Hello Marios
>
Hello Pawel,
> DF bit shouldn't be cleared, because it's necessary for PMTUD (Path MTU
> Discovery). There is also nothing amazing, that packets has DF flag set
> (it depends on operating system)
>
I'm aware of the utility of the DF bit.
Hello misc@,
I currently have a VM running as a NAT64 gateway.
It is running OpenBSD 5.3 with the vio stability patch.
I have the following pf.conf:
pass in inet6 proto { tcp, udp, icmp6 } from to
af-to inet from $ipv4_addr
While this works fine in one environnment, the same VM
moved on a dif
On 2 June 2013 21:33, Rob Sheldon wrote:
> On 2013-06-02 2:35, Loïc BLOT wrote:
>
>> Hello rob,
>> i'm using squid since 3.1 on OpenBSD 5.2 with compiled sources (squid
>> 3.2.5-9 and 3.3.4 at this time). I don't use an IP but the http_port
>> 3129 as my configuration suggests:
>>
>> http_port 31
On 13 February 2013 20:28, Stuart Henderson wrote:
> On 2013/02/12 16:54, Jeremie Le Hen wrote:
> > Thanks again for your review.
> >
> > http://people.chchile.org/~jlh/tmp/faq6.html
> > http://people.chchile.org/~jlh/tmp/faq6.diff
>
> This looks fine to me, thank you. Unless there are any object
On 2 January 2013 23:14, Jan Stary wrote:
> On Jan 02 23:02:02, com...@daknet.org wrote:
> > >Is anybody using an USB-to-serial connection to an ALIX?
> >
> > Yes i am. We have many Alix 2D13 boards that we use as routers
> > running OpenBSD 5.2 on many sites. I use a USB-to-serial cable to
> > c
On 25 June 2012 19:06, Matthias Cramer wrote:
> Hi Marios
>
> On 25/06/12 18:50, Marios Makassikis wrote:
>>>> I would consider having PF rate-limit connections to your SIP PBX, and
>>>> add any host
>>>> that goes over the limit to your badguys tabl
On 25 June 2012 16:12, Matthias Cramer wrote:
> Hi Marios
>
Hi Matthias,
> On 25/06/12 15:58, Marios Makassikis wrote:
>> On 25 June 2012 15:36, Matthias Cramer wrote:
>>
>>> - to block a packet even with a established state ?
>>>
>>
>> Ho
Hi,
You need to tell PF to intercept packets and redirect them to the relayd
process.
pass in on em2 inet proto tcp to any port www divert-to 192.168.20.1 port
8000
pass out log(all) on em1 divert-reply
You can find some more detailed information regarding relayd transparent
proxying in this thr
> I just thought of something that bit me recently as well.
>
> With a real IPv6 address CARP will send out advertisements via IPv4
> _and_ IPv6. It's the same CARP message so if either one reaches the
> backup it's ok.
>
> Your block rule had "inet" so you were probably blocking IPv4 only. But
>
Hello,
> No, that's not from your manual commands. It says there are send errors
> when sending out the carp packets.
My bad.
>
> Just paste the output instead of interpreting...
>
Here you go:
carp:
45808 packets received (IPv4)
74835 packets received (IPv6)
0
Hi,
> Are you sure that fw1 is sending and not receiving those? The only way
> to be really sure is to use "tcpdump -D out".
The sender IP was the one I assigned to fw1, but I retested it anyway with
-D out and I can confirm that there is a difference between the demote count
displayed by ifconf
Hello,
No, I'm using hardware machines.
I tested what Imre suggested, i.e.: flushing PF states with
'pfctl -F states'.
With a freshly booted machine, CARP packets are allowed to pass.
I then disabled pf, flushed the states and reloaded pf with the
'block log' rule. At this point, CARP is effective
Hi all,
I am in the process of setting up a lab to test a IPv6 setup, and I'm
having some issues with filtering CARP traffic.
The configuration looks like this:
+| WAN/Internet |+
||
em0||em0
+-+ +
28 matches
Mail list logo
