Misc,
I'd like to hear how people are using OpenOSPFd and how it's working
out.
Are people using it in any sort of a local-cluster load balancing
method? For example: rtr1 servers area 1 and has three NTP servers
attached all announcing the same /32 over OSPF with some logic on the
On Mon, Nov 28, 2005 at 08:47:04AM -0800, edgar mortiz wrote:
hey guys
is there anyone here ever tried to put up a openbsd fail-over fw using 2
obsd boxes connected to 2 different ISP's ?
something like:
ISP1 (66.77.204.10) ISP2 (207.110.9.10)
| fxp0
On 11/29/05, Joachim Schipper [EMAIL PROTECTED] wrote:
Why don't you just put a switch in front of the two firewalls, and then
do CARP (for firewall failover) plus some smart routing tricks (for ISP
failover - search the archives, I forgot the proper keywords)?
pf route-to?
Regards
-David
On Mon, Nov 28, 2005 at 02:29:21PM -0500, Bob Ababurko wrote:
... I wanted a
system that did not have moving parts. This was to hopefully extend the
life of the machine and increase uptime by eliminating the hard drives
and power supplies with moving parts. I am not paying for power so I
From: Qv6 [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: #define failure opportunity
Date: Mon, 28 Nov 2005 18:35:24 -0600
...
Intersting news.
I once worked for a major Telecom firm that used a commercial
implementation of ssh. I was curious and I asked one of the other
techies
On Tue, Nov 29, 2005 at 10:31:03AM +0100, David Coppa wrote:
On 11/29/05, Joachim Schipper [EMAIL PROTECTED] wrote:
Why don't you just put a switch in front of the two firewalls, and then
do CARP (for firewall failover) plus some smart routing tricks (for ISP
failover - search the
Hello!
I have a problem with ISAKMPD on a new machine running 3.8-RELEASE.
The machines on the other sides of the tunnels are running
3.6-RELEASE and 3.7-RELEASE; they talk to each other just fine.
But the machine with 3.8 cannot talk to any of the other two
boxes.
Reading in the
Maybe I still need something like this in isakmpd.conf:
# Certificates stored in PEM format
[X509-certificates]
CA-directory=/etc/isakmpd/ca/
Cert-directory=/etc/isakmpd/certs/
Private-key=/etc/isakmpd/private/openbsd1.as10.net.priv
Am I on the right track? I
Joachim Schipper wrote:
On Tue, Nov 29, 2005 at 10:31:03AM +0100, David Coppa wrote:
On 11/29/05, Joachim Schipper [EMAIL PROTECTED] wrote:
Why don't you just put a switch in front of the two firewalls, and then
do CARP (for firewall failover) plus some smart routing tricks (for ISP
make sure to apply all patches for 3.7, see errata37.html. I've added fix a
few days ago. Moreover, I need the full out put of -DA=80 to see what's
actually going on.
HJ.
On Tue, Nov 29, 2005 at 01:20:25PM +0100, [EMAIL PROTECTED] wrote:
Hello!
I have a problem with ISAKMPD on a new
On 29 nov 2005, at 13.20, robdenz@@libero..it wrote:
I keep getting messages such as
Default pf_key_v2_get_spi: GETSPI: Operation not supported
Default initiator_send_HASH_SA_NONCE: doi-get_spi failed
Make sure you did not accidentally disable ESP (and AH) in /etc/
sysctl.conf.
/H
Hi folks,
I just bought a mini-pci-wlan-card with antennas and now want to use it
with my soekris net4801.
I have two requirements now:
a) that card should not be available 24/7 due to wardrivers etc (-
ifconfig interface down)
b) but I also want this card _completely_ not sending any
Actually, when I am in a position to use carp and pfsync
I often do not bother with embedded, unless I have power concerns.
If you want embedded buy the comell box suggested earlier, but if
you really have no budget, dont bother with raid or other such nonsense.
go find two cheap
Hello!
Yes, it works. I had accidentally disabled ESP and AH protocols
in /etc/sysctl.conf (thinking I had *enabled* them by un-remarking
them, instead).
NEVER configure a machine when it's too late at night. Should
have known better.
BTW, Hans-Joerg, the 3.8 machine is tunneling OK
I went to /usr/ports and did make install clean and am stuck because
sourceforge won't accept FTP requests to get fastjar-v93.
Help. Where might I find this file. I did a google search and don't see any
comments re licensing restrictions, but it seems that none of the usual
[suspect] places
* Theo de Raadt [EMAIL PROTECTED] [2005-11-28 15:38]:
This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
Other people do it for us ;)
http://www.ssh.com/company/newsroom/article/684/
Heck, I wanna meet the person who wrote that. It's brilliant spin.
It's just deliciously
I have an anecdote when it comes to disk in a firewall. My good old
trusty sparc64 firewall's disk had died. At first I didn't notice it
because the packets kept flowing but after a while I noticed some
strange behavior so I decided to login to it and see what was wrong.
Hmmm no login,
On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
Misc,
I'd like to hear how people are using OpenOSPFd and how it's working
out.
It works for most setups. It is not optimal for big ABRs.
Are people using it in any sort of a local-cluster load balancing
method? For
On Tue, Nov 29, 2005 at 07:23:18AM -0600, Julesg wrote:
I went to /usr/ports and did make install clean and am stuck because
sourceforge won't accept FTP requests to get fastjar-v93.
Help. Where might I find this file. I did a google search and don't see any
comments re licensing
Chuck McCollum wrote:
I don't know if this is an issue or not, but the latest 3.8-current
doesn't let my bge0 card perform properly. (Yes, I know it's broadcom...)
I'm not complaining, nor am I requesting anything; I just thought that
I'd let somebody know.
Same results here, with same
On Tue, Nov 29, 2005 at 10:16:10AM -0500, Ray Kohler wrote:
Chuck McCollum wrote:
I don't know if this is an issue or not, but the latest 3.8-current
doesn't let my bge0 card perform properly. (Yes, I know it's broadcom...)
I'm not complaining, nor am I requesting anything; I just
On 11/29/05, Matt Rowley [EMAIL PROTECTED] wrote:
I have recently installed OpenBSD 3.8 from the official CDs.
The Flash drive that worked perfectly in OpenBSD 3.6 and OpenBSD 3.7 now
misbehaves.
Hi, Zvezdan... not to be pedantic, but have you confirmed the flash drive
working on another
Greg,
Again, you raise some interesting issues. I wonder how likely the
catastrophic failures you describe are, versus how likely it is that
things fail in a way where ccd actually helps you. I was hoping someone
else would comment on that, but that doesn't seem to have happened so
far.
So
Robbert Haarman writes:
Greg,
Again, you raise some interesting issues. I wonder how likely the
catastrophic failures you describe are, versus how likely it is that
things fail in a way where ccd actually helps you. I was hoping someone
else would comment on that, but that doesn't seem
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
Greg Oster
Sent: Tuesday, November 29, 2005 12:26 PM
To: Robbert Haarman
Cc: misc@openbsd.org
Subject: Re: Updated CCD Mirroring HOWTO
Robbert Haarman writes:
Greg,
Again, you raise some
The people who they are addressing are bussiness, and they think
in terms of gaining money and loosing money.
Open Source Software is a concept they will not understand easily
since they don't have a concept of interacting with people without
a gain or loss perspective.
It is very important that
Hi all,
I'm looking at the link aggregation feature (man trunk(4)) of OpenBSD
3.8. In my case, I'd like to use it on Ethernet interfaces : should
the switch be configured in a special way or is it level-2 transparent
? I mostly use Cisco 2950 switches... What are the differences between
From: Han Boetes [mailto:[EMAIL PROTECTED]
The people who they are addressing are bussiness, and they think
in terms of gaining money and loosing money.
Open Source Software is a concept they will not understand easily
since they don't have a concept of interacting with people without
a
It is very important that we educate people about what the choice
of open source software means.
From a business perspective I don't see this being very important =)
If the competition is willing to give me an edge on them, be my guests.
/Tony
On 29/11/05, Claudio Jeker [EMAIL PROTECTED] wrote:
On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
Misc,
I'd like to hear how people are using OpenOSPFd and how it's working
out.
It works for most setups. It is not optimal for big ABRs.
Are people using it in any
On 11/28/05, Qv6 [EMAIL PROTECTED] wrote:
On Monday 28 November 2005 04:04 pm, Theo de Raadt wrote:
This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
Other people do it for us ;)
http://www.ssh.com/company/newsroom/article/684/
And... thanks to those of you who
Hi all,
I'm installing mysql from source. I know this is an error that has been posted
several times:
# /usr/local/mysql/bin/mysql -V
/usr/local/mysql/bin/mysql: can't load library
'../libmysql/.libs/libmysqlclient.so.15.0'
# cd /usr/local/mysql/bin
# ./mysql -V
# ./mysql Ver 14.12 Distrib
From: pete wright [mailto:[EMAIL PROTECTED]
Not that I don't think openssh is superior for the fact that it *is*
open software, I bet that the company in question needs software
support lisc. for legal issues. If the software goes tit's up and
costs the company N dollar's it is easier to get
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
Spruell, Darren-Perot
Sent: Tuesday, November 29, 2005 2:57 PM
To: 'misc@openbsd.org'
Subject: Re: #define failure opportunity
From: pete wright [mailto:[EMAIL PROTECTED]
Not that I don't think
I now have 3.8 installed. Very Nice, especially Firefox.
CDROM Artwork is also nicely done.
My question is re Malloc. When and how often does malloc
check the flags in MALLOC_OPTIONS. Once at system init,
on every malloc call, or other? Can I set the options,
run a program, and see if the new
On 11/29/05, Dave Feustel [EMAIL PROTECTED] wrote:
I now have 3.8 installed. Very Nice, especially Firefox.
CDROM Artwork is also nicely done.
My question is re Malloc. When and how often does malloc
check the flags in MALLOC_OPTIONS. Once at system init,
on every malloc call, or other? Can I
[EMAIL PROTECTED] wrote:
Robbert Haarman writes:
Greg,
Again, you raise some interesting issues. I
wonder how likely the
catastrophic failures you describe are, versus
how likely it is that
things fail in a way where ccd actually helps
you. I was hoping someone
else would comment on
On Monday 28 November 2005 08:10 pm, pete wright wrote:
On 11/28/05, Qv6 [EMAIL PROTECTED] wrote:
On Monday 28 November 2005 04:04 pm, Theo de Raadt wrote:
This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
Other people do it for us ;)
Note that you can also set the malloc options from within a program
you are developing. I've found this to be quite useful for adding
a belt and suspenders mode during developement (the use after
free checks in particular).
- todd
I dont think a separated business growing around that would be a good
ideia? I don't really think so. I am not saying this happened to other
projects like FreeBSD, but i switched from FreeBSD to OpenBSD exactly
because much of what i saw the first time i started with FreeBSD i
could not see since
On Tuesday 29 November 2005 19:19, Todd C. Miller wrote:
Note that you can also set the malloc options from within a program
you are developing. I've found this to be quite useful for adding
a belt and suspenders mode during developement (the use after
free checks in particular).
- todd
Monah Baki wrote:
Hi all,
I'm installing mysql from source. I know this is an error that has been posted
several times:
# /usr/local/mysql/bin/mysql -V
/usr/local/mysql/bin/mysql: can't load library
'../libmysql/.libs/libmysqlclient.so.15.0'
# cd /usr/local/mysql/bin
# ./mysql -V
# ./mysql
Original message
Date: Tue, 29 Nov 2005 19:56:33 +0100
From: Han Boetes [EMAIL PROTECTED]
Subject: Re: #define failure opportunity
To: misc@openbsd.org
The people who they are addressing are bussiness, and they think
in terms of gaining money and loosing money.
Open Source Software
On Mon, Nov 28, 2005 at 06:10:17PM -0800, pete wright wrote:
support lisc. for legal issues. If the software goes tit's up and
costs the company N dollar's it is easier to get that money from a
commercial entity whom you have a contract with (or more likely get
money via a insurance broker of
On 11/28/05, Paul Pruett [EMAIL PROTECTED] wrote:
omg what a load of ,
to funny, any coporation stupid enough to fall for that story
by ssh to buy Tectia ssh and not use openssh deserves to be
taken for plus the security issues they will get.
That's because there's a huge number
Hijacking this thread, cuZ now I am worried . . . .
On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
I'd like to hear how people are using OpenOSPFd
I will prbly use OpenOSPFd in the future, but at the moment, my question
is about using OpenBGPd and multiple lines from the same
On Tue, 29 Nov 2005 19:19:01 -0800
Sean Comeau [EMAIL PROTECTED] spake:
On Mon, Nov 28, 2005 at 06:10:17PM -0800, pete wright wrote:
support lisc. for legal issues. If the software goes tit's up and
costs the company N dollar's it is easier to get that money from a
commercial entity whom
On Sat, Nov 26, 2005 at 07:32:58PM -0600, J Moore wrote:
On Sun, Nov 27, 2005 at 01:21:47AM +0100, the unit calling itself frantisek
holop wrote:
and i have a feeling they don't agree that openbsd must have
debian-ugly pages made by c hackers in 1995 who hate html
and think design is
On Tue, 29 Nov 2005, Dave Feustel wrote:
On Tuesday 29 November 2005 19:19, Todd C. Miller wrote:
Note that you can also set the malloc options from within a program
you are developing. I've found this to be quite useful for adding
a belt and suspenders mode during developement (the use
just for the archives: i did define a lifetime for the encryption-suites
some time ago for a former configuration that once worked. deleting these
lifetimes and thus using the defaults now works. so, no actually wrong
config but rather too much config ;)
thanks for the personal replies!
--
50 matches
Mail list logo
