Re: Postfix race condition at boot

2008-09-23 Thread Karl O. Pinc
On 07/14/2008 12:47:40 PM, Karl O. Pinc wrote: I've an OpenBSD box that's been running postfix for a few years, strictly as a send-only mta, and every night the box gets rebooted. Every couple of months postfix does not come up on reboot. For the record, it seems the problem has something to

Re: assembly for x86

2008-09-23 Thread Gábri Máté
Great book indeed! Thank You! 2008/9/23 Mic J [EMAIL PROTECTED] http://www.drpaulcarter.com/pcasm/ Gratis book. Uses nasm as assembler. and you can use yasm (BSD license) if you want. Mic

Re: How to add new modules to httpd?

2008-09-23 Thread Cezary Morga
Dnia wtorek, 23 wrze6nia 2008 01:20, napisa3e6: If so, it seems that the only remaining module I would need is mod_proxy_html. Do I need to recompile httpd to get this this into the build? (if so, how?) Or can I create a .so and just load it? I think mod_prox_html is non-standard module. Have

Re: newer net-snmp ports are not working with mrtg anymore

2008-09-23 Thread LÉVAI Dániel
Stuart Henderson wrote: On 2008/09/22 02:36, Stuart Henderson wrote: seems to work on sparc64, amd64, arm. any i386 testers around? compiling now. Thanks! Daniel -- LEVAI Daniel PGP key ID = 0x4AC0A4B1 Key fingerprint = D037 03B9 C12D D338 4412 2D83 1373 917A 4AC0 A4B1

Re: Need Help badly - PF related

2008-09-23 Thread John Jackson
Comments are inline. On Sun, Sep 21, 2008 at 10:00:58PM -0700, Parvinder Bhasin wrote: I have users that can access the website fine (75.44.229.18) and some user that complain they can't access it. I don't know what gives. I have asked on the list for help but haven't still resolved

Re: OpenBSD + isakmpd + VPN concentrator 3060

2008-09-23 Thread Toni Mueller
Hi, On Sun, 21.09.2008 at 16:04:11 +0200, Mariusz Makowski [EMAIL PROTECTED] wrote: a.a.a.a_net obsd b.b.b.b_public_ip --- c.c.c.c_public_ip cisco d.d.d.d_net What i wan't to achiev is: - comunication from a.a.a.a_net to d.d.d.d_net -- isakmpd.conf -- [General] Listen-on=

Re: assembly for x86

2008-09-23 Thread Brynet
I found this article to be exceptionally useful when using OpenBSD as a primary development platform: http://www.phiral.net/openbsdasm.htm Hope that helps, the first few paragraphs of it anyway... :) P.S: Both Intel and AMD have documentation available, they might be a better start:

Re: How to add new modules to httpd?

2008-09-23 Thread Cezary Morga
Dnia wtorek, 23 wrze6nia 2008 01:20, Don Jackson napisa3: If so, it seems that the only remaining module I would need is mod_proxy_html. Do I need to recompile httpd to get this this into the build? (if so, how?) Or can I create a .so and just load it? I think mod_prox_html is non-standard

Re: recommendation for router (COMMELL) Liantec

2008-09-23 Thread Wim Vandeputte
hey, On Sep 17, 2008, at 12:49 AM, Aaron Stellman wrote: This commell site is suspiciously similar to Liantec site; moreover, this commell device is very similar to EMB-5740 Liantec. I assume these two companies are owned by same individuals. I still can't find any places in US that sell

Re: assembly for x86

2008-09-23 Thread Gábri Máté
Thank You! Althought i'm a total beginner with assembly, but these will come in handy when i'll get the picture. 2008/9/23 Brynet [EMAIL PROTECTED] I found this article to be exceptionally useful when using OpenBSD as a primary development platform: http://www.phiral.net/openbsdasm.htm

Re: assembly for x86

2008-09-23 Thread ropers
2008/9/23 Brynet [EMAIL PROTECTED]: I found this article to be exceptionally useful when using OpenBSD as a primary development platform: http://www.phiral.net/openbsdasm.htm Lots of interesting stuff there: http://www.phiral.net/ Especially the last link on that page. I thought I'd never see

Re: Using trunk(4) to put a router in a switch ring

2008-09-23 Thread Pete Vickers
1. create a layer 2 (switched) ring, using spanning tree. - completely independent of openbsd box 2. connect your (dual NIC) openbsd box to 2 separate switches for redundancy, and add both NICs to a trunk group. - redundancy of switch, cabling and NICs. [EMAIL PROTECTED]

Problems to compile squid with ldap auth on openBSD 4.3

2008-09-23 Thread Ricardo Augusto de Souza
Hi, I got some errors trying to compile squid with ldap auth on openbsd 4.3. I used squid from ports and compiled its source and I got same error when I add --enable-auth=basic digest LDAP \ and --enable-basic-auth-helpers=NCSA YP LDAP \ to ./configure. Note I have already installed

Re: Can one dd to /dev/rwd0c?

2008-09-23 Thread Andy Hayward
2008/9/21 Sunnz [EMAIL PROTECTED]: This is running off a OpenBSD 4.3 CD, there are no intention to actually destroy the hard disk in any way, just erasing the data off the hard disk so that it can be reused, re-sold, whatever. The data are not some military top secret, but it is interesting to

Re: Using trunk(4) to put a router in a switch ring

2008-09-23 Thread Dave Wilson
Pete Vickers wrote: 1. create a layer 2 (switched) ring, using spanning tree. - completely independent of openbsd box 2. connect your (dual NIC) openbsd box to 2 separate switches for redundancy, and add both NICs to a trunk group. - redundancy of switch, cabling and NICs. Pete, thanks for

Re: recommendation for router (COMMELL) Liantec

2008-09-23 Thread Diana Eichert
On Tue, 23 Sep 2008, Wim Vandeputte wrote: Liantec (and Comell) is a company tricky to deal with, they are shipping boards but you need to order large quantities. They don't seem to have a very solid distributor network. My last order took about 4 months to get a hold off... I know of two

Re: Problems to compile squid with ldap auth on openBSD 4.3

2008-09-23 Thread Stuart Henderson
On 2008-09-23, Ricardo Augusto de Souza [EMAIL PROTECTED] wrote: I got some errors trying to compile squid with ldap auth on openbsd 4.3. I used squid from ports and compiled its source and I got same error when I add --enable-auth=basic digest LDAP \ and --enable-basic-auth-helpers=NCSA YP

PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
I was used to do this easily but it4s failing now. Xl0 = 10.10.100.254 Xl1=internet This is my /etc/pf.conf # interface externa WAN ext_if=xl1 # interface interna LAN int_if=xl0 #set skip on lo #scrub in rdr on xl1 proto tcp from any to xl1 port 8101 - 10.10.100.21 port 8101 rdr

RES: Problems to compile squid with ldap auth on openBSD 4.3

2008-09-23 Thread Ricardo Augusto de Souza
Still the same error. Making all in LDAP if cc -DHAVE_CONFIG_H -I. -I/usr/ports/www/squid/w-squid-2.7.STABLE3/squid-2.7.STABLE3/helpers/basic_au th/LDAP -I../../../include -I/usr/ports/www/squid/w-squid-2.7.STABLE3/squid-2.7.STABLE3/include -O2 -pipe -D_REENTRANT -MT squid_ldap_auth.o -MD -MP

RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
I was monitoring tcpdump -i xl0, disabled pf and I try to access http://10.10.100.254:81 and I saw this: 13:30:38.976708 10.10.100.254.81 10.10.0.135.2321: R 0:0(0) ack 1 win 0 (DF) 13:30:40.007811 802.1d RSTP config flags=7cLEARNING,FORWARDING,AGREED role=DESIGNATED root=8000.0:f:cb:56:80:a0

Re: Need Help badly - PF related

2008-09-23 Thread Parvinder Bhasin
I have done this already for the sake of troubleshooting. I have tried removing BLOCKs , I have tried removing anti-spoof , I have tried re-writing the redirector by putting pass but for some reason PF doesn't seem to like packets coming from some DSL links. I have also tried various

Re: assembly for x86

2008-09-23 Thread Jonathan Schleifer
Am 22.09.2008 um 13:45 schrieb Gabri Mati: Dear List, I'd like to study the assembly language of the x86 architecture. I've searched for books, but there are a lot of them. Could you please recommend me a good writer/book about this topic? Thank You! Google for 386INTEL.TXT and

Re: Problems to compile squid with ldap auth on openBSD 4.3

2008-09-23 Thread Giancarlo Razzolini
Ricardo Augusto de Souza escreveu: Hi, I got some errors trying to compile squid with ldap auth on openbsd 4.3. I used squid from ports and compiled its source and I got same error when I add --enable-auth=basic digest LDAP \ and --enable-basic-auth-helpers=NCSA YP LDAP \ to ./configure.

RES: Problems to compile squid with ldap auth on openBSD 4.3

2008-09-23 Thread Ricardo Augusto de Souza
I already tryied the -current ports and I got the same error. Please send me the patch you used. -Mensagem original- De: Giancarlo Razzolini [mailto:[EMAIL PROTECTED] Em nome de Giancarlo Razzolini Enviada em: terga-feira, 23 de setembro de 2008 14:34 Para: Ricardo Augusto de Souza Cc:

RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
# tcpdump tcpdump: Failed to open bpf device for xl0: No such file or directory # sync # PFFF -Mensagem original- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Em nome de Ricardo Augusto de Souza Enviada em: terga-feira, 23 de setembro de 2008 13:31 Para:

Re: assembly for x86

2008-09-23 Thread guede
ropers wrote: Lots of interesting stuff there: http://www.phiral.net/ Especially the last link on that page. I thought I'd never see that again, as it's vanished from the Web virtually everywhere else. ??? Hasn't vanished at all.

[OT] was Re: assembly for x86

2008-09-23 Thread ropers
2008/9/23 guede [EMAIL PROTECTED]: ropers wrote: Lots of interesting stuff there: http://www.phiral.net/ Especially the last link on that page. I thought I'd never see that again, as it's vanished from the Web virtually everywhere else. ??? Hasn't vanished at all. Sorry, maybe I was

RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
I am lost. Nat is working but I cant do any single rdr. Any clue? -Mensagem original- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Em nome de Ricardo Augusto de Souza Enviada em: terga-feira, 23 de setembro de 2008 13:31 Para: misc@openbsd.org Assunto: RES: PF cannot RDR connections

Re: PF cannot RDR connections

2008-09-23 Thread Wade, Daniel
Your problem, as I stated off list, is that you are rdr to and from hosts on the same subnet. These are all 10.10/16 addresses. 10.10.100.254 is an address on the firewall Here's what's happening. 10.10.0.135.4552 - 10.10.100.254.81 Which get's switched to 10.10.0.135.4552 - 10.10.0.2.81 Then

RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
I tryied to do this rdr Just to test. Here is was I really need then: # pfctl -sn nat on xl1 inet from 10.10.0.0/16 to any - 200.162.41.34 rdr pass on xl1 inet proto tcp from any to (xl1) port = 8101 - 10.10.100.21 port 8101 # So? Its not the problem as u related. -Mensagem

Re: PF cannot RDR connections

2008-09-23 Thread John Jackson
If that's the case the original poster should take a look: http://openbsd.org/faq/pf/rdr.html#reflect I've had to solve similar problems by NAT'ing the internal network(s) to the firewalls internal interface IP so that traffic hitting the internal server appears to come from the firewall

ENC: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
I have to links to the internet. I am testing it from other link and It4s not working. As I told before, I had this rules working on oldest version of openBSD ( not in the same hardware ). Now my boss told me to replace openBSD cause I cant do a single rdr that worked in the past. That sucks.

RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
Last tests: # tcpdump -i xl1 'port 8101' tcpdump: listening on xl1, link-type EN10MB 18:20:52.383277 200217182188.user.veloxzone.com.br.49793 smtp.cmtsp.com.br.8101: S 2769173131:2769173131(0) win 8192 mss 1460,nop,wscale 2,nop,nop,sackOK (DF) 18:20:55.417702

Re: assembly for x86

2008-09-23 Thread Maxime DERCHE
On Tue, 23 Sep 2008 19:23:25 +0200 Jonathan Schleifer [EMAIL PROTECTED] wrote: Am 22.09.2008 um 13:45 schrieb Gabri Mati: Dear List, I'd like to study the assembly language of the x86 architecture. I've searched for books, but there are a lot of them. Could you please recommend me a

Re: RES: PF cannot RDR connections

2008-09-23 Thread Mark Rolen
Ricardo Augusto de Souza wrote: Last tests: # tcpdump -i xl1 'port 8101' tcpdump: listening on xl1, link-type EN10MB 18:20:52.383277 200217182188.user.veloxzone.com.br.49793 smtp.cmtsp.com.br.8101: S 2769173131:2769173131(0) win 8192 mss 1460,nop,wscale 2,nop,nop,sackOK (DF) WHAT IS

RES: RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
Yes i am sure. I am connected to internet using openbsd as geteway. -Mensagem original- De: Mark Rolen [mailto:[EMAIL PROTECTED] Enviada em: terga-feira, 23 de setembro de 2008 18:42 Para: misc@openbsd.org; Ricardo Augusto de Souza Assunto: Re: RES: PF cannot RDR connections Ricardo

Re: RES: PF cannot RDR connections

2008-09-23 Thread Stuart Henderson
On 2008-09-23, Ricardo Augusto de Souza [EMAIL PROTECTED] wrote: No one can help me on this? I have just one hour to finish this 'job'. Maybe someone from http://www.openbsd.org/support.html#Brazil Help me please folks, I need this rdr working TODAY. Sorry, free voluntary support doesn't

RES: RES: PF cannot RDR connections

2008-09-23 Thread Ricardo Augusto de Souza
Thanks but i need to do that by myself. As I Told u, I had those rules working on old versions. # tcpdump -n -e -ttt -i pflog0 tcpdump: listening on pflog0, link-type PFLOG Sep 23 19:19:23.465003 rule 0/(match) rdr in on xl1: 189.84.171.36.1439 10.10.100.21.8101: [|tcp] (DF) Sep 23

Recruitment

2008-09-23 Thread Arabian Centers
To: HR Manager C/O the General Manager (%COMPANY NAME%) Tel: (%TELE%) Fax: (%FAX%) (%LOCATION%) (%P.O.BOX%) E-mail: misc@openbsd.org (%WEBSITE%) Dear Respected Further to your International Local recruitment plan; Arabian Centers the Largest Recruitment Group in the region is the

Re: Need Help badly - PF related

2008-09-23 Thread Parvinder Bhasin
Thanks a lot guys, I seem to have resolved the problem. So in short it seems like the netopia 30xx series router was doing some funky thing with packets which PF was rightfully rejecting (as they were not normalized). This is just my theory. Once I converted my openbsd box to the router

Re: Can one dd to /dev/rwd0c?

2008-09-23 Thread Brian Keefer
On Sep 20, 2008, at 10:02 PM, Sunnz wrote: OK I am trying to completely erase the data of a hard disk so I though I can just do `dd if=/dev/arandom of=/dev/rwd0c` as to my understanding that is the entire hard disk (slice c) of wd0 in 'raw' mode? But that dd refuse to do it. snip This is

Re: Can one dd to /dev/rwd0c?

2008-09-23 Thread Ted Unangst
On Tue, Sep 23, 2008 at 11:28 PM, Brian Keefer [EMAIL PROTECTED] wrote: I booted a Sunfire V120 off a 4.4 snapshot CD and dd if=/dev/zero of=/rsd0 was humming along quite nicely when I left this evening. You may want to go back and fix both your typos.