On 05/02/14 05:34, Indunil Jayasooriya wrote:
Dear ALL,
I want to do ssh to a internel webserver from the outside world. ssh port
22 is running in that web server.
SSH port 22 is also ruuning my Openbsd 5.4 ( 32 bit ) firewall to which I
do ssh from the outside world.
So I want to add a rule
Thanks for the support.
I changed the port from to 2224. Now it works. This PF box is behind
a ADSL router. I assume this ADSL router has reserved port . I have no
access to this ADSL router.
These are the rules.
pass in log on $wan_if inet proto tcp from any to $wan_if port 2224 \
Hi!
I've recently upgraded one of my systems to 55 from 54 (btw, for me, the
most painful upgrade since ~3.9; I don't know what happened but
everything was against me), and one of the obstacles was the openldap
upgrade. I was using openldap-2.4 with bdb on 5.4 also, so I thought it
would be a
Hi,
I'm trying to handle dual wan connections on OpenBSD. I see the official PF
load balancing example at main site, clearly.
But my aim is not load balancing. I'm just trying to use first wan connection
for our labs and use second wan connection for wireless users.
Also NAT is needed cause i
Just want to make sure if I get this right.
Patches 007 and 008 (OpenSSL-fix) for 5.4 has been run.
OpenBSD 5.5 install source code patch branch run and compiled.
On both setup I get this:
# openssl version -a
OpenSSL 1.0.1c 10 May 2012
built on: date not available
platform: information not
Lars Bonnesen lars.bonne...@gmail.com writes:
Just want to make sure if I get this right.
Patches 007 and 008 (OpenSSL-fix) for 5.4 has been run.
OpenBSD 5.5 install source code patch branch run and compiled.
On both setup I get this:
# openssl version -a
OpenSSL 1.0.1c 10 May 2012
On Tue, 29 Apr 2014, Philip Guenther wrote:
On Tue, Apr 29, 2014 at 8:17 AM, Donovan Watteau tso...@gmail.com wrote:
I have various mountpoints from a NetApp NFS server with I use on
OpenBSD/amd64 5.5.
$ grep nfs /etc/fstab
server:/vol/foobar /vol/foobar nfs
Hi,
I've seen some typos of Heartbleed but Hearbleed is a good one :)
On Fri, May 02, 2014 at 12:20:55PM +0200, Lars Bonnesen wrote:
As far as I understand, OpenSSL 1.0.1g is needed in order to be home same
reg. heartbleed.
I know that OpenBSD's OpenSSL is a fork, and this is maybe where
Hi,
A small typo in parse.y :
--- parse.y.origSat Apr 26 10:12:32 2014
+++ parse.y Sat Apr 26 10:13:55 2014
@@ -228,7 +228,7 @@
asnumber : NUMBER{
/*
-* Accroding to iana 65535 and 4294967295 are
reserved
Under 5.4-stable, following configuration sets up a working connection
for me:
/etc/hostname.pppoe0:
inet 0.0.0.0 255.255.255.255 NONE \
pppoedev vlan10 authproto pap \
authname 'XXX' authkey 'YYY' up
dest 0.0.0.1
!/sbin/route add default -ifp pppoe0 0.0.0.1
#eof
Hello,
What SIP clients are you using day by day in OpenBSD?
I tried pjsua and works fine with voice only. I am interested in another
clients, possibly with video option.
Thank you.
Hi,
after upgrading to 5.5 I noticed that the firmware package for my
wireless card has no equivalent.
Luckily, the instructions are crareful not to have you remove firmware
packages.
However I wonder what happened to it, has it become obsoleted by another
package?
Specifically:
after upgrading to 5.5 I noticed that the firmware package for my
wireless card has no equivalent.
Luckily, the instructions are crareful not to have you remove firmware
packages.
However I wonder what happened to it, has it become obsoleted by another
package?
Specifically:
Hi,
I supposedly have an IPv6 capable connection but it doesn't negotiate
IPv6 for some reason. I'm inquiring if I need to turn on any sysctl's
or something...
#net.inet6.ip6.accept_rtadv=1 # 1=Permit IPv6 autoconf (forwarding
must be 0)
This one seems logical but my gateway is a soekris and
On Fri, May 02, 2014 at 03:51:50PM +0200, Peter J. Philipp wrote:
Hi,
I supposedly have an IPv6 capable connection but it doesn't negotiate
IPv6 for some reason. I'm inquiring if I need to turn on any sysctl's
or something...
#net.inet6.ip6.accept_rtadv=1 # 1=Permit IPv6 autoconf
On 05/02/14 16:13, Stefan Sperling wrote:
OpenBSD doesn't support IPv6 autoconf on routers (i.e if forwarding
is enabled). Some ISPs have started using autoconf to assign a
global prefix for use on the WAN link. This violates early IPv6 RFCs
which said that a router cannot do autoconf. There
On 02/05/14 10:24 AM, Peter J. Philipp wrote:
On 05/02/14 16:13, Stefan Sperling wrote:
OpenBSD doesn't support IPv6 autoconf on routers (i.e if forwarding
is enabled). Some ISPs have started using autoconf to assign a
global prefix for use on the WAN link. This violates early IPv6 RFCs
which
On Fri, May 2, 2014 at 4:44 PM, Riccardo Mottola riccardo.mott...@libero.it
wrote:
Hi,
after upgrading to 5.5 I noticed that the firmware package for my wireless
card has no equivalent.
Luckily, the instructions are crareful not to have you remove firmware
packages.
However I wonder what
On Fri, May 02, 2014 at 12:53:05PM +0530, Indunil Jayasooriya wrote:
Thanks for the support.
I changed the port from to 2224. Now it works. This PF box is behind
a ADSL router. I assume this ADSL router has reserved port . I have no
access to this ADSL router.
is used by a
Hi,
Axel wrote:
Have you checked here : http://firmware.openbsd.org/firmware/5.5/ ?
I can find this file: wpi-firmware-3.2p1.tgz
no sorry, I missed that. Platform-independent firmware then. This is why
fw_update did not upgrade it, I already have the latest version.
Everything is fine then
Unless I'm doing something stupid, sshd seems to be broken in
today's snapshot.
From a Linux machine:
$ ssh testing
Connection to testing closed by remote host.
Connection to testing closed.
From the server's point of view:
# dmesg | head -1
OpenBSD 5.5-current (GENERIC.MP) #95:
On Fri, May 2, 2014 at 8:42 AM, Liviu Daia liviu.d...@gmail.com wrote:
Unless I'm doing something stupid, sshd seems to be broken in
today's snapshot.
From a Linux machine:
$ ssh testing
Connection to testing closed by remote host.
Connection to testing closed.
From the
On 2 May 2014 14:54, thors...@bonck.net wrote:
Under 5.4-stable, following configuration sets up a working connection
for me:
/etc/hostname.pppoe0:
inet 0.0.0.0 255.255.255.255 NONE \
pppoedev vlan10 authproto pap \
authname 'XXX' authkey 'YYY' up
dest 0.0.0.1
Pleased you're flattered ;)
Found the last one to be really helpful and an enjoyable read when I was
first getting into OpenBSD.
HFSC is a complex algorthm and it took a *lot* of trail and error to
understand all the parameters and their interactions, and so with the
recent syntax changes
previously on this list Axel contributed:
Specifically:
wpi-firmware-3.2p1 firmware binary images for wpi(4) driver
I checked in the ports and there appears to be none!
ftp://ftp.openbsd.org/pub/OpenBSD/5.5/packages/i386/
Riccardo
Hi Ricardo,
Have you checked here :
On 2 May 2014, Jeremy Evans jeremyeva...@gmail.com wrote:
On Fri, May 2, 2014 at 8:42 AM, Liviu Daia liviu.d...@gmail.com wrote:
Unless I'm doing something stupid, sshd seems to be broken in
today's snapshot.
From a Linux machine:
$ ssh testing
Connection to testing closed
The recent news elsewhere about Debian no longer actively testing
on sparc plaforms got me to thinking. It's been very handy over
the years to be able to test programs on both big-endian and little-endian
machines (for the same reason that it's good to test across different
compilers and
If one is to consider only hardware that is still being manufactured
(ie: bought new), what are our options now?
The only big-endian systems you can buy new nowadays, would be
Octeon-based systems. Some of them can run OpenBSD.
The question is two-fold: In one way I'm asking about things that
OpenBSD will currently run on, and in the other just asking about
what's available for hardware regardless of whether OpenBSD will
currently run on it.
In general, MIPS like Cavium Octeon is BE, supported and currently
If one is to consider only hardware that is still being manufactured
(ie: bought new), what are our options now?
The only big-endian systems you can buy new nowadays, would be
Octeon-based systems. Some of them can run OpenBSD.
Oh good god. Just go to ebay and buy HP J6700/6750 or Sun
On 05/02/14 16:13, Stefan Sperling wrote:
Hi again,
I just had a few more questions...
OpenBSD doesn't support IPv6 autoconf on routers (i.e if forwarding
is enabled). Some ISPs have started using autoconf to assign a
global prefix for use on the WAN link. This violates early IPv6 RFCs
On 2.5.2014. 14:54, thors...@bonck.net wrote:
Under 5.4-stable, following configuration sets up a working connection
for me:
/etc/hostname.pppoe0:
inet 0.0.0.0 255.255.255.255 NONE \
pppoedev vlan10 authproto pap \
authname 'XXX' authkey 'YYY' up
dest 0.0.0.1
On Fri, May 02, 2014 at 08:24:27PM +0200, Peter J. Philipp wrote:
On 05/02/14 16:13, Stefan Sperling wrote:
Hi again,
I just had a few more questions...
OpenBSD doesn't support IPv6 autoconf on routers (i.e if forwarding
is enabled). Some ISPs have started using autoconf to assign a
maybe you could try to put pppoe0 on rl0, untag vlan10 on switch port
where rl0 is connected and tag other vlans on the same port ...
Sadly, that is not possible for me.
rl0 is directly connected to a Ubiquiti NanoStation M, which is setup as
a blackbox transparent bridge by my ISP.
vlan id 10
On Fri, May 02, 2014 at 08:14:40PM +, Peter J. Philipp wrote:
On Fri, May 02, 2014 at 09:14:16PM +0200, thors...@bonck.net wrote:
maybe you could try to put pppoe0 on rl0, untag vlan10 on switch port
where rl0 is connected and tag other vlans on the same port ...
Sadly, that is not
Em 02-05-2014 18:18, Thorsten Bonck escreveu:
On Fri, May 02, 2014 at 08:14:40PM +, Peter J. Philipp wrote:
On Fri, May 02, 2014 at 09:14:16PM +0200, thors...@bonck.net wrote:
maybe you could try to put pppoe0 on rl0, untag vlan10 on switch port
where rl0 is connected and tag other vlans
On 05/02/14 20:57, Stefan Sperling wrote:
As Brad suggested, have you tried wide-dhcpv6 from ports?
You can probably use dhcp6c to put the dynamically assigned prefix
on your internal LAN interface. In the dhcp6c.conf man page there's
an example using ppp0 and ne0 which you could try
37 matches
Mail list logo
