PF stress testing

to provide more information, let me know. And thanks for any answers. *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems http://www

RE: scrub reassemble tcp rule

PROTECTED] Sent: Friday, August 22, 2003 3:37 PM To: Adam Getchell Cc: [EMAIL PROTECTED] Subject: Re: scrub reassemble tcp rule On Fri, Aug 22, 2003 at 03:28:52PM -0700, Adam Getchell wrote: > scrub on $ext_if all reassemble tcp > > Doesn't work. Define "doesn't work".

scrub reassemble tcp rule

Hi all, This rule: scrub on $ext_if all reassemble tcp Doesn't work. I've looked at the man pages, and it seems as though it should. What am I missing? *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer

OpenBSD/pf firewalls

one a few departments), I'd be pleased to hear of it. And if there's an appropriate source for a support contract (to funnel funds back into OpenBSD/pf), let me know that as well. I'd like to have enough information to answer an RFP. Thanks! *** * Adam Ge

RE: Adaptive timeouts

27;m having fun flustering their engineers when they show up for demos.) *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems http://www

Adaptive timeouts

stand how this works. ******* * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems http://www.hr.ucdavis.edu/ *** "Invincibility is in ones

RE: intrusion detection

T box, which does have an interface. *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems http://www.hr.ucdavis.edu/ *** "Invincibility is in oneself, vulnerability in the opponent." -- Sun Tzu

RE: Short question

Anders, A data point: I helped someone set up on OpenBSD 3.1-current a Pentium 200 with 32MB of RAM to filter 150+ Windows workstations on our University's LAN with a typical 20 line ruleset, and the box hasn't dropped below 94% idle even with clients simultaneously downloading Windows service pa

RE: Lost DNS after upgrade to 3.2 -- FIXED

es someone else to avoid this simple error. *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems http://www.hr.u

Lost DNS after upgrade to 3.2

g all # pass in on ext0 proto tcp from any to ext0 port 22 keep state # pass out on ext0 proto { tcp, udp } all keep state It's mostly working, so it's something subtle ... *** * Adam Getchell [EMAIL PROTECTED] * System

RE: Logging packet contents

Thanks! I will try it! > -Original Message- > From: Daniel Hartmeier [mailto:daniel@;benzedrine.cx] > Sent: Friday, November 08, 2002 12:31 PM > To: Adam Getchell > Cc: [EMAIL PROTECTED] > Subject: Re: Logging packet contents > > > On Fri, Nov 08, 2002 at 12:1

Logging packet contents

your university diploma here!" Also, this method won't work on a transparent bridge unless there's a third NIC configured with an IP address, correct? Thanks, ******* * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer

BINAT troubles -- SOLVED!

und any for NAT. When I have something I'll have y'all look at it. Thanks for the help! *** * Adam Getchell [EMAIL PROTECTED] * System Architect/Programmer (530) 752-1584 * Human Resources Information Systems

NAT working, BINAT not working

BLISHED:ESTABLISHED udp $bdc_private_ip:1077 -> $bdc_public_ip:1077 -> 169.237.1.250:53   1:0 udp $bdc_private_ip:1077 -> $bdc_public_ip:1077 -> 169.237.250.250:53   1:0 The translation to $bdc_public_ip works, but the network connectivity is lost. As you can see, there are