> On Mar 13, 2019, at 6:05 AM, Stuart Henderson <s...@spacehopper.org> wrote: > > On 2019-03-13, Mehma Sarja <mehmasa...@gmail.com> wrote: >> My current setup is basic firewall with DHCP, NAT and routing. But there is >> power in the simplicity. When something goes wrong -and it has happened >> twice due to power failures, there is so much less to deal with to bring >> the box back up. > > A standard OpenBSD installation is somewhat susceptible to power failures > though. Especially fail/back/fail again during the startup procedure while > it's relinking libraries in random order. Not saying it can't be used but > some thought is needed if you know that it's *likely* to be powered off > without shutdown, or if the power is flaky.
If you want to run a system that is resistant to damage from power faults, take
a look at Resflash.
https://stable.rcesoftware.com/resflash/
It's more tolerant of power faults since the running system has all of its
actual disks in read-only mode and anything writable is done to mfs-based
mounts, including /usr/lib and /usr/libexec during the re-linking process. It
also has a very nice upgrade and rollback process, useful if you're maintaining
remote routers/firewalls.
Don't ask for support on this list since it's not base OpenBSD, but the author
is pretty good about helping people out.
--Paul
smime.p7s
Description: S/MIME cryptographic signature
