ldpd in OpenBSD 4.6
Hello, I noticed the release notes of 4.6 referred to ldpd, and label switching functionality, but I haven't found any of the binaries or man pages. Did this feature not make the release? Thanks, Nick
Re: MPLS (Yay!)
Me too! I can't wait to play with this. Thanks guys! N On Sun, Apr 27, 2008 at 8:00 PM, Aaron Glenn [EMAIL PROTECTED] wrote: On Sun, Apr 27, 2008 at 4:28 PM, Insan Praja SW [EMAIL PROTECTED] wrote: Hi Misc@, Last weekend I took a peek at daily changelog. Suprising enough to see that MPLS actually made it. Wow! OpenBSD maybe the only multiplatform OS, that could turn a desktop into a MPLS router.. Great Job guys! (I wonder when you guys start on 802.1ad 802.1ah :D) there is a significant amount of work to be done to make OpenBSD a usable LER. but yeah, it's very exciting...to me at least. aaron.glenn
Re: Trouble using :peer modifier correctly
Does it matter that the subnet mask is configured as a /30, or is it the media type that controls this behavior? Is there any way to use this mechanism on an ethernet interfaces? On Mon, Mar 31, 2008 at 12:16 AM, Theo de Raadt [EMAIL PROTECTED] wrote: We're trying to use the :peer modifier to minimize the number of macros in our pf configuration files. For some reason we can't get it to work: # cat /etc/pf.conf set skip on lo block log pass in quick on fxp0 inet proto tcp from fxp0:peer to fxp0 port ssh # pfctl -n -f /etc/pf.conf no IP address found for fxp0:peer /etc/pf.conf:5: could not parse host specification :peer Translates to the point to point interface's peer ad- dress(es). That won't work. Your fxp is not a point-to-point interface. It is a broadcast interface. It has many peers, not one.
Re: [OT] cisco switch, router and firewall suggestions
You should be deploying OBSD as routers, but since it's for learning :P. Buy the Cisco 2900XL, as the 1900 runs CatOS and is only 10meg. You can use the 2900XL as a production switch for your network (I do) and the fact that it runs IOS will be good for learning. For routers just use Dynagen, which is an IOS emulator, and will allow you to easily build labs. More info can be found here: dynagen.org/*tutorial*.htm. You need to provide your own IOS image for it, but I'm sure you'll be able to find one. If not pick up a Cisco 2610 or a Cisco 3640. Cheers, Nick On 8/9/07, Chris [EMAIL PROTECTED] wrote: I'm trying to buy (from ebay) a cisco switch, router and pix firewall for learning purposes. All these will be connected to a Linksys ADSL modem which also has wireless capability. The OSs will be OpenBSD4.1, Windows XP and Linux distros. I will probably also try IPv6 (not sure if that has got anything to do with this). I had a look at cisco catalyst 1900 series switch and it looked ok. Could anyone recommend anything that would be great for leaning purposes and also be able to handle daily Internet traffic? Thanks.
Re: help needed with routed problem
I'm scared. You need to use ripv1 as opposed to ripv2 and support network masks? On 5/29/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi, Thanks for your reply. Quoting Stuart Henderson [EMAIL PROTECTED]: routed is an old RIP daemon. you almost certainly don't want it. Do you know of any other way to publish/learn RIPv1 advertisements ? I wish ripd would deal with this, but it seems that it doesn't. Regards, H This message was sent from 30Gigs.com. If you believe that this message is unsolicited [SPAM] in nature, please send the complete SMTP headers to [EMAIL PROTECTED] and we will take immediate action to rectify the problem.
Re: ospfd participating in a stub area
The passive keyword will advertise a network as a stub area, however as the interface is passive it cannot form a neighbor relationship with any other router in that area, or on that interface. From the man pages it would appear there is no way to specify an area as stub however Claudio or Henning would be able to help you out more than I would. Best Regards, Nick Lars Hansson wrote: Nigel Roberts wrote: Is it possible to configure an area in ospfd.conf to be a stub area? Yes, use the passive option. It's in the ospfd.conf man page. --- Lars Hansson
Re: Merchandise idea: OpenBSD mug
Please correct me if I'm wrong, but he's not marketing a brand, he's fulfilling a market request. He's keeping some of the proceeds that he earned by spending his time, and initially, his money, so that we have these products available. It doesn't seem quiet unreasonable Nick Deanna Phillips wrote: Samurai Chef writes: Because I have a risk involved. I am placing my own money up and spending my time to fill a market request. Therefore I ^ Aha, that's where I thought this was going. So your time spent marketing a brand created by unpaid volunteers is worth money. will keep some of the money to cover my costs and have a little profit
Re: Jacek Artymiak
Here's the website for the book: http://www.firewallwarrior.net/ If you read the google group he gives updates just fyi. Nick Chris 'Xenon' Hanson wrote: Henning Brauer wrote: * Siju George [EMAIL PROTECTED] [2006-11-28 17:56]: If anyone is in touch with Jacek Artymiak ( the PF book author ) or know anything about his health Please let me know. apparently he's fine, mailed me a few days ago Tell him we're all eagerly awaiting an updated printing of his book. ;)
Re: what is openripd?
I've done software QA in the past. I can help test it if you can point me at a place to d/l it and toss me the documentation. I have a couple quagga routers, cisco router, juniper, and some d-link layer3 switches I can use. Michele 'mydecay' Marchetto wrote: Il giorno lun, 16/10/2006 alle 12.49 -0700, Bryan Irvine ha scritto: I just noticed on the opencon website, a mention of openripd. Is this a routing daemon along the lines of openospf, and openbgp? If so, I'm excited. I'm in an entirely rip v2 environment and have long coveted the bgp/ospf folks. :-) I've been developing it, with the help of some official developers and it is in testing phase. Maybe there will be some news in the next weeks.
CARP Backup Interfaces
Hi, I have two firewalls running CARP and pfsync for high availability. The physical interfaces do not have IP addresses, only the CARP interface do. The problem is is that the backup CARP interface still needs to be able to source and forward traffic. Is this possible? Nick
