Re: ipsec vpn?

2007-08-16 Thread Markus Friedl
On Thu, Aug 16, 2007 at 06:43:34PM -0700, Steve B wrote: > I made a few changes and did some more testing this evening. > > 1. I changed the /etc/ipsec.conf to bring it in line with the Greenbow > default transforms that Hans-Joerg recommened. > > # cat /etc/ipsec.conf > ike dynamic esp tunnel fr

Re: ipsec vpn?

2007-08-16 Thread Hans-Joerg Hoexer
On Thu, Aug 16, 2007 at 06:43:34PM -0700, Steve B wrote: > I made a few changes and did some more testing this evening. > > 1. I changed the /etc/ipsec.conf to bring it in line with the Greenbow > default transforms that Hans-Joerg recommened. > > # cat /etc/ipsec.conf > ike dynamic esp tunnel fr

Connection Limit Error

2007-08-16 Thread Matt Bauer
I have an OpenBSD 4.0/amd64 server that runs Apache 2.2.2 that gets a good number of hits ~1,000,000 a month. I recently had to add NFS serving to its list of duties and have run into problems since. In my Apache logs I started to received the following errors every couple of seconds. [T

Re: ipsec vpn?

2007-08-16 Thread Steve B
I made a few changes and did some more testing this evening. 1. I changed the /etc/ipsec.conf to bring it in line with the Greenbow default transforms that Hans-Joerg recommened. # cat /etc/ipsec.conf ike dynamic esp tunnel from any to 192.168.1.0/24 \ main auth hmac-sha1 enc 3des group modp1024

vlan on vr: one way traffic trouble

2007-08-16 Thread Jacob Yocom-Piatt
my firewall currently has a mobo-integrated vr0 interface with a vlan0 on the same interface but HTTP connections traversing vr0->vlan0 hang while similar connections going vlan0->vr0 work fine. the firewall plugs into a managed vlan capable switch (linksys srw2024p) that accepts untagged (vlan

Hoststated SSL Relay Issue Resolved?

2007-08-16 Thread Michael Taggart
Hello everyone. Recently I have made it a project to get hoststated running on my OpenBSD firewalls. Before I had a php script I wrote to accomplish this task of L7 health checking and let's just say it was less than efficient. Anyway I was able to get the whole thing running correctly, but I noti

panic when inserting an usb flash card reader

2007-08-16 Thread Mattieu Baptiste
Hi all, My laptop crashed on -current when I plug my usb card reader. I get this: usbd_transfer: has old buffer! usb_insert_transfer: xfer=0xd1949300 not busy 0x4f4e5155 umass1: Invalid CSW: sig 0xd18f8700 should be 0x53425355 panic: ehci_device_clear_toggle: queue active Stopped at Debugger

Re: OpenBSD Berlin?

2007-08-16 Thread Vim Visual
(Sorry for the spam, but I do not have all email addresses of all people interested in Obsd-Berlin) Well... it was a bit of a damp squib, wasn't it? From the posts only Gabriel and I popped up! But of course, we can understand, many of you had some unforeseen events and had to cancel. No problemo

Re: USB drive as a tape device

2007-08-16 Thread Joachim Schipper
On Thu, Aug 16, 2007 at 06:37:57PM +0930, Edwards, David (JTS) wrote: > > -Original Message- > > From: Stuart Henderson [mailto:[EMAIL PROTECTED] > > Sent: Thursday, 16 August 2007 6:16 PM > > To: Edwards, David (JTS) > > > > On 2007/08/16 08:53, Edwards, David (JTS) wrote: > > > > > > Of

Re: USB drive as a tape device

2007-08-16 Thread Edwards, David (JTS)
> -Original Message- > From: Stuart Henderson [mailto:[EMAIL PROTECTED] > Sent: Thursday, 16 August 2007 6:16 PM > To: Edwards, David (JTS) > > On 2007/08/16 08:53, Edwards, David (JTS) wrote: > > > > Of course, that still leaves me with the other problem. I > > still need to identify a d

Re: scp batch mode?

2007-08-16 Thread Andreas Kahari
Another way: # Open a connection to the remote host and # create a control socket at /tmp/ssh_socket ssh -S /tmp/ssh_socket -M -N -f host.example.com # Use the control socket to transfer files. scp -o ControlPath=/tmp/ssh_socket file1 dummy:remote_file1 scp -o ControlPath=/tmp/ssh_socket file2 du

Re: USB drive as a tape device

2007-08-16 Thread Stuart Henderson
On 2007/08/16 08:53, Edwards, David (JTS) wrote: > > Of course, that still leaves me with the other problem. I > still need to identify a disk which is plugged into a certain > (physically labelled) cable so I can mount it. Anyone help > with that one? I'm currently grepping through dmesg outp

Re: ipsec vpn?

2007-08-16 Thread Hans-Joerg Hoexer
; 023255.558643 Default dropped message from 77.123.XX.XX port 60056 due to > notification type NO_PROPOSAL_CHOSEN > 023302.570472 Default responder_recv_HASH_SA_NONCE: peer proposed invalid > phase 2 IDs: initiator id c0a80321: 192.168.3.33, responder id > 0a010100/ff