Re: NAT doesn't appear to work for some websites
On Mon, 15 Aug 2005 00:45:29 -0500 Matt Garman <[EMAIL PROTECTED]> wrote: > One such site is "directron.com". Using Mozilla Firefox, it will > just say "Waiting for directron.com..." but the page never loads. I have no problem accessing directron.com using firefox thru an openbsd NAT box. > I'm using the pf example from the OpenBSD FAQ: > > http://openbsd.org/faq/pf/example1.html It's much better if you post your actual pf.conf. --- Lars Hansson
Re: NAT doesn't appear to work for some websites
On 8/14/05, Matt Garman <[EMAIL PROTECTED]> wrote: > I have a number of websites that I cannot load from machines > connected to the 'net through my OpenBSD firewall/NAT box. > > One such site is "directron.com". Using Mozilla Firefox, it will > just say "Waiting for directron.com..." but the page never loads. > There are several other pages I've tried to load with the same > result. > > On the other hand, some pages load fine (such as openbsd.org). > > However, if I login to the firewall (the openbsd box), I can use > links to connect to these sites without any problem. > > I'm guessing that this has something to do with redirects on the > target website. I'm pretty sure that directon.com is actually an > alias for some other URL. I'm thinking that the pf ruleset on the > OBSD box is not allowing this. > > I'm using the pf example from the OpenBSD FAQ: > > http://openbsd.org/faq/pf/example1.html > > Has anyone else seen this before? > > Thanks for any suggestions, > Matt > > -- > Matt Garman > email at: http://raw-sewage.net/index.php?file=email > > Highly unlikely, a nat is just a nat. Unless you have any special rules beyond the default from the example, then you need to look at your client, or your internal network.
Re: NAT doesn't appear to work for some websites
> One such site is "directron.com". Using Mozilla Firefox, it will > just say "Waiting for directron.com..." but the page never loads. > There are several other pages I've tried to load with the same > result. > > On the other hand, some pages load fine (such as openbsd.org). > > However, if I login to the firewall (the openbsd box), I can use > links to connect to these sites without any problem. > > I'm guessing that this has something to do with redirects on the > target website. I'm pretty sure that directon.com is actually an > alias for some other URL. I'm thinking that the pf ruleset on the > OBSD box is not allowing this. Are you running a proxy on your firewall? Do your firewall logs note any blocks (you ARE logging all blocks, right)? Telnetting to the www port of that site works or doesn't work? This site loads just fine for me, and I'm NATing using a firewall running an older post-3.7 snapshot. Gut instinct tells me you have a NAT "oops". Benny -- "Small glitches aside, I bless the day my wife and I decided to have three children; two for love, the third for spare parts." -- Philip M. Garvey
NAT doesn't appear to work for some websites
I have a number of websites that I cannot load from machines connected to the 'net through my OpenBSD firewall/NAT box. One such site is "directron.com". Using Mozilla Firefox, it will just say "Waiting for directron.com..." but the page never loads. There are several other pages I've tried to load with the same result. On the other hand, some pages load fine (such as openbsd.org). However, if I login to the firewall (the openbsd box), I can use links to connect to these sites without any problem. I'm guessing that this has something to do with redirects on the target website. I'm pretty sure that directon.com is actually an alias for some other URL. I'm thinking that the pf ruleset on the OBSD box is not allowing this. I'm using the pf example from the OpenBSD FAQ: http://openbsd.org/faq/pf/example1.html Has anyone else seen this before? Thanks for any suggestions, Matt -- Matt Garman email at: http://raw-sewage.net/index.php?file=email
Re: newsticker - console based ?
On Sun, 14 Aug 2005 22:29:00 -0500, Dave Feustel wrote: > Konqueror needs windows, but X is sufficient. Don't want this. Takes too many resources and removes the distinct flavour of 'console-based-firewall-OpenBSD' exotism from the setup. To show a konqueror-window is nothing special. And I was thinking of something special; something non-standard, something; ah, I am sure you get the idea here as well. Something showing on lynx would be fun. Thanks anyway, Uwe
Re: newsticker - console based ?
On Sunday 14 August 2005 22:09, Uwe Dippel wrote: > On Sun, 14 Aug 2005 22:02:45 -0500, Dave Feustel wrote: > > > I discovered that the 3.7 konqueror correctly displays ... > > as moving text. You can see this work at cloakanddagger.de. Just run > > Konqueror > > and periodically update the html file being displayed. > > Does konqueror run in a console window ? (I am not a KDE person; but > AFAIK, it needs X) Konqueror needs windows, but X is sufficient. If you can run a window, I think you will not find a simpler solution. (Use cron to run a job which periodically generates a new html file for konqueror to display).
Re: newsticker - console based ?
On Sun, 14 Aug 2005 22:02:45 -0500, Dave Feustel wrote: > I discovered that the 3.7 konqueror correctly displays ... > as moving text. You can see this work at cloakanddagger.de. Just run Konqueror > and periodically update the html file being displayed. Does konqueror run in a console window ? (I am not a KDE person; but AFAIK, it needs X)
Re: newsticker - console based ?
On Sunday 14 August 2005 21:47, Uwe Dippel wrote: > Tried my best in /usr/ports, but couldn't find any console-based > newsticker. Or so. > snownews is great, but needs user intervention. > > This is what I intend to do: I am running a firewall behind closed doors > but with a nice big window. Sure I don't want a kiosk with user > interaction. But a bit of advertisement for OpenBSD would be fine ! > So I tried snownews, but it wants user interaction; I couldn't get it > displaying the stream of BBC (e.g.) on its own. > That would be best: show headlines and then article by article for a > preset time. > Then I was thinking to show the ticker on BBC World; but I couldn't find a > console-based app to make the headlines run across the screen. > I think you get the idea. > Do we have anything like this in OpenBSD ? or outside ? > > Uwe I discovered that the 3.7 konqueror correctly displays ... as moving text. You can see this work at cloakanddagger.de. Just run Konqueror and periodically update the html file being displayed.
Re: ntpd could not parse "pool.ntp.org"
On Sun, 14 Aug 2005 10:51:05 +0200 Mike Henker <[EMAIL PROTECTED]> wrote: > Hi, a message appears all the time saying: > ntpd could not parse "pool.ntp.org" I dont know the reason why it > appears and how to solve this doubt. Unless you have changed the configuration yourself I would say it's a problem with dns resolution. --- Lars Hansson
newsticker - console based ?
Tried my best in /usr/ports, but couldn't find any console-based newsticker. Or so. snownews is great, but needs user intervention. This is what I intend to do: I am running a firewall behind closed doors but with a nice big window. Sure I don't want a kiosk with user interaction. But a bit of advertisement for OpenBSD would be fine ! So I tried snownews, but it wants user interaction; I couldn't get it displaying the stream of BBC (e.g.) on its own. That would be best: show headlines and then article by article for a preset time. Then I was thinking to show the ticker on BBC World; but I couldn't find a console-based app to make the headlines run across the screen. I think you get the idea. Do we have anything like this in OpenBSD ? or outside ? Uwe
make release on 3.7 errors out at httpd
After building 3.7-stable, make release fails when installing httpd support tools. I can not reproduce this on -current. Anyone seeing the same? Installing /var/release/bld//usr/bin/htdigest install: /usr/src/usr.sbin/httpd/obj/src/support/htdigest: No such file or directory Installing /var/release/bld//usr/bin/htpasswd install: /usr/src/usr.sbin/httpd/obj/src/support/htpasswd: No such file or directory *** Error code 71 (ignored) Installing /var/release/bld//usr/sbin/httpd install: /usr/src/usr.sbin/httpd/obj/src/httpd: No such file or directory Installing /var/release/bld//usr/sbin/logresolve install: /usr/src/usr.sbin/httpd/obj/src/support/logresolve: No such file or directory Installing /var/release/bld//usr/sbin/rotatelogs install: /usr/src/usr.sbin/httpd/obj/src/support/rotatelogs: No such file or directory Installing /var/release/bld//usr/sbin/suexec install: /usr/src/usr.sbin/httpd/obj/src/support/suexec: No such file or directory *** Error code 71 (ignored) Installing /var/release/bld//usr/lib/apache/modules/mod_mmap_static.so install: /usr/src/usr.sbin/httpd/obj/src/modules/experimental/mod_mmap_static.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_auth_digest.so install: /usr/src/usr.sbin/httpd/obj/src/modules/experimental/mod_auth_digest.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_define.so install: /usr/src/usr.sbin/httpd/obj/src/modules/extra/mod_define.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/libproxy.so install: /usr/src/usr.sbin/httpd/obj/src/modules/proxy/libproxy.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_vhost_alias.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_vhost_alias.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_log_agent.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_log_agent.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_info.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_info.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_log_referer.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_log_referer.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_mime_magic.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_mime_magic.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_speling.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_speling.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_rewrite.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_rewrite.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_auth_dbm.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_auth_dbm.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_auth_anon.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_auth_anon.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_auth_db.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_auth_db.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_digest.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_digest.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_cern_meta.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_cern_meta.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_usertrack.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_usertrack.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_unique_id.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_unique_id.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_expires.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_expires.so: No such file or directory Installing /var/release/bld//usr/lib/apache/modules/mod_headers.so install: /usr/src/usr.sbin/httpd/obj/src/modules/standard/mod_headers.so: No such file or directory *** Error code 71 (ignored) Installing /var/release/bld//usr/bin/apxs sed -e 's;^#!/.*;#!/usr/bin/perl;' -e 's;[EMAIL PROTECTED]@;/var/www;' -e 's;[EMAIL PROTECTED]@;/usr/sbin;' -e 's;[EMAIL PROTECTED]@;/usr/lib/apache/modules;' -e 's;[EMAIL PROTECTED]@;/usr/lib/apache/include;' -e 's;[EMAIL PROTECTED]@;/var/www/conf;' < /usr/src/usr.sbin/httpd/obj/src/support/apxs > /tmp/httpdWYfgb14770/apxs && install -c -g bin -m 555 /tmp/httpdWYfgb14770/apxs /var/release/bld//usr/sbin /bin/sh: cannot open /usr/src/usr.sbin/httpd/obj/src/support/apxs: No such file or directory *** Error code 1 Stop in /usr/src/usr.sbin/httpd (line 843
i-opener prob
I have an old i-opener with a bad modem (I think.). And I have a brand new i-opener that does an opening tutorial and then freezes...tries to dial-up to no avail. Any suggestions? I'm going crazy. Rog
Re: Apple iBook
Ober Heim wrote: > Would it not follow the rule of least suprise to explicitly document that > a common feature is not available on a specific platform. Instead of the > documentation through implications? This is not a "common feature". About 25% of our platforms support multiple consoles. Multiple text consoles are an exception, not the rule. I think that is pretty clear in the FAQ article. Unfortunately, as probably 90% of our users use *one* of those sixteen platforms, they tend to assume every other computer in the world is just like that one. Unfortunately, no wording I have ever discovered will get people to quit treating their Macintosh, their SPARC or their mvme88k like i386s. Documenting which features of i386 systems are not on every other platform would read like the _Iliad's_ "Catalog of ships" that we all skipped through to get back to the blood, guts and sex, and documentation that no one will read doesn't do the job... Nick.
VMWare 4.5
greetings, has any of you guys successfully run vmware 4.5 on openbsd ? if so can you be so kindly point me out as to how you did it.. the info i got from http://www.monkey.org/~marius/pages/?page=VMWare_for_OpenBSD doesn't seem to work.. anyone? :) edgar
Re: pf rules question
On Sun, Aug 14, 2005 at 10:13:33PM +0200, Erik Wikstr?m wrote: > On 2005-08-14 19:17, stan wrote: > >On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: > >>I've got 2 rules like this: > >> > >>pass out on $int_if from any to any keep state > >>pass in on $int_if from any to any keep state > >> > >>That I think I should be able to replace with: > >> > >>pass out on $int_if from any to any keep state > >>pass in on $int_if from any to any keep state > >> > >>But when I do this, I get the follwing packets droped. > >> > >>Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: > >>171.85.113.55.2318 > > >>171.85.106.133.161: GetRequest(5)[|snmp] > >> > >>requiste defs are: > >> > >>int_if="fxp2" > >> > >>and the /etc/hostname.fxpo looks like this: > >> > >>inet 171.85.113.111 255.255.255.128 NONE > > > >pass in on $int_if from $int_if:network to any keep state > >pass out on $int_if from any to $int_if:network keep state > > As we all know I'm no expert :-) but it seems to me as if the blocked > packet was heading to 171.85.106.133 on port 161. However since you have > the address 71.85.113.111 with netmask 255.255.255.128 on int_if the > package is dropped since it's not on the same subnet as int_if. Simply > put the rules works, but perhaps you have the wrong netmask? Sometimes, it just needs someone else to look at it. Indeed as you surmised, it's a typo in hostname.fxp0, now since there is alos a carp device on this interface, and this machine is the primary, then things were working anyway! Thanks very much. -- U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong Terror - New York Times 9/3/1967
Re: 2 internet links
Roberto Pereyra wrote: Hi Look http://www.openbsd.org/faq/pf/es/pools.html Or you could potentially use the route-to option eg pass in on $link1_if reply-to ($link1_if $link1_defroute) proto icmp keep state pass in on $link2_if reply-to ($link2_if $link2_defroute) proto icmp keep state I used this to route between 2 adsl links with 2 different assigned ip address ranges through 1 firewall running different services (citrix on one link and www/smtp/ftp etc on the other) I honestly never thought of pools. Must check into it :-) G roberto (saludos) 2005/8/13, Diego Augusto Dalmolin <[EMAIL PROTECTED]>: Hi... I4ve got a obsd 3.7 firewall and have 2 internet links on it I don4t want to make a load balance... just "what comes from link#1 goes out with link#1" && "what comes from link#2 goes out with link#2" from an outside box I4m trying to ping link#2 IP.. the icmp echorequest comes from link#2 and the echoreply is trying to go out on link#1(the default gateway) what can be made on pf.conf to fix this? -- Diego Augusto Dalmolin (41) 9648-0882
finger doesn't print characters right
Hi, I recently noticed that `finger` prints scandinavian characters weird, here's the output: [EMAIL PROTECTED]:~$ finger LoginName Tty Idle Login Time Office Office Phone dummy\366\326\304\344\305 p2 - Mon 00:39 But when specify the user the characters print normally: [EMAIL PROTECTED]:~$ finger dummy Login: dummy Name: vVDdEe This is 3.8-beta I'm running. Have I forgot to do something or is this a bug in finger? I haven't noticed this behaviour before 3.8-beta.. -- Antti Harri
Re: Using an ASUS K8S-MX a mistake? - update
On Sun, Aug 14, 2005 at 12:14:02PM -0500, Joe Szedula wrote: > >On 8/14/05 10:29 AM, Jonathan Gray ([EMAIL PROTECTED]) wrote: > >> Does this: > >> > >> "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured > >> > >> just mean there were no SATA drives connected? Will SATA drives work when > >> connected to this motherboard? > > > >No this means no driver has claimed that device. > >Try this diff > > > >Index: pciide.c > [snip] > > dmesg now reports: > > pciide1 at pci0 dev 5 function 0 "SIS 182 SATA" rev 0x01: DMA > pciide1: using irq 11 for native-PCI interrupt > > Does this look like what your expected? > If it is, now I need a SATA drive. Yes this is what I expected.
Re: About DNS
On Sun, Aug 14, 2005 at 09:49:12PM +0200, Mike Henker wrote: > Thanks James, I don t have the file you talked about but I will create > it (resolve.conf) with the info you explained. > resolv.conf not resolve.conf
Re: any luck with CBL for spamd pf Table ?
On 08/08, Paul Pruett wrote: > Tried to use CBL for spamd.conf, it was a bust. > may have been sysadmin err0r/misunderstanding..:). > > Anyone else successfully using CBL for /usr/libexec/spamd-setup ? Yes > It appears that the CBL black list has about 1,744,279 entries > The CBL list is a big part of the Spamhaus XBL list, and gets > a lot that others may miss. And using dns instead of pf to reject is not > preferred... > > But how many addresses can be put into pf Table without overload? > (depends on arch and resources... but in short.. rule of thumb.. > how many lines should be stay under when putting Tables for spamd?) > > with over million IPs in CBL, trying >/usr/libexec/spamd-setup -d > just sets there cooking and doesn't finish Just be patient it works for me... -- Microsoft is not the answer -- Microsoft is the question. No is the answer. cstamas
Re: About DNS
No. Mike: You _do_ have the file. It's resolv.conf with no E. resolve.conf will do nothing. I also strongly suggest you read the very excellent OpenBSD FAQ at http://www.openbsd.org/faq/index.html James: bad typo bad! --James Mike Henker wrote: Thanks James, I don t have the file you talked about but I will create it (resolve.conf) with the info you explained. Salutes and thanks for the patience with newbies! ;) Mike James Boothe escribis: On Sun, Aug 14, 2005 at 09:22:57PM +0200, Mike Henker wrote: For to surf into Internet my ISP provider specify two DNS (primary and secondary) how I must to add it to the network card I will use for connect to Internet? Salutes, Mike Edit /etc/resolve.conf to look like this lookup file bind nameserver nameserver -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.338 / Virus Database: 267.10.8/71 - Release Date: 12/08/2005
Re: Accoom Networks T1/E1
Mitja Mu__eni__ wrote: > Call me stupid but is there a link for this card? http://accoom.kd85.com/ -- Jonathan
Accoom Networks T1/E1
Call me stupid but is there a link for this card? Google doesn't know anything useful about "Accoom" alone, even less for "Accoom Networks" and all the obvious spelling variations ([Acom, Accom, Accomm] + [PCI,E1,T1,card]). Or is it something not produced yet? Regards, Mitja > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Claudio Jeker > Sent: Sunday, August 14, 2005 12:50 AM > To: [EMAIL PROTECTED] > Subject: CVS: cvs.openbsd.org: src > > CVSROOT: /cvs > Module name: src > Changes by: [EMAIL PROTECTED] 2005/08/13 16:49:48 > > Added files: > sys/dev/pci: bt8370.c bt8370reg.h if_art.c if_art.h > musycc.c >musycc_obsd.c musyccreg.h musyccvar.h > > Log message: > Driver for the Accoom Networks Artery T1/E1 PCI cards. > deraadt@ "yeah, put it in."
Re: Apple iBook
On Sun, Aug 14, 2005 at 04:20:40PM -0400, Ted Unangst wrote: > "On amd64, i386 and Alpha systems with vga(4) cards..." Which is an understatement. --- faq7.html.orig Sun Aug 14 22:40:58 2005 +++ faq7.html Sun Aug 14 22:52:46 2005 @@ -38,7 +38,7 @@ 7.4 - Accessing the console scrollback buffer. (amd64, i386, some Alpha) 7.5 - How do I switch consoles? (amd64, i386, -some Alpha) +some Alpha, Zaurus) 7.6 - How can I use a console resolution of 80x50? (amd64, i386) 7.7 - How do I use a serial console? @@ -146,7 +146,8 @@ -7.5 - How do I switch consoles? (amd64, i386, some Alpha) +7.5 - How do I switch consoles? (amd64, i386, some Alpha, + Zaurus) On amd64, i386 and Alpha systems with http://www.openbsd.org/cgi-bin/man.cgi?query=vga&sektion=4";>vga(4) @@ -194,6 +195,12 @@ http://www.openbsd.org/cgi-bin/man.cgi?query=init&sektion=8";>init(8) a HUP signal using http://www.openbsd.org/cgi-bin/man.cgi?query=kill&sektion=1";>kill(1). + + +On the Zaurus, two virtual terminals (/dev/ttyC0 and /dev/ttyC1) +are available by default, accessible with [ALT]+[CALENDAR] +and [ALT]+[ADDRESS] (The [ALT] key is the one +right of the left [CTRL] key). 7.6 - How do I use a console resolution of 80x50? (amd64, i386)
Re: ntpd could not parse "pool.ntp.org"
Mike Henker schrieb: > Hi Chris, exactly what s the name of the file where I must to look? > > Salutes, > Mike > /etc/ntpd.conf Tobias
Re: pf rules question
On 2005-08-14 19:17, stan wrote: On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: I've got 2 rules like this: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state That I think I should be able to replace with: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state But when I do this, I get the follwing packets droped. Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: 171.85.113.55.2318 > 171.85.106.133.161: GetRequest(5)[|snmp] requiste defs are: int_if="fxp2" and the /etc/hostname.fxpo looks like this: inet 171.85.113.111 255.255.255.128 NONE pass in on $int_if from $int_if:network to any keep state pass out on $int_if from any to $int_if:network keep state As we all know I'm no expert :-) but it seems to me as if the blocked packet was heading to 171.85.106.133 on port 161. However since you have the address 71.85.113.111 with netmask 255.255.255.128 on int_if the package is dropped since it's not on the same subnet as int_if. Simply put the rules works, but perhaps you have the wrong netmask? -- Erik Wikstrvm
Re: Apple iBook
On Sun, 14 Aug 2005, Ober Heim wrote: > Would it not follow the rule of least suprise to explicitly document that a > common feature is not available on a specific platform. Instead of the > documentation through implications? "On amd64, i386 and Alpha systems with vga(4) cards..." seems like it's documented to me. -- And that's why we need Eddie Van Halen in our band.
Re: pf rules question
On 2005-08-14 21:41, stan wrote: On Sun, Aug 14, 2005 at 09:13:07PM +0200, Erik Wikstr?m wrote: On 2005-08-14 19:17, stan wrote: >On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: >>I've got 2 rules like this: >> >>pass out on $int_if from any to any keep state >>pass in on $int_if from any to any keep state >> >>That I think I should be able to replace with: >> >>pass out on $int_if from any to any keep state >>pass in on $int_if from any to any keep state >> >>But when I do this, I get the follwing packets droped. >> >>Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: >>171.85.113.55.2318 > >>171.85.106.133.161: GetRequest(5)[|snmp] >> >>requiste defs are: >> >>int_if="fxp2" >> >>and the /etc/hostname.fxpo looks like this: >> >>inet 171.85.113.111 255.255.255.128 NONE >> >>What am I missing here? >> >Sorry for the stupid cut and paste error. > >Here are the rules I want to use :-( > > Shouldn't that be >pass in on $int_if from $int_if:network to any keep state pass in on $int_if from any to $int_if:network keep state I think this is backwards. >pass out on $int_if from any to $int_if:network keep state pass out on $int_if from $int_if:network to any keep state This one too. Oops sorry, yes. -- Erik Wikstrvm
Re: Apple iBook
Would it not follow the rule of least suprise to explicitly document that a common feature is not available on a specific platform. Instead of the documentation through implications? "I am not your puppet. Since when? Now, get your spongy pink ass out there, and dance for the cameras." -Death to Smoochy On Sat, 13 Aug 2005, Nick Holland wrote: Date: Sat, 13 Aug 2005 12:31:40 -0400 From: Nick Holland <[EMAIL PROTECTED]> To: misc Subject: Re: Apple iBook Nuzaihan Kamalluddin wrote: Hi, I've tried googling but with little success, I am trying to use virtual terminals (console), but I could get ctrl+alt+f1 to work. From what I see in the dmesg, it detects those keys such as F1 as a device for brightness and sound volume. http://www.openbsd.org/faq/faq7.html#SwitchConsole Note the platforms that console switching is supported on. How do I solve this? My X-window is not working too (I used the default radeon driver at xorgconfig) for my radeon mobility 9200, I'm using OpenBSD 3.7 That is a completely useless problem report and is being appropriately ignored. It also sounds like you didn't read the /usr/X11R6/README file. Nick.
Re: About DNS
Thanks James, I don t have the file you talked about but I will create it (resolve.conf) with the info you explained. Salutes and thanks for the patience with newbies! ;) Mike James Boothe escribis: On Sun, Aug 14, 2005 at 09:22:57PM +0200, Mike Henker wrote: For to surf into Internet my ISP provider specify two DNS (primary and secondary) how I must to add it to the network card I will use for connect to Internet? Salutes, Mike Edit /etc/resolve.conf to look like this lookup file bind nameserver nameserver
Re: pf rules question
On Sun, Aug 14, 2005 at 09:13:07PM +0200, Erik Wikstr?m wrote: > On 2005-08-14 19:17, stan wrote: > >On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: > >>I've got 2 rules like this: > >> > >>pass out on $int_if from any to any keep state > >>pass in on $int_if from any to any keep state > >> > >>That I think I should be able to replace with: > >> > >>pass out on $int_if from any to any keep state > >>pass in on $int_if from any to any keep state > >> > >>But when I do this, I get the follwing packets droped. > >> > >>Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: > >>171.85.113.55.2318 > > >>171.85.106.133.161: GetRequest(5)[|snmp] > >> > >>requiste defs are: > >> > >>int_if="fxp2" > >> > >>and the /etc/hostname.fxpo looks like this: > >> > >>inet 171.85.113.111 255.255.255.128 NONE > >> > >>What am I missing here? > >> > >Sorry for the stupid cut and paste error. > > > >Here are the rules I want to use :-( > > > > > > Shouldn't that be > > >pass in on $int_if from $int_if:network to any keep state > pass in on $int_if from any to $int_if:network keep state I think this is backwards. > >pass out on $int_if from any to $int_if:network keep state > pass out on $int_if from $int_if:network to any keep state This one too. Or am I looking at this wrong? Here's what I see: Internal nmetworrk -> fxp2 ($int_if) So, I want to pass in on it any traffic that originates on that network, and I want to pass out on it any trafficc that (having survived the ruls on the extern interface), is bound for it. Or am I confused? -- U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong Terror - New York Times 9/3/1967
Re: Ports Question
On 8/14/05, Dave Feustel <[EMAIL PROTECTED]> wrote: > I'm running release 3.7 and I've put the release src and ports > trees in /usr. I've updated both trees using cvs. > > I remade unzip as per the instructions in ports.html. > When I attempted to make install, I got an error message > saying that unzip was already present (which it was). > So I attempted to pkg_delete unzip and then got the following: > === > /usr/ports}cd archivers/unzip > /usr/ports/archivers/unzip}sudo pkg_delete unzip > Password: > Can't remove unzip without also removing: > xmms-1.2.10p0 kdeaddons-3.3.2 kdenetwork-3.3.2p0 xmms-mp3-1.2.10p0 > /usr/ports/archivers/unzip} > > I don't understand why I would need to remove xmms, kdeaddons, > and kdenetwork in order to remove unzip. Enlightenment will be > appreciated. > > Thanks, > Dave Feustel > > Because those packages depend on unzip. -- Gerardo Santana Gsmez Garrido http://www.openbsd.org.mx/santana/ "Entre los individuos, como entre las naciones, el respeto al derecho ajeno es la paz" -Don Benito Juarez
Re: About DNS
For to surf into Internet my ISP provider specify two DNS (primary and secondary) how I must to add it to the network card I will use for connect to Internet? put them into /etc/resolv.conf file, there should be entries like: nameserver primary_dns nameserver secondary_dns -- Wojtek
Re: About DNS
This question is answered in FAQ! http://www.openbsd.org/faq/faq6.html On Sunday 14 August 2005 21:22, Mike Henker wrote: > For to surf into Internet my ISP provider specify two DNS (primary and > secondary) how I must to add it to the network card I will use for > connect to Internet? > > > > Salutes, > Mike > > -- Best regards Maxim Bourmistrov
Re: About DNS
On Sun, Aug 14, 2005 at 09:22:57PM +0200, Mike Henker wrote: > For to surf into Internet my ISP provider specify two DNS (primary and > secondary) how I must to add it to the network card I will use for > connect to Internet? > > > > Salutes, > Mike Edit /etc/resolve.conf to look like this lookup file bind nameserver nameserver
Re: Ports Question
On Sun, Aug 14, 2005 at 01:51:02PM -0500, Dave Feustel wrote: > I'm running release 3.7 and I've put the release src and ports > trees in /usr. I've updated both trees using cvs. > > I remade unzip as per the instructions in ports.html. > When I attempted to make install, I got an error message > saying that unzip was already present (which it was). > So I attempted to pkg_delete unzip and then got the following: > === > /usr/ports}cd archivers/unzip > /usr/ports/archivers/unzip}sudo pkg_delete unzip > Password: > Can't remove unzip without also removing: > xmms-1.2.10p0 kdeaddons-3.3.2 kdenetwork-3.3.2p0 xmms-mp3-1.2.10p0 > /usr/ports/archivers/unzip} > > I don't understand why I would need to remove xmms, kdeaddons, > and kdenetwork in order to remove unzip. Enlightenment will be > appreciated. Because they all depend on unzip. > > Thanks, > Dave Feustel > -- BOFH excuse #170: popper unable to process jumbo kernel
About DNS
For to surf into Internet my ISP provider specify two DNS (primary and secondary) how I must to add it to the network card I will use for connect to Internet? Salutes, Mike
Re: Ports Question
On Sun, Aug 14, 2005 at 01:51:02PM -0500, Dave Feustel wrote: > I'm running release 3.7 and I've put the release src and ports > trees in /usr. I've updated both trees using cvs. > > I remade unzip as per the instructions in ports.html. > When I attempted to make install, I got an error message > saying that unzip was already present (which it was). > So I attempted to pkg_delete unzip and then got the following: > === > /usr/ports}cd archivers/unzip > /usr/ports/archivers/unzip}sudo pkg_delete unzip > Password: > Can't remove unzip without also removing: > xmms-1.2.10p0 kdeaddons-3.3.2 kdenetwork-3.3.2p0 xmms-mp3-1.2.10p0 > /usr/ports/archivers/unzip} > > I don't understand why I would need to remove xmms, kdeaddons, > and kdenetwork in order to remove unzip. Enlightenment will be > appreciated. > > Thanks, > Dave Feustel Try pkg_add -r unzip
Re: pf rules question
On 2005-08-14 19:17, stan wrote: On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: I've got 2 rules like this: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state That I think I should be able to replace with: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state But when I do this, I get the follwing packets droped. Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: 171.85.113.55.2318 > 171.85.106.133.161: GetRequest(5)[|snmp] requiste defs are: int_if="fxp2" and the /etc/hostname.fxpo looks like this: inet 171.85.113.111 255.255.255.128 NONE What am I missing here? Sorry for the stupid cut and paste error. Here are the rules I want to use :-( pass in on $int_if from $int_if:network to any keep state pass out on $int_if from any to $int_if:network keep state Shouldn't that be pass in on $int_if from any to $int_if:network keep state pass out on $int_if from $int_if:network to any keep state -- Erik Wikstrvm
Ports Question
I'm running release 3.7 and I've put the release src and ports trees in /usr. I've updated both trees using cvs. I remade unzip as per the instructions in ports.html. When I attempted to make install, I got an error message saying that unzip was already present (which it was). So I attempted to pkg_delete unzip and then got the following: === /usr/ports}cd archivers/unzip /usr/ports/archivers/unzip}sudo pkg_delete unzip Password: Can't remove unzip without also removing: xmms-1.2.10p0 kdeaddons-3.3.2 kdenetwork-3.3.2p0 xmms-mp3-1.2.10p0 /usr/ports/archivers/unzip} I don't understand why I would need to remove xmms, kdeaddons, and kdenetwork in order to remove unzip. Enlightenment will be appreciated. Thanks, Dave Feustel
Re: ntpd could not parse "pool.ntp.org"
Hi Chris, exactly what s the name of the file where I must to look? Salutes, Mike Chris Kuethe escribis: Show us your config file. My guess is you have a line that says "pool.ntp.org" l in there, when the correct syntax is "servers pool.ntp.org" On 8/14/05, Mike Henker <[EMAIL PROTECTED]> wrote: Hi, a message appears all the time saying: ntpd could not parse "pool.ntp.org" I dont know the reason why it appears and how to solve this doubt. Salutes, Mike
pf ruleset review
Hi all, Anyone can make a review of this ruleset? Server with 2 network cards (both with public ip). This server its on a network 1.1.1.X (example). --- | |- fxp0 (IP = 1.1.1.1) | | | |- sis0 (IP = 1.1.1.2) --- I what that every requests throw door 80 (web), 1 (webmin interface), 22 (ssh), 21 (ftp) goes to the ext_if. And the samba (139,445), cups (631) goes only to the int_if. And security options it is enough? Thanks! PF.CONF: #INTERFACES ext_if="fxp0" int_if="sis0" ip_ext="1.1.1.1" #example ip ip_int="1.1.1.2" #example ip #INFO #SSH = 22 #WEB = 80 #FTP = 21 #WEBMIN = 1 #SAMBA = 139, 445 #CUPS = 631 #UDP = 137, 138 #OPTIONS set block-policy drop block in log all label "blockin" block out log all label "blockout" scrub in all pass out quick on lo0 from any to any pass in quick on lo0 from any to any #SSH pass in quick on $ext_if proto tcp from any to $ip_ext port 22 flags S/SA keep state #WEB+WEBMIN+FTP pass in quick on $ext_if proto tcp from any to $ip_ext port {80,1,21} flags S/SA keep state #PROFTPD pass in quick on $ext_if proto tcp from any to $ip_ext port 49151 >< 52000 pass out quick on $ext_if proto tcp from $ip_ext 49151 >< 52000 to any #SAMBA #a.a.a.a => ips from a vlan #b.b.b.b => ips in webserver lan pass in quick on $int_if proto tcp from a.a.a.a/20 to $ip_int port {139,445} pass in quick on $int_if proto tcp from b.b.b.b/24 to $ip_int port{139,445} #CUPS pass in quick on $int_if proto tcp from a.a.a.a/20 to $ip_int port 631 pass in quick on $int_if proto tcp from b.b.b.b/24 to $ip_int port 631 #ICMP pass in quick on $ext_if inet proto icmp all icmp-type 3 keep state pass in quick on $ext_if inet proto icmp all icmp-type 4 keep state pass out on $ext_if proto tcp from $ip_ext to any flags S/SA keep state pass out on $ext_if proto { icmp, udp } from $ip_ext to any keep state pass out on $int_if proto tcp from $ip_int to any flags S/SA keep state pass out on $int_if proto { icmp, udp } from $ip_int to any keep state
Re: Using an ASUS K8S-MX a mistake? - update
>On 8/14/05 10:29 AM, Jonathan Gray ([EMAIL PROTECTED]) wrote: >> Does this: >> >> "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured >> >> just mean there were no SATA drives connected? Will SATA drives work when >> connected to this motherboard? > >No this means no driver has claimed that device. >Try this diff > >Index: pciide.c [snip] dmesg now reports: pciide1 at pci0 dev 5 function 0 "SIS 182 SATA" rev 0x01: DMA pciide1: using irq 11 for native-PCI interrupt Does this look like what your expected? If it is, now I need a SATA drive. Joe
Re: Problem with fonts? and gkrellm
On August 14, 2005 10:20 am, stan wrote: > I've got 2 machines that are OpenBSD 3.7 machines. I built gkrellm from > ports on one, and installed the package on both. > > When I try to run gkrellm, I get the following: > > > Script started on Sun Aug 14 10:31:35 2005 > $ gkrellm > > ** (gkrellm:23367): WARNING **: No builtin or dynamically loaded modules > were found. Pango will not work correctly. This probably means > there was an error in the creation of: > '/etc/pango/pango.modules' > You may be able to recreate this file by running pango-querymodules. > Fontconfig error: Cannot load default config file > No fonts found; this probably means that the fontconfig > library is not correctly configured. You may need to > edit the fonts.conf configuration file. More information > about fontconfig can be found in the fontconfig(3) manual > page and on http://fontconfig.org > $ ^D > > Script done on Sun Aug 14 10:31:54 2005 > > I have installed the xfonts tarball, and re-run pango-querymodules, but the > error message persists. > > Any sugestions as to where to check next? > > BTW the 2 machines do not have an X server installed, or running on them, > I'm running gkrellm with DISPLAY pointed to a machine I'm ssh'd in from., > and I've tried this on multiple machine with X, since I first thought this > might be a problem with the X server machines. I don't think pango-querymodules actually saves the results anywhere, I have had to use pango-querymodules > /etc/pango/pango.modules when the pango.modules file hasn't been created.
Re: pf rules question
On Sun, Aug 14, 2005 at 12:24:43PM -0400, stan wrote: > I've got 2 rules like this: > > pass out on $int_if from any to any keep state > pass in on $int_if from any to any keep state > > That I think I should be able to replace with: > > pass out on $int_if from any to any keep state > pass in on $int_if from any to any keep state > > But when I do this, I get the follwing packets droped. > > Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: 171.85.113.55.2318 > > 171.85.106.133.161: GetRequest(5)[|snmp] > > requiste defs are: > > int_if="fxp2" > > and the /etc/hostname.fxpo looks like this: > > inet 171.85.113.111 255.255.255.128 NONE > > What am I missing here? > Sorry for the stupid cut and paste error. Here are the rules I want to use :-( pass in on $int_if from $int_if:network to any keep state pass out on $int_if from any to $int_if:network keep state -- U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong Terror - New York Times 9/3/1967
Re: 8/13 snapshot and DHCP
On 8/14/05 9:02 PM, "Emmett Pate" <[EMAIL PROTECTED]> wrote: I'd like to install the latest snapshot on a laptop that's currently running 3.7-release. The boot CD fails to get a dynamic IP address. My question is where is the most appropriate archive/list to research whether this is a known problem? I just want to make sure I'm posting to the correct place before I write up the details. Thanks, Nuzaihan Kamalluddin wrote: Have you tried dhclient at the shell? Booting the CD to a shell prompt and then entering "dhclient wi0" gives a endless series of: DHCPDISCOVER on wi0 to 255.255.255.255 port 67 interval 4 DHCPOFFER from 192.168.1.1 DHCPREQUEST on wi0 to 255.255.255.255 port 67 DHCPDISCOVER on wi0 to 255.255.255.255 port 67 interval 4 ... The NIC is a D-Link DWL-650 that, according to dmesg, initializes fine. The same hardware works fine with the cd37.iso CD. I'll be glad to supply any other information that may be of use. Thanks, -- Emmett "Buddy" Pate
pf rules question
I've got 2 rules like this: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state That I think I should be able to replace with: pass out on $int_if from any to any keep state pass in on $int_if from any to any keep state But when I do this, I get the follwing packets droped. Aug 14 12:08:05.230735 rule 0/(match) block out on fxp2: 171.85.113.55.2318 > 171.85.106.133.161: GetRequest(5)[|snmp] requiste defs are: int_if="fxp2" and the /etc/hostname.fxpo looks like this: inet 171.85.113.111 255.255.255.128 NONE What am I missing here? -- U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong Terror - New York Times 9/3/1967
Problem with fonts? and gkrellm
I've got 2 machines that are OpenBSD 3.7 machines. I built gkrellm from ports on one, and installed the package on both. When I try to run gkrellm, I get the following: Script started on Sun Aug 14 10:31:35 2005 $ gkrellm ** (gkrellm:23367): WARNING **: No builtin or dynamically loaded modules were found. Pango will not work correctly. This probably means there was an error in the creation of: '/etc/pango/pango.modules' You may be able to recreate this file by running pango-querymodules. Fontconfig error: Cannot load default config file No fonts found; this probably means that the fontconfig library is not correctly configured. You may need to edit the fonts.conf configuration file. More information about fontconfig can be found in the fontconfig(3) manual page and on http://fontconfig.org $ ^D Script done on Sun Aug 14 10:31:54 2005 I have installed the xfonts tarball, and re-run pango-querymodules, but the error message persists. Any sugestions as to where to check next? BTW the 2 machines do not have an X server installed, or running on them, I'm running gkrellm with DISPLAY pointed to a machine I'm ssh'd in from., and I've tried this on multiple machine with X, since I first thought this might be a problem with the X server machines. -- U.S. Encouraged by Vietnam Vote - Officials Cite 83% Turnout Despite Vietcong Terror - New York Times 9/3/1967
Re: ntpd could not parse "pool.ntp.org"
Show us your config file. My guess is you have a line that says "pool.ntp.org" l in there, when the correct syntax is "servers pool.ntp.org" On 8/14/05, Mike Henker <[EMAIL PROTECTED]> wrote: > Hi, a message appears all the time saying: > ntpd could not parse "pool.ntp.org" I dont know the reason why it > appears and how to solve this doubt. > > Salutes, > Mike > > -- GDB has a 'break' feature; why doesn't it have 'fix' too?
Re: Using an ASUS K8S-MX a mistake? - update
On Sun, Aug 14, 2005 at 09:04:04AM -0500, Joe Szedula wrote: > I've installed the amd64 -current (13 August) on my ASUS K8S-MX system. > The dmesg shows these "unknown" items: > > ppb1 at pci0 dev 6 function 0 vendor "SIS", unknown product 0x000a rev > 0x00 > ppb2 at pci0 dev 7 function 0 vendor "SIS", unknown product 0x000a rev > 0x00 > lm0 at isa0 port 0x290/8: unknown winbond chip ID 0x88 > > I decided to try another ethernet board I had: > > dc0 at pci0 dev 9 function 0 "Lite-On PNIC" rev 0x20: irq 10, address > 00:a0:cc:24:be:91 > > During the boot process I get this message: > > dc0: failed to force tx and rx to idle state > > repeated twice, after the "starting network" line. The network seems to > work just fine. What does this indicate? Since it only appears during > boot is it something I can just ignore? > > Does this: > > "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured > > just mean there were no SATA drives connected? Will SATA drives work when > connected to this motherboard? http://www.openbsd.org/amd64.html#hardware and since there is much overlap http://www.openbsd.org/i386.html#hardware > > The complete dmesg output follows this message. > > Joe > - > OpenBSD 3.8-beta (GENERIC) #0: Sat Aug 13 07:51:35 CDT 2005 > [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC > real mem = 502722560 (490940K) > avail mem = 419856384 (410016K) > using 12324 buffers containing 50479104 bytes (49296K) of memory > mainbus0 (root) > cpu0 at mainbus0: (uniprocessor) > cpu0: AMD Athlon(tm) 64 Processor 2800+, 2029.82 MHz > cpu0: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFL > USH,MMX,FXSR,SSE,SSE2,NXE,MMXX,LONG,3DNOW2,3DNOW > cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB > 64b/line 16-way L2 cache > cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully > associative > cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully > associative > pci0 at mainbus0 bus 0: configuration mode 1 > pchb0 at pci0 dev 0 function 0 "SIS 760 PCI" rev 0x03 > ppb0 at pci0 dev 1 function 0 "SIS 86C202 VGA" rev 0x00 > pci1 at ppb0 bus 1 > vga1 at pci1 dev 0 function 0 "SIS 6330 VGA" rev 0x00 > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) > wsdisplay0: screen 1-5 added (80x25, vt100 emulation) > "SIS 965 PCI" rev 0x47 at pci0 dev 2 function 0 not configured > pciide0 at pci0 dev 2 function 5 "SIS 5513 EIDE" rev 0x01: 760: DMA, > channel 0 wired to compatibility, channel 1 wired to compatibility > wd0 at pciide0 channel 0 drive 0: > wd0: 16-sector PIO, LBA, 9736MB, 19941264 sectors > wd1 at pciide0 channel 0 drive 1: > wd1: 16-sector PIO, LBA, 3079MB, 6306048 sectors > wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4 > wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2 > wd2 at pciide0 channel 1 drive 0: > wd2: 16-sector PIO, LBA48, 117800MB, 241254720 sectors > atapiscsi0 at pciide0 channel 1 drive 1 > scsibus0 at atapiscsi0: 2 targets > cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom > removable > wd2(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5 > cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 > auich0 at pci0 dev 2 function 7 "SIS 7012 AC97" rev 0xa0: irq 10, SiS7012 > AC97 > ac97: codec id 0x41445368 (Analog Devices AD1888) > ac97: codec features headphone, 20 bit DAC, No 3D Stereo > audio0 at auich0 > ohci0 at pci0 dev 3 function 0 "SIS 5597/5598 USB" rev 0x0f: irq 5, > version 1.0, legacy support > usb0 at ohci0: USB revision 1.0 > uhub0 at usb0 > uhub0: SIS OHCI root hub, rev 1.00/1.00, addr 1 > uhub0: 3 ports with 3 removable, self powered > ohci1 at pci0 dev 3 function 1 "SIS 5597/5598 USB" rev 0x0f: irq 5, > version 1.0, legacy support > usb1 at ohci1: USB revision 1.0 > uhub1 at usb1 > uhub1: SIS OHCI root hub, rev 1.00/1.00, addr 1 > uhub1: 3 ports with 3 removable, self powered > ohci2 at pci0 dev 3 function 2 "SIS 5597/5598 USB" rev 0x0f: irq 3, > version 1.0, legacy support > usb2 at ohci2: USB revision 1.0 > uhub2 at usb2 > uhub2: SIS OHCI root hub, rev 1.00/1.00, addr 1 > uhub2: 2 ports with 2 removable, self powered > ehci0 at pci0 dev 3 function 3 "SIS 7002 USB" rev 0x00: irq 5 > usb3 at ehci0: USB revision 2.0 > uhub3 at usb3 > uhub3: SIS EHCI root hub, rev 2.00/1.00, addr 1 > uhub3: 8 ports with 8 removable, self powered > vendor "SIS", unknown product 0x0190 (class network subclass ethernet, > rev 0x00) at pci0 dev 4 function 0 not configured > "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured > ppb1 at pci0 dev 6 function 0 vendor "SIS", unknown product 0x000a rev > 0x00 > pci2 at ppb1 bus 2 > ppb2 at pci0 dev 7 function 0 vendor "SIS", unknown product 0x000a rev > 0x00 > pci3 at ppb2 bus 3 > dc0 at pci0 dev 9 function 0 "Lite-On PNIC" rev 0x20: irq 10, address > 00:a0:cc:24:be:91 > mtdphy0 at dc0 phy 1: MTD972 10/100 PHY, rev. 8 > pchb1 at pci0 dev 24 function 0 "AMD AMD64 HyperTransport" rev 0x00 > pchb2 at pci0 dev 24 functio
Re: NEW: GNU Smalltalk and Portable Forth Environments ports
Sorry, it should've gone to [EMAIL PROTECTED] On Sun, 14 Aug 2005 17:25:08 +0200 "J. Lievisse Adriaanse" <[EMAIL PROTECTED]> wrote: > On Sun, 14 Aug 2005 11:35:50 +0200 > [EMAIL PROTECTED] wrote: > > > Robbert Haarman wrote: > > > > > I have created OpenBSD ports for GNU Smalltalk > > > (http://www.gnu.org/software/smalltalk/) and the Portable Forth > > > Environment (http://pfe.sourceforge.net/). Both are attached for > > > those who want to test. Comments welcome. > > > [zap] > > Any you waist the time of people, that > > not knowingly we have it in tree, test pfe. > > Sort of yes, because if I test a port, I think the creator double > checked whether it's already in the ports collection. Oh well, > nevermind. > > Jasper > > > -- > "Security is decided by quality" -- Theo de Raadt > -- "Security is decided by quality" -- Theo de Raadt
Re: Using an ASUS K8S-MX a mistake? - update
On Sun, Aug 14, 2005 at 09:04:04AM -0500, Joe Szedula wrote: > I've installed the amd64 -current (13 August) on my ASUS K8S-MX system. > It solved the "bus-master DMA error" problem as well as the problem with > the drives (CD & hard disk) on the secondary IDE not being recognized. I > compiled the kernel and the rest of the system from source just to > exercise the computer. Using the BIOS settings to overclock the CPU by > about 10% from 1.8Ghz to 2.0GHz also seems to work ok. > > I'm still not able to use the built-in ethernet. The dmesg shows: > > vendor "SIS", unknown product 0x0190 (class network subclass ethernet, > rev 0x00) at pci0 dev 4 function 0 not configured As said earlier this is an unsupported chipset. > Does this: > > "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured > > just mean there were no SATA drives connected? Will SATA drives work when > connected to this motherboard? No this means no driver has claimed that device. Try this diff Index: pciide.c === RCS file: /cvs/src/sys/dev/pci/pciide.c,v retrieving revision 1.199 diff -u -p -r1.199 pciide.c --- pciide.c9 Aug 2005 04:10:13 - 1.199 +++ pciide.c14 Aug 2005 15:25:34 - @@ -519,7 +519,7 @@ const struct pciide_product_desc pciide_ sata_chip_map }, { PCI_PRODUCT_SIS_182, /* SIS 182 SATA */ - 0, + IDE_PCI_CLASS_OVERRIDE, sata_chip_map } };
Re: NEW: GNU Smalltalk and Portable Forth Environments ports
On Sun, 14 Aug 2005 11:35:50 +0200 [EMAIL PROTECTED] wrote: > Robbert Haarman wrote: > > > I have created OpenBSD ports for GNU Smalltalk > > (http://www.gnu.org/software/smalltalk/) and the Portable Forth > > Environment (http://pfe.sourceforge.net/). Both are attached for > > those who want to test. Comments welcome. > [zap] > Any you waist the time of people, that > not knowingly we have it in tree, test pfe. Sort of yes, because if I test a port, I think the creator double checked whether it's already in the ports collection. Oh well, nevermind. Jasper -- "Security is decided by quality" -- Theo de Raadt
Re: 8/13 snapshot and DHCP
Emmett Pate wrote: > I'd like to install the latest snapshot on a laptop that's currently > running 3.7-release. The boot CD fails to get a dynamic IP address. My > question is where is the most appropriate archive/list to research > whether this is a known problem? I just want to make sure I'm posting > to the correct place before I write up the details. > > Thanks, > here, [EMAIL PROTECTED] If in doubt, [EMAIL PROTECTED] Nick.
Re: 8/13 snapshot and DHCP
Have you tried dhclient at the shell? On 8/14/05 9:02 PM, "Emmett Pate" <[EMAIL PROTECTED]> wrote: > I'd like to install the latest snapshot on a laptop that's currently > running 3.7-release. The boot CD fails to get a dynamic IP address. My > question is where is the most appropriate archive/list to research > whether this is a known problem? I just want to make sure I'm posting > to the correct place before I write up the details. > > Thanks,
Re: Using an ASUS K8S-MX a mistake? - update
I've installed the amd64 -current (13 August) on my ASUS K8S-MX system. It solved the "bus-master DMA error" problem as well as the problem with the drives (CD & hard disk) on the secondary IDE not being recognized. I compiled the kernel and the rest of the system from source just to exercise the computer. Using the BIOS settings to overclock the CPU by about 10% from 1.8Ghz to 2.0GHz also seems to work ok. I'm still not able to use the built-in ethernet. The dmesg shows: vendor "SIS", unknown product 0x0190 (class network subclass ethernet, rev 0x00) at pci0 dev 4 function 0 not configured >From the motherboard user guide this is: SIS 191/190 MAC+ Realtek RTL8201CL 10/100 LAN PHY The dmesg shows these "unknown" items: ppb1 at pci0 dev 6 function 0 vendor "SIS", unknown product 0x000a rev 0x00 ppb2 at pci0 dev 7 function 0 vendor "SIS", unknown product 0x000a rev 0x00 lm0 at isa0 port 0x290/8: unknown winbond chip ID 0x88 I decided to try another ethernet board I had: dc0 at pci0 dev 9 function 0 "Lite-On PNIC" rev 0x20: irq 10, address 00:a0:cc:24:be:91 During the boot process I get this message: dc0: failed to force tx and rx to idle state repeated twice, after the "starting network" line. The network seems to work just fine. What does this indicate? Since it only appears during boot is it something I can just ignore? Does this: "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured just mean there were no SATA drives connected? Will SATA drives work when connected to this motherboard? The complete dmesg output follows this message. Joe - OpenBSD 3.8-beta (GENERIC) #0: Sat Aug 13 07:51:35 CDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 502722560 (490940K) avail mem = 419856384 (410016K) using 12324 buffers containing 50479104 bytes (49296K) of memory mainbus0 (root) cpu0 at mainbus0: (uniprocessor) cpu0: AMD Athlon(tm) 64 Processor 2800+, 2029.82 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFL USH,MMX,FXSR,SSE,SSE2,NXE,MMXX,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 "SIS 760 PCI" rev 0x03 ppb0 at pci0 dev 1 function 0 "SIS 86C202 VGA" rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "SIS 6330 VGA" rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) "SIS 965 PCI" rev 0x47 at pci0 dev 2 function 0 not configured pciide0 at pci0 dev 2 function 5 "SIS 5513 EIDE" rev 0x01: 760: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA, 9736MB, 19941264 sectors wd1 at pciide0 channel 0 drive 1: wd1: 16-sector PIO, LBA, 3079MB, 6306048 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2 wd2 at pciide0 channel 1 drive 0: wd2: 16-sector PIO, LBA48, 117800MB, 241254720 sectors atapiscsi0 at pciide0 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom removable wd2(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5 cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 auich0 at pci0 dev 2 function 7 "SIS 7012 AC97" rev 0xa0: irq 10, SiS7012 AC97 ac97: codec id 0x41445368 (Analog Devices AD1888) ac97: codec features headphone, 20 bit DAC, No 3D Stereo audio0 at auich0 ohci0 at pci0 dev 3 function 0 "SIS 5597/5598 USB" rev 0x0f: irq 5, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: SIS OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 3 ports with 3 removable, self powered ohci1 at pci0 dev 3 function 1 "SIS 5597/5598 USB" rev 0x0f: irq 5, version 1.0, legacy support usb1 at ohci1: USB revision 1.0 uhub1 at usb1 uhub1: SIS OHCI root hub, rev 1.00/1.00, addr 1 uhub1: 3 ports with 3 removable, self powered ohci2 at pci0 dev 3 function 2 "SIS 5597/5598 USB" rev 0x0f: irq 3, version 1.0, legacy support usb2 at ohci2: USB revision 1.0 uhub2 at usb2 uhub2: SIS OHCI root hub, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered ehci0 at pci0 dev 3 function 3 "SIS 7002 USB" rev 0x00: irq 5 usb3 at ehci0: USB revision 2.0 uhub3 at usb3 uhub3: SIS EHCI root hub, rev 2.00/1.00, addr 1 uhub3: 8 ports with 8 removable, self powered vendor "SIS", unknown product 0x0190 (class network subclass ethernet, rev 0x00) at pci0 dev 4 function 0 not configured "SIS 182 SATA" rev 0x01 at pci0 dev 5 function 0 not configured ppb1 at pci0 dev 6 function 0 vendor "SIS", unknown product 0x000a rev 0x00 pci2 at ppb1 bus 2 ppb2 at pci0 dev 7 function 0 vendor "SIS", unknown product 0x000a rev 0x00 pci3 at ppb2 bus 3 dc0 at pci0 dev 9
8/13 snapshot and DHCP
I'd like to install the latest snapshot on a laptop that's currently running 3.7-release. The boot CD fails to get a dynamic IP address. My question is where is the most appropriate archive/list to research whether this is a known problem? I just want to make sure I'm posting to the correct place before I write up the details. Thanks, -- Emmett "Buddy" Pate
ntpd could not parse "pool.ntp.org"
Hi, a message appears all the time saying: ntpd could not parse "pool.ntp.org" I dont know the reason why it appears and how to solve this doubt. Salutes, Mike
Re: bgpd and two CARPed routers
is it ok to run bgpd while both of my isp give me private IP? and I don't even know their AS number? On 8/12/05, Henning Brauer <[EMAIL PROTECTED]> wrote: > * Hyb <[EMAIL PROTECTED]> [2005-08-11 18:57]: > > I just have one remaining query - with two sessions from each upstream and > > CARP on the inside interface, does this make a legitimate scenario for > > ifstated? > > nah. > > > Presumably if both upstream interfaces failed on the CARP master, > > but the internal interface remained functional, then the internal network > > would loose connectivity. > > that is a completely made up scenario. > why not concentrate on real world problems... > > guess you could play some ifstated games, but I pretty much assure you > that you introduce new problems due to the way incresed complexity and > your total availbility is lower, not higher. > > -- > BS Web Services, http://www.bsws.de/ > OpenBSD-based Webhosting, Mail Services, Managed Servers, ... > Unix is very simple, but it takes a genius to understand the simplicity. > (Dennis Ritchie) > > -- Thanks & Regards, Ikmal aka EvoIVGSR http://www.leakage.org/ http://root.justdied.com/mylife/ http://www.openbsd.org.my/ http://mirrors.mybsd.org.my/
Re: Config file for spamd greytrap
David Purdue wrote: Please correct me if I am wrong, but my reading of the current man pages indicates that the only way to add greytrap addresses to /var/db/spamdb is by repeated running of the spamdb -T command. Are there plans to modify the spamd.conf format to allow specifying a fixed (preset) set of greytrap addresses there? Alternately, are there other approaches people are using, e.g. loading a set of addresses by running spamdb from rc.local? I'm being stupid - /var/db/spamd survives across boots (unlike pf tables that need to be reloaded), so any greytrap address needs only be added once, not each time you start up. And greytrap entries don't expire like other entries in spamdb. DavidP