Re: OT Re: 'database filesystems'
On 2007/01/10 20:45, bofh wrote: However, it won't be easy porting it. It's been out in opensolaris for over a year+, but only showed up in solaris 10 6/06. However the linux folks have to do it through fuse that's because it's not compatible with their license (use it and you can't make a patent claim against Sun - similar to the terms in the VRRP patent licensing). I'd be surprised if a complete reimplementation of it didn't tread on some Sun patents.
Re: 202 days Uptime in OpenBSD 3.6
On Thu, 11 Jan 2007 07:57:44 +0100, Rico Secada wrote: On Wed, 10 Jan 2007 18:47:38 -0800 Greg Thomas [EMAIL PROTECTED] wrote: On 1/10/07, Francisco Valladolid [EMAIL PROTECTED] wrote: I have 202 days using OpenBSD 3.6 as router/firewall/ PPPOE. I want to share this screenshot. http://farm1.static.flickr.com/147/353353577_e8e875083d_o.jpg Wow, I am impressed, your dick is wy bigger than mine because I have become a eunuch for the kingdom of heaven's sake. (Matthew 19:12) My uptime is permanently stuck at zero now. Greg We all know that a long uptime means neglect, but that doesn't mean we should reply in a dumb way like that! Why the hell do you always feel you have to make people wanna go away!? Actually the thing you seem to have missed is that the OP's boot time was when the version used was already out of support. 3.6 became unsupported on the release of 3.8 on November 1 2005. That's a lot more than 202 days ago. And yes, Greg was not dumb. His riposte was particularly apposite in the way it referenced the original post. Sadly humour rarely crosses language barriers and so I know only one joke which can be literally translated from French to English and still be funny and AFAIK it doesn't work in German or Spanish or Italian. Maybe you just didn't get the satire in Greg's reply... Trust me - to an EFL person with any kind of clue (including the biblical reference) it was, at the very least, humourous. Chill out a bit, ok? In the beginning was The Word and The Word was Content-type: text/plain The Word of Rod.
Re: Lenovo Thinkpad T43p won't do external VGA output properly
On Wed, Jan 10, 2007 at 03:46:59PM +0100, Jonathan Thornburg wrote: The built-in LCD display works fine at 1600x1200. My problem is that I can't get external video output properly. There seem to be two cases (neither one of which fits my definition of properly): * If, in the BIOS setup, I set Boot Display Device to LCD, then I can get 1600x1200 VGA output when booting and before I start X, but I get no external video output at all once I start X. * If, in the BIOS setup, I set Boot Display Device to VGA+LCD or VGA+DVI+LCD, then I get no external video output when booting and before I start X, but when I start X I get only 640x480 resolution (and matching external video output). I'm not sure exactly when, but at some point something appears to have changed, presumably in X, since X now seems to use 640x480 whenever it's unsure about the output device (previously I'm fairly sure it always used whatever resolution you told it to). That seems to be coupled with the fact that my T43 (which I know has a different graphics card from your T43p, but there again you seem to be having the same problems) plays funny buggers with the external output. On a handful of data projectors, I've got the correct 1024x768; on most I get 640x480; and I get occasional oddities like clipped 1024x768 (missing 20-30 pixels on all edges). Nothing I've tried thus far has persuaded X to use a sensible resolution in such cases. Laurie -- http://tratt.net/laurie/-- Personal http://convergepl.org/ -- The Converge programming language http://sosym.dcs.kcl.ac.uk/ -- Software and Systems Modelling Team
Re: reading sensor RS-232/485 output
I don't have any webpages to throw at you but converters from rs232 to rs485 exists. Also plugins cards to soekris that I would assume to be working. I have a lot of stuff I plan too hook up to OpenBSD, but have not found a good way to get the data out without writing to much code. It feels like reinventing the wheel each time. If anyone knows of an easy way to add hooks to sysctl that can be monitored by the sensorsd framework without hacking the kernel I would be really happy to know. Jacob Yocom-Piatt wrote: i am planning on pulling live rate data from some manufacturing equipment using a red lion rate meter with RS-232 or 485 interface http://www.redlion.net/Products/DigitalandAnalog/Counters/CounterRate/CUB5.html what is the best way to pull this data, using base OS utilities if possible? if coding this is most expedient, handing me a pointer to a useful information address is sufficient. i'm under the impression that openbsd doesn't support RS-485 interface cards. do correct me if i'm wrong here. cheers, jake
pkg_add behind a proxy [AGAIN]
This is a follow-up to my first message to the list (see below). In spite of the fact that - according to your suggestion - I have read every piece of info about ftp and proxies both under man and googling, I'm still unable to pkg_add any package to my openbsd 4.0 installation. Perhaps this is due to some bias from my wider experience with freebsd. Here you are a typical session and the errors popping up # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080 # FreeBSD style # echo $ftp_proxy http://user:[EMAIL PROTECTED]:8080 # pkg_add -v ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: ftp: no address associated with name: user:[EMAIL PROTECTED]:8080 Can't find ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz /usr/sbin/pkg_add: ftp://ftp.unina.it/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz:Fatal error Of course, in etc/resolv.conf I ghave the right nameserver Please help! Vittorio - Messaggio inoltrato da [EMAIL PROTECTED] - Data: Mon, 08 Jan 2007 13:09:19 +0100 Da: [EMAIL PROTECTED] Rispondi-A: [EMAIL PROTECTED] Oggetto: pkg_add behind a proxy A: misc@openbsd.org At office, after having installed a freebsd (OS on which I'm pretty experienced)server, I installed a new (web-)server with openbsd 4.0, OS on which I'm an absolute beginner, even though the experience with the other BSD helps a lot. Now I'm trying to install a basic set of packages under openbsd using the command (similar to the one I use under freebsd): pkg_add -v ftp://.../package but I'm unable to reach any site because my box is behind a firewall-proxy needing userid and password authentication. I tried defining two environmental variables (as under freebsd) $http_proxy and $ftp_proxy to no avail with openbsd. Google didn't help. How can I define once and for all the userid and password of the proxy? (Please take into account that I'm a beginner) Ciao Vittorio |- This message was sent using IMP Webmail and Smartmin SSC -| - Fine messaggio inoltrato. - |- This message was sent using IMP Webmail and Smartmin SSC -|
Re: reading sensor RS-232/485 output
* Per-Erik Persson wrote: I don't have any webpages to throw at you but converters from rs232 to rs485 exists. Also plugins cards to soekris that I would assume to be working. I have a lot of stuff I plan too hook up to OpenBSD, but have not found a good way to get the data out without writing to much code. It feels like reinventing the wheel each time. If anyone knows of an easy way to add hooks to sysctl that can be monitored by the sensorsd framework without hacking the kernel I would be really happy to know. technically, this can be done with a line discipline that decodes the data stream and provides the sensor. but then there are zillions of serial protocols and supporting them in this way would just blowup the kernel. Jacob Yocom-Piatt wrote: i am planning on pulling live rate data from some manufacturing equipment using a red lion rate meter with RS-232 or 485 interface http://www.redlion.net/Products/DigitalandAnalog/Counters/CounterRate/CUB5.html what is the best way to pull this data, using base OS utilities if possible? if coding this is most expedient, handing me a pointer to a useful information address is sufficient. i'm under the impression that openbsd doesn't support RS-485 interface cards. do correct me if i'm wrong here. cheers, jake
Re: 3.9, NFS client freezes with: short receive (0/4) from nfs server...
Hi, On Sun, Jul 09, 2006 at 03:27:41PM +0300, Dimitar Kodjabachev wrote: I have an NFS server /i386,FC4/ and two OpenBSD /i386,3.9-stable/ NFS clients. At irregular intervals, not corresponding to heavy load or other network/system issues, the two clients start complaining with the message: short receive (0/4) from nfs server server.domain.tld:/exported/directory Shortly after, usually a few seconds, both are unable to access the NFS server, as reported in /var/log/messages: nfs server server.domain.tld:/exported/directory: not responding At this point, only restarting the client machines allows them to see again the NFS server and mount the exported directory /umount -f doesn't work/. The fstab entries for the NFS mounts are identical on both clients: server.domain.tld:/exported/directory /mount/point nfs rw,nodev,nosuid,tcp,soft,intr,-r=8192,-w=8192 0 0 None of the machines experiences heavy load at any point. I have changed the network cards on both clients. The dmesg for each of the clients is included below. Mitko I have exactly same problem on 4.0-current. Does anyone knows howto force umount -f to work? I didn't had any problems with udp mounted nfs export like this but copying ~700mb of data took about 20min to copy, and on tcp it's about 25 seconds. -- best regards q# # mount 192.168.9.121:/mnt/storage/pub on /home/disks/nfs type nfs (nodev, nosuid, read-only, v3, tcp, soft, intr, timeo=100) 192.168.9.121:/mnt/storage/upload on /home/disks/nfs_rw type nfs (nodev, nosuid, v3, tcp, soft, intr, timeo=100) # fstab 192.168.9.121:/mnt/storage/pub /home/disks/nfs nfs ro,-b,-T,-i,-s,nodev,nosuid,noauto 0 0 192.168.9.121:/mnt/storage/upload /home/disks/nfs_rw nfs rw,-b,-T,-i,-s,nodev,nosuid,noauto 0 0 OpenBSD 4.0-current (ACPI) #9: Tue Jan 2 07:55:07 MST 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/ACPI cpu0: Intel(R) Pentium(R) M processor 1.86GHz (GenuineIntel 686-class) 1.87 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF,EST,TM2 real mem = 1073119232 (1047968K) avail mem = 970752000 (948000K) using 4256 buffers containing 53780480 bytes (52520K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 10/02/05, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.3 @ 0xf7860 (60 entries) bios0: Dell Inc. Latitude D610 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfb2c0/192 (10 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82371 ISA and IDE rev 0x00) pcibios0: PCI bus #4 is the last bus bios0: ROM list: 0xc/0x1 acpi0 at mainbus0: rev 0 acpi0: tables DSDT FACP APIC ASF! MCFG SSDT SSDT SSDT acpitimer0 at acpi0: 3579545 Hz, 24 bits acpi device at acpi0 from table DSDT not configured acpi device at acpi0 from table FACP not configured acpi device at acpi0 from table APIC not configured acpi device at acpi0 from table ASF! not configured acpi device at acpi0 from table MCFG not configured acpi device at acpi0 from table SSDT not configured acpi device at acpi0 from table SSDT not configured acpi device at acpi0 from table SSDT not configured acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (AGP_) acpiprt2 at acpi0: bus 3 (PCIE) acpiac0 at acpi0: AC unit online acpibat0 at acpi0: BAT0: model: DELL C12956 serial: 20589 type: LION oem: Samsung SDI acpibat1 at acpi0: BAT1: not present acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: PBTN acpibtn2 at acpi0: SBTN acpicpu0 at acpi0: CPU0: 1867, 1600, 1333, 1067, 800 MHz acpitz0 at acpi0, critical temperature: 101 degC cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82915GM/PM/GMS Host rev 0x03 ppb0 at pci0 dev 1 function 0 Intel 82915PM/GM PCIE rev 0x03 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Radeon Mobility M300 M22 rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ppb1 at pci0 dev 28 function 0 Intel 82801FB PCIE rev 0x03 pci2 at ppb1 bus 2 bge0 at pci2 dev 0 function 0 Broadcom BCM5751 rev 0x01, BCM5750 A1 (0x4001): irq 11, address 00:14:22:d9:e8:14 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 uhci0 at pci0 dev 29 function 0 Intel 82801FB USB rev 0x03: irq 11 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 10 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 9 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 5 usb3 at
Re: pkg_add behind a proxy [AGAIN]
On 2007/01/11 12:19, [EMAIL PROTECTED] wrote:
In spite of the fact that - according to your suggestion - I have read every
piece of info about ftp and proxies both under man and googling, I'm still
unable to pkg_add any package to my openbsd 4.0 installation.
proxy authentication isn't supported in ftp. pkg_add can use
a different program to carry out the transfer, though:
FETCH_CMD Override use of ftp(1). Must point to a command that
understands ${FETCH_CMD} -o - url.
as you'll see from ftp(1), -o - dumps the file to stdout.
sounds like you're probably using an HTTP proxy server to fetch
things, is that right? if so you might have luck with a script
that does something like this,
lynx -pauth=user:pass -dump $3
(not tested at all, but hopefully you get the idea - if it's no
good, use these clues to work something out for yourself :)
Re: pkg_add behind a proxy [AGAIN]
On Thu, Jan 11, 2007 at 12:19:34PM +0100, [EMAIL PROTECTED] wrote: This is a follow-up to my first message to the list (see below). In spite of the fact that - according to your suggestion - I have read every piece of info about ftp and proxies both under man and googling, I'm still unable to pkg_add any package to my openbsd 4.0 installation. Perhaps this is due to some bias from my wider experience with freebsd. Here you are a typical session and the errors popping up # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080 # FreeBSD style try adding a trailing slash to this command. for example. # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080/ -- Mathieu Sauve-Frankel
Re: pkg_add behind a proxy [AGAIN]
On Thu, Jan 11, 2007 at 12:19:34PM +0100, [EMAIL PROTECTED] wrote: This is a follow-up to my first message to the list (see below). In spite of the fact that - according to your suggestion - I have read every piece of info about ftp and proxies both under man and googling, I'm still unable to pkg_add any package to my openbsd 4.0 installation. Perhaps this is due to some bias from my wider experience with freebsd. Here you are a typical session and the errors popping up # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080 # FreeBSD style # echo $ftp_proxy http://user:[EMAIL PROTECTED]:8080 # pkg_add -v ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: ftp: no address associated with name: user:[EMAIL PROTECTED]:8080 Can't find ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz /usr/sbin/pkg_add: ftp://ftp.unina.it/pub/OpenBSD/4.0/packages/i386/mc-4.6.1p0.tgz:Fatal error Of course, in etc/resolv.conf I ghave the right nameserver I'll point you again to my earlier message: http://marc.theaimsgroup.com/?l=openbsd-miscm=116830692706859w=2. Joachim
Re: pkg_add behind a proxy [AGAIN]
Mathieu Sauve-Frankel wrote: On Thu, Jan 11, 2007 at 12:19:34PM +0100, [EMAIL PROTECTED] wrote: This is a follow-up to my first message to the list (see below). In spite of the fact that - according to your suggestion - I have read every piece of info about ftp and proxies both under man and googling, I'm still unable to pkg_add any package to my openbsd 4.0 installation. Perhaps this is due to some bias from my wider experience with freebsd. Here you are a typical session and the errors popping up # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080 # FreeBSD style try adding a trailing slash to this command. for example. # export ftp_proxy=http://user:[EMAIL PROTECTED]:8080/ Perhaps, you have the same problem as I have. I'm not able to pass our internal ftp proxy with the standard ftp command, I tried every possible combination, without success. 1) I have to connect without authentication to our internal ftp proxy server: $ ftp -n vproxy.x.y Connected to vproxy.x.y 220 XYZ FTP Service (36) ftp 2) and now connect to the external ftp server ftp user [EMAIL PROTECTED] 331 Who are you impersonating today? Password: 230- 230-Welcome to Sunsite Alberta 230- Login Successful. 230 Your data rate unrestricted ftp That way it works ... I successfully used ncftp, but not with pkg_add as it doesn't support the -o - feature. Kind regards Didier
Wanted: RALink based (2501/2600) pcmcia-Card with the possibility to add an external Antenna
Hello everybody, I`m looking for a RALink 2501/2600 based pcmcia-Card with the possibility to connect a Yagi-Antenna. Unfortunaly I wasn`t able to find anything after a hour of googling. It would be good if the card would at leats provide 100mW. The 2501-Chipset would be nice because of the a possibility but if somebody knows a 2500 based Card wich matchs my specifications I would be happy either. Once somebody said Support Asia... Well I try... but it seams In Germany or Europe nobody ever sold such a pcmica-Card. If somebody knows where to get such Cards please do let me know! :) Kind regards, Sebastian
shame lightweight
The previous record of 414. All indications are that with low interest rates, prices will continue to move in a positive direction, although just a little slower than before, Yarbor said. Housing starts should rise 1. Sales figures are only reported in combined fashion for Buffalo, Pepin and Trempeleau counties. Northeast regionThe Northeast region grew at 14. ; Ladera Ranch in Orange County, Calif. The market is being driven in large part by low mortgage rates which averaged 5. Until business investment picks up across the board, the national economy will continue to lurch along. In an effort to stimulate the economy, Congress isconsidering a variety of proposals to cut taxes that could havesignificant impact on the attractiveness of real estate investments. 5 percent from a year earlier. So, we have partnered with NAHREP to identify and implement solutions that will help Hispanic individuals and families achieve the dream of homeownership. 9Hospital and institutional. 1Highways and streets. Weber suggested that mortgage rates will likely remain low for the foreseeable future as inflationary pressures remain in check. According to the Mortgage Bankers Association of America, applications for refinance jumped 15 percent last week, near the record high set in March. The median price for both detached homes and condominiums represents closed escrow sales. A host of social problems can also occur where working families face a shortage of affordable housing. The growth rates for individual counties were mixed. TOLL BROTHERS, INC. 2Water supply facilities. Impact has developed this format for the securitization of large-scale pools of affordable housing mortgages. 3 percent; Beverly Hills, 38. Peterson, Executive Vice President, as Chief Operating Officer. , NAR immediate past president. 4 percent; San Clemente, 39. These revisions reflect delays between origination and funding by Freddie Mac or Fannie Mae during a period of strong home-value appreciation. And according to Freddie Mac's quarterly refinance review, the average age of a refinanced loan fell to 1. Source: Toll Brothers, Inc. The corporation has informed its regulator OFHEO, the SEC and the NYSE about the matters described in this release. 2 percent, and during the last five years, home values increased 67. 4 million, a level not reached since 1992. In the South, the existing condo and co-op sales pace rose 1. Individual proposals were not measured against each other, he noted. Each quarter, the Smart Growth Alliance will evaluate project proposals in the Washington area that are under review or subject to review by local government regulatory agencies. The index indicates the number of months needed to deplete the supply of homes on the market at the current sales rate. Data based on sample. ; Sonoma Villero in Bothell, Wash. Homes for sale in California - rates fall and existing home price rises 14. More information is available on the Bank's web site. [demime 1.01d removed an attachment of type image/gif which had a name of paradox.gif]
Re: unable to login
On Wed, 10 Jan 2007, Chuck Robey wrote:
I have a problem with my Zaurus, let me paint the scenario. I am a rank
newbie with OpenBSD, so I was trying (as a startup experiment) to build
all of it. I have my main machine sitting nearby (running FreeBSD
current, at which I have years of experience), so I NFS mounted the
little Zaurus's /usr/src and /usr/obj from my FreeBSD host. I used cvsup
to get the entire OpenBSD archive, then checked out copies of ports and
and src (forgot to add ports to my list up on top, I had 3 remotely mounted
filesystems). OK, I went ahead, built a kernel successfully, and did a
make build.
I was kinda shocked to find that the install was included in the build
target, so this shows me to be a little bit stupid, that I didn't read
it well enough to make sure, but that's not the problem. I had the new
kernel
installed, and it seems to boot ok, but for both of my two user's, once
I enter my password, it immediately cycles back to login: again. I tried
giving it tons of control'c's but that wouldn't catch it, so I cna't get
logged in.
Look, as far as emergencies go, I have the orignal Linux OS sitting in
back as a emergency, and it does work, so if there's no better fix,
I could reinstall everything, or maybe just my /etc/ but could anyone
give me guesses as to what sort of screwup I perpetrated, so as to
keep me from getting logged in? Else, I will probably do this again,
and I really, really like to learn from my mistakes, you know?
Thanks for your guesses, folks...
Something got broken, and I suspect it was in /etc, but I can't picture
a simple make build in /usr/src as the full culprit here. (This shouldn't
mess with /etc/*. As of yesterday, when I did one (4.0 stable) it didn't.)
so first try this:
at the BOOT prompt, enter -s ; this should give you single user mode,
i.e. a root shell on the console, with no filesystems save / mounted.
You can at this point inspect /etc/master.passwd and see what is up.
(Are your users there? what's in their password fields?) Are other things
in /etc messed up? Things that you customized, like /etc/myname, /etc/mygate,
probably /etc/rc.conf, others.
If you find something obvious, you can fix it. First remount / for writing
(mount -u -o rw /) Then you can mount /usr to get some tools (mount /usr
should do it).
Do dmesg | head and see what the kernel thinks it is, then read on:
(You will need to mount /usr to get /usr/bin/head, or just dmesg and
be quick on the ^S or ^C, or pipe the dmesg to /tmp/foo and use ed
on it. In ed, try 1,10p to display lines 1 through 10. Use q to quit.
When you get the system working, print out the ed man page and put it
in your desk.)
You should see something like this:
[EMAIL PROTECTED] root]# dmesg | head -2
OpenBSD 4.0-stable (GENERIC.MP) #3: Wed Jan 10 11:55:06 EST 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP
(Probably just GENERIC not GENERIC.MP).
A possible source of your problem: when you checked out the sources, what
tag did you specify in the cvs command? It should have been of the form
-r OPENBSD_4_0. If you didn't specify a tag, you did not get STABLE,
you got current, the experimental/developmental branch. You did not
want to do that ;-) If you did, then boot the installation CD and do
a reinstallation. On your freebsd box, you can check the tag by
displaying the file {some path known to you}/src/CVS/Tag. If it's
not TOPENBSD_4_0 wipe out the hierarchy and re-fetch it. this tag
business applies to the X and ports sources, too.
man 8 release (very most excellent reading, refreshing and engaging,
with a plot you just can't put down.)
man 1 cvs (packed full of vital goodness.)
Dave
Re: Dual display with DT3184?
On 1/11/07, Neil E. Sprinlan [EMAIL PROTECTED] wrote: Neil, Thank you for your reply. Is dual display possible? Your monitor has 2 *inputs* to connect 2 computers. You can't daisy-chain monitors. Thats a new thing to me. So you would have to switch from A to B manually, right;) Cool stuff!.. PRIORITY A PRIORITY B OFIX A OFIX B I do not want to damage hw so asking first. 1. What are those OFIX options? I guess it forces the input to A or B. I thought PRIORITY not the OFIX ones do this. -+-neil-+- vladas
Stuck with Dualdisplay xorg
Hi everyone, I am getting dumb with my xorg.conf. Dual head is working well with mergedfb option. X starts, and i can do everything except using Firefox and rdesktop. When i use firefox or rdesktop all the computer hang, and i need to reset. When i switch to simple head monitor, everything is working well. Si i hope i will find some help about this problem. I currently use OpenBSD 4.0 with Xorg 6.9.0. When hitting the numlock key the leds doesn't get update. When i try to ping the computer, there is no reponse. And if i launch a ssh remote connection before the hang, the ssh connection get terminated. Hitting all CTRL-ALT combinaison doesn't do anything. And in the xorg.0.log there is no information. On xorg mailing list they want me to go to snapshot and make some test, but i am on a production computer, and all i want to have is dual screen. My questions is simply : - How can i get dual screen ? - Does my 9600 ati is a bad choice ? - Is there a workaround for making everything work ? It would be great to have some help, i am stuck without dual display. Here si my latest xorg.conf : Section Module Loaddbe # Double buffer extension SubSection extmod Optionomit xfree86-dga # don't initialise the DGA extension EndSubSection Loadtype1 Loadfreetype Load glx EndSection Section Files RgbPath /usr/X11R6/lib/X11/rgb FontPath */usr/X11R6/lib/X11/fonts/misc/* FontPath */usr/X11R6/lib/X11/fonts/TTF/* FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath */usr/X11R6/lib/X11/fonts/CID/* FontPath */usr/X11R6/lib/X11/fonts/75dpi/* FontPath */usr/X11R6/lib/X11/fonts/100dpi/* FontPath */usr/X11R6/lib/X11/fonts/local/* FontPath */usr/X11R6/lib/X11/fonts/75dpi/*:unscaled FontPath */usr/X11R6/lib/X11/fonts/100dpi/*:unscaled FontPath */usr/local/lib/X11/fonts/ghostscript/* FontPath */usr/local/lib/X11/fonts/mscorefonts/* EndSection Section InputDevice Identifier Keyboard1 Driver kbd Option AutoRepeat 500 30 Option XkbRules xorg Option XkbModel pc105 Option XkbLayout fr EndSection Section InputDevice Identifier Mouse1 Driver mouse Option Protocolwsmouse # wsmouse protocol Option Device /dev/wsmouse Option ZAxisMapping 4 5 EndSection Section Monitor Identifier e172fp HorizSync 31-80 VertRefresh 56-75 Option DPMS ModeLine1280x1024 108.00 1280 1328 1440 1688 1024 1025 1028 1066 EndSection Section Monitor Identifier e1800fp HorizSync 30-70 VertRefresh 56-75 Option DPMS ModeLine1280x1024 108.00 1280 1328 1440 1688 1024 1025 1028 1066 EndSection Section Device Identifier 9600 Driver radeon BusID PCI:1:0:0 Option MonitorLayout TMDS, TMDS Option MergedFB true Option CRT2HSync 31-80 Option CRT2VRefresh 56-75 Option CRT2Position LeftOf Option MetaModes 1280x1024-1280x1024 Option MergedXinerama True EndSection Section Screen Identifier Screen 1 Device 9600 Monitor e1800fp DefaultDepth 24 Subsection Display Depth 24 Modes 1280x1024 #1280x1024 1024x768 800x600 640x480 Virtual 2560 1024 EndSubsection EndSection Section ServerLayout Identifier Simple Layout Screen Screen 1 Screen Screen 2 InputDevice Mouse1 CorePointer InputDevice Keyboard1 CoreKeyboard Option BlankTime 0 Option StandbyTime 0 Option SuspendTime 0 Option OffTime 0 EndSection
Re: Stuck with Dualdisplay xorg
nolan76 schrieb: On xorg mailing list they want me to go to snapshot and make some test, but i am on a production computer, and all i want to have is dual screen. My questions is simply : - How can i get dual screen ? - Does my 9600 ati is a bad choice ? - Is there a workaround for making everything work ? It would be great to have some help, i am stuck without dual display. I have no direct answers, but maybe my xorg.conf helps... its on 4.0-current tho. Attachments will probably not shown on list but I reply to all to check that since they are just plain text. - Michael Section ServerLayout Identifier X.org Configured Screen 0 Screen0 LeftOf Screen1 Screen 1 Screen1 0 0 InputDeviceMouse0 CorePointer InputDeviceKeyboard0 CoreKeyboard EndSection Section ServerFlags Option Xinerama true EndSection Section Files RgbPath /usr/X11R6/lib/X11/rgb ModulePath /usr/X11R6/lib/modules FontPath /usr/X11R6/lib/X11/fonts/misc/ FontPath /usr/X11R6/lib/X11/fonts/TTF/ FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath /usr/X11R6/lib/X11/fonts/CID/ FontPath /usr/X11R6/lib/X11/fonts/75dpi/ FontPath /usr/X11R6/lib/X11/fonts/100dpi/ EndSection Section Module Load dbe Load extmod Load glx Load record Load xtrap Load freetype Load type1 EndSection Section InputDevice Identifier Keyboard0 Driver kbd EndSection Section InputDevice Identifier Mouse0 Driver mouse Option Protocol wsmouse Option Device /dev/wsmouse Option ZAxisMapping 4 5 6 7 EndSection Section Monitor Identifier Monitor0 VendorName Monitor Vendor ModelNameMonitor Model HorizSync30.0 - 81.0 VertRefresh 56.0 - 76.0 Option DPMS Option DDC off EndSection Section Monitor Identifier Monitor1 VendorName Monitor Vendor ModelNameMonitor Model HorizSync30.0 - 70.0 VertRefresh 56.0 - 160.0 # HorizSync31.5 - 75.0 # VertRefresh 50.0 - 70.0 Option DPMS EndSection Section Device Identifier Card0 Driver i810 VendorName Intel Corporation BoardName 945G Integrated Graphics Controller Option VBERestore true Option DevicePresence true Option MonitorLayout DFP,CRT BusID PCI:0:2:0 Screen 0 EndSection Section Device Identifier Card1 Driver i810 VendorName Intel Corporation BoardName 945G Integrated Graphics Controller Option MonitorLayout DFP,CRT BusID PCI:0:2:0 Screen 1 EndSection Section Screen Identifier Screen0 Device Card0 MonitorMonitor0 SubSection Display Viewport 0 0 Modes 1280x1024 Depth 16 EndSubSection EndSection Section Screen Identifier Screen1 Device Card1 MonitorMonitor1 SubSection Display Viewport 0 0 Modes 1024x768 Depth 16 EndSubSection EndSection OpenBSD 4.0-current (GENERIC.MP) #1130: Wed Jan 3 10:04:12 MST 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,CNXT-ID,CX16 real mem = 1063378944 (1038456K) avail mem = 961794048 (939252K) using 4256 buffers containing 53293056 bytes (52044K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 03/31/06, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.3 @ 0xf0450 (73 entries) bios0: Dell Inc. OptiPlex GX620 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfed10/240 (13 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801GH LPC rev 0x00) pcibios0: PCI bus #3 is the last bus bios0: ROM list: 0xc/0xa800! 0xca800/0x1800 acpi at mainbus0 not configured mainbus0: Intel MP Specification (Version 1.4) cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 199 MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) D CPU 3.00GHz (GenuineIntel 686-class) 3 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,CNXT-ID,CX16 mainbus0: bus 0 is type PCI mainbus0: bus 1 is type PCI mainbus0: bus 2 is type
Re: 202 days Uptime in OpenBSD 3.6
:D :D
Always buy the OpenBSD CD's please see it.
http://www.flickr.com/photos/sigueme/141498221/
http://www.flickr.com/photos/sigueme/286455116/
-the current -release (4.0) not arrived to my office yet, ... I don't know.
This machine is using 3.6 in a customers office, maybe he no need pay me for
updating your small router, but I have access to this machine.
;-)
On 1/11/07, Marc Balmer [EMAIL PROTECTED] wrote:
* Francisco Valladolid wrote:
I have 202 days using OpenBSD 3.6 as router/firewall/ PPPOE.
we bring out a new release every ~180 days, with fixes and new features.
If your uptime is longer than this, it is an indication that you did not
buy any new cd-roms from us, which you really should if you want to
support us... and 3.6 is quite old style these days, a much shorter
uptime, but with 4.0 would be so much better ;)
hmm, why are people so proud of their uptimes when it only show they
don't care for their systems?
--
---
Therefore, if anyone is in Christ, he is a new creation; the old has gone,
the new has come! - 2 Corinthians 5:17 (NIV)
---
Francisco Valladolid Hdez.
[EMAIL PROTECTED]
{Open}{Net}BSD user.
Re: Stuck with Dualdisplay xorg
2007/1/11, Michael [EMAIL PROTECTED]: nolan76 schrieb: On xorg mailing list they want me to go to snapshot and make some test, but i am on a production computer, and all i want to have is dual screen. My questions is simply : - How can i get dual screen ? - Does my 9600 ati is a bad choice ? - Is there a workaround for making everything work ? It would be great to have some help, i am stuck without dual display. I have no direct answers, but maybe my xorg.conf helps... its on 4.0-current tho. Attachments will probably not shown on list but I reply to all to check that since they are just plain text. - Michael It already try your kind of configuration, and i try again now. But i fin the following device section i put BusID PCI:1:0:0 for the secondary card, i get a black screen and a full hang computer (with a 0 octet log). And if i put PCI:1:0:1 i get a cloned view. X -scanpci return me two ATI device on 1:0:0 and 1:0:1. It seems like 9600 pro is not a good card for dualhead ?
Re: Stuck with Dualdisplay xorg
hi! On Thu, Jan 11, 2007 at 04:12:18PM +0100, nolan76 wrote: I am getting dumb with my xorg.conf. Dual head is working well with mergedfb option. X starts, and i can do everything except using Firefox and rdesktop. When i use firefox or rdesktop all the computer hang, and i need to reset. When i switch to simple head monitor, everything is working well. Si i hope i will find some help about this problem. I currently use OpenBSD 4.0 with Xorg 6.9.0. When hitting the numlock key the leds doesn't get update. When i try to ping the computer, there is no reponse. And if i launch a ssh remote connection before the hang, the ssh connection get terminated. Hitting all CTRL-ALT combinaison doesn't do anything. And in the xorg.0.log there is no information. On xorg mailing list they want me to go to snapshot and make some test, but i am on a production computer, and all i want to have is dual screen. My questions is simply : - How can i get dual screen ? - Does my 9600 ati is a bad choice ? - Is there a workaround for making everything work ? i'm using the mergedfb feature on my thinkpad T42, running OpenBSD 4.0-current (search for T42 on http://www.openbsd.org/i386-laptop.html). MergedFB is running fine, but it was a bit difficult to figure out the correct configuration. Especially the fact that MergedFB is != Xinerama, it emulates Xinerama but the configuration is totally different. You don't even have to run a real xorg.conf Multihead configuration (and i do not use MergedXinerama). here's the interesting part of my configuration for two independent screens (non-clone mode, get the complete configuration from http://team.vantronix.net/~reyk/xorg.conf-mergedfb-t42): ---snip--- Section Device Identifier Card0 Driver radeon Option AGPMode 4 Option EnablePageFlipon Option RenderAccel on Option DynamicClocks on Option BIOSHotkeys on # Option MergedFB true Option CRT2Position LeftOf Option MetaModes 1024x768-1024x768 Option MergedNonRectangular true VendorName ATI Technologies Inc BoardName Radeon Mobility M7 LW [Radeon Mobility 7500] BusID PCI:1:0:0 EndSection ---snap--- MergedFB is commented out because the driver will automatically detect the external Monitor via DDC (my external Monitor is a 19 TFT screen). if you set MergedFB to true, it will _force_ MergedFB pseudo-Xinerama mode even if the seconds display is not connected - but the radeon driver is buggy and will report an existing second screen with a size of 0x0 pixels in this case :(. other interesting parts (yes, you only need to configure one screen): ---snip--- Section ServerLayout Identifier Multihead Layout Screen Screen0 InputDevice Mouse0 CorePointer InputDevice Keyboard0 CoreKeyboard EndSection Section Module Load dbe Load ddc Load vbe Load extmod Load glx Load record Load xtrap Load type1 Load freetype Load int10 Load bitmap EndSection ---snap--- btw.: ssh-askpass now supports xinerama and displays it's dialog window on the first screen instead of spanning it over the monitors... i fixed this while playing with mergedfb just some days ago ;). reyk It would be great to have some help, i am stuck without dual display. Here si my latest xorg.conf : Section Module Loaddbe # Double buffer extension SubSection extmod Optionomit xfree86-dga # don't initialise the DGA extension EndSubSection Loadtype1 Loadfreetype Load glx EndSection Section Files RgbPath /usr/X11R6/lib/X11/rgb FontPath */usr/X11R6/lib/X11/fonts/misc/* FontPath */usr/X11R6/lib/X11/fonts/TTF/* FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath */usr/X11R6/lib/X11/fonts/CID/* FontPath */usr/X11R6/lib/X11/fonts/75dpi/* FontPath */usr/X11R6/lib/X11/fonts/100dpi/* FontPath */usr/X11R6/lib/X11/fonts/local/* FontPath */usr/X11R6/lib/X11/fonts/75dpi/*:unscaled FontPath */usr/X11R6/lib/X11/fonts/100dpi/*:unscaled FontPath */usr/local/lib/X11/fonts/ghostscript/* FontPath */usr/local/lib/X11/fonts/mscorefonts/* EndSection Section InputDevice IdentifierKeyboard1 Driverkbd Option AutoRepeat 500 30 Option XkbRules xorg Option XkbModel pc105 Option XkbLayoutfr EndSection Section InputDevice IdentifierMouse1 Drivermouse Option Protocolwsmouse# wsmouse protocol Option Device /dev/wsmouse Option ZAxisMapping 4 5 EndSection Section Monitor
Re: reading sensor RS-232/485 output
On Wednesday 10 January 2007 21:51, Jacob Yocom-Piatt wrote: i am planning on pulling live rate data from some manufacturing equipment using a red lion rate meter with RS-232 or 485 interface http://www.redlion.net/Products/DigitalandAnalog/Counters/CounterRate /CUB5.html what is the best way to pull this data, using base OS utilities if possible? if coding this is most expedient, handing me a pointer to a useful information address is sufficient. i'm under the impression that openbsd doesn't support RS-485 interface cards. do correct me if i'm wrong here. cheers, jake Hi Jake, I looked over the datasheet/manual for the RS-232/RS-485 interface. http://www.redlion.net/Products/Groups/Counter/Rate/CUB5/Docs/12039.pdf The format of the command strings looks strikingly similar to SCPI, which is often (if not usually) used on IEEE-488/GPIB/HPIB interfaces. http://en.wikipedia.org/wiki/SCPI http://en.wikipedia.org/wiki/IEEE-488 A lot of equipment that has (or supports) SCPI over GPIB will also support the command set over serial. As always, you never get plain vanillia SCPI since every device and every device mfg has their own good ideas tossed in as special commands. Though it seems like you can talk to the CUB5 with nothing more than a terminal emulator and some typing, doing it manually is really only useful for figuring out which commands you want/need to run. You could automate everything as a shell script using only the utilities in the base install, in short telnet over serial. I usually don't get the luxury of UNIX shell scripting, and often have a cross platform requirement, so I normally do the coding in perl. The following ports will be needed and they have win32 counterparts. /usr/ports/comms/p5-Device-SerialPort /usr/ports/net/p5-Net-Telnet PLEASE BE WARNED: If you have strict timing requirements, particularly machine operator safety requirements (i.e. people operating potentially dangerous machines), the *ONLY* correct way to do machine automation is to use a (hard/soft) real time operating system and write your code in C to enforce your timing. Kind Regards, JCR
Re: Stuck with Dualdisplay xorg
nolan76 schrieb: It already try your kind of configuration, and i try again now. But i fin the following device section i put BusID PCI:1:0:0 for the secondary card, i get a black screen and a full hang computer (with a 0 octet log). And if i put PCI:1:0:1 i get a cloned view. X -scanpci return me two ATI device on 1:0:0 and 1:0:1. It took me around three hours to figure out the correct options. Please note that ALL options I used for Monitor and Device are important... It seems like 9600 pro is not a good card for dualhead ? Since I do not know this card, no clue, sorry.
Re: Stuck with Dualdisplay xorg
On Thursday 11 January 2007 07:12, nolan76 wrote: Section Device Identifier 9600 Driver radeon BusID PCI:1:0:0 Option MonitorLayout TMDS, TMDS Option MergedFB true Option CRT2HSync 31-80 Option CRT2VRefresh 56-75 Option CRT2Position LeftOf Option MetaModes 1280x1024-1280x1024 Option MergedXinerama True EndSection I believe your problem is the options you are using. -comment them out. Use a simple configuration with two Device section like the those previously posted for you or like mine which is below. You may also need to set server flags to get xinerama working (dual head span). The way I handle modes is, well, not very normal but the reason is I do not have particularly normal monitors. If you have good documentation for your monitors, you can do what I've done; namely using gtf(1) to figure out the exact timings for the modes supported by the monitor. Doing this is not recommended mainly because most people get it wrong but when you know how to get it right, you can solve some difficult issues on esoteric monitors. section Files RgbPath /usr/X11R6/lib/X11/rgb ModulePath /usr/X11R6/lib/modules FontPath /usr/X11R6/lib/X11/fonts/misc/ FontPath /usr/X11R6/lib/X11/fonts/75dpi/:unscaled FontPath /usr/X11R6/lib/X11/fonts/100dpi/:unscaled FontPath /usr/X11R6/lib/X11/fonts/TTF/ FontPath /usr/local/share/ghostscript/fonts/ FontPath /usr/local/lib/X11/fonts/ghostscript/ FontPath /usr/local/lib/X11/fonts/terminus/ FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath /usr/local/share/fonts/override/ FontPath /usr/local/share/fonts/ EndSection Section Module Load dbe Load extmod Load glx Load record Load xtrap Load freetype Load type1 EndSection Section InputDevice Identifier Keyboard0 Driver kbd EndSection Section InputDevice Identifier Mouse0 Driver mouse Option Protocol wsmouse Option Device /dev/wsmouse Option ZAxisMapping 4 5 6 7 EndSection Section Modes Identifier WideModes # 1280x800 @ 85.00 Hz (GTF) hsync: 71.40 kHz; pclk: 123.38 MHz Mode 1280x800_85.00 DotClock 123.38 HTimings 1280 1368 1504 1728 Vtimings 800 801 804 840 Flags -HSync +Vsync EndMode # 1600x1000 @ 85.00 Hz (GTF) hsync: 89.25 kHz; pclk: 194.21 MHz Mode 1600x1000_85.00 DotClock 194.21 HTimings 1600 1712 1888 2176 VTimings 1000 1001 1004 1050 Flags -HSync +Vsync EndMode # 1600x1000 @ 95.00 Hz (GTF) hsync: 100.32 kHz; pclk: 219.90 MHz Mode 1600x1000_95.00 DotClock 219.90 HTimings 1600 1720 1896 2192 VTimings 1000 1001 1004 1056 Flags -HSync +Vsync EndMode # 1600x1024 @ 85.00 Hz (GTF) hsync: 91.38 kHz; pclk: 198.83 MHz Mode 1600x1024_85.00 DotClock 198.83 HTimings 1600 1712 1888 2176 VTimings 1024 1025 1028 1075 Flags -HSync +Vsync EndMode # 1600x1024 @ 90.00 Hz (GTF) hsync: 97.02 kHz; pclk: 212.67 MHz Mode 1600x1024_90.00 DotClock 212.67 HTimings 1600 1720 1896 2192 VTimings 1024 1025 1028 1078 Flags -HSync +Vsync EndMode # 1600x1024 @ 95.00 Hz (GTF) hsync: 102.79 kHz; pclk: 225.32 MHz Mode 1600x1024_95.00 DotClock 225.32 HTimings 1600 1720 1896 2192 VTimings 1024 1025 1028 1082 Flags -HSync +Vsync EndMode # 1920x1200 @ 85.00 Hz (GTF) hsync: 107.10 kHz; pclk: 282.74 MHz Mode 1920x1200_85.00 DotClock 282.74 HTimings 1920 2072 2280 2640 VTimings 1200 1201 1204 1260 Flags -HSync +Vsync EndMode EndSection Section Monitor Identifier Monitor0 VendorName SNY ModelName GDM-FW900 UseModes WideModes OptionDPMS # DisplaySize 480 310 # mm DisplaySize 474 296 # mm ratio 16:10 # DisplaySize 395 296 # mm ratio 4:3 # DisplaySize 370 296 # mm ratio 5:4 EndSection Section Monitor Identifier Monitor1 VendorName SNY ModelName GDM-FW900 UseModes WideModes OptionDPMS # DisplaySize 480 310 # mm DisplaySize 474 296 # mm ratio 16:10 # DisplaySize 395 296 # mm ratio 4:3 # DisplaySize 370 296 # mm ratio 5:4 EndSection Section Device Identifier Card0 OptionAGPMode 4 OptionAGPSize 256 OptionDmaMode Any OptionDmaType AGP OptionBusType AGP Drivermga VendorName Matrox Graphics, Inc. BoardName G400/G450 BusID PCI:1:0:0 Screen0 EndSection Section Device Identifier Card1 OptionAGPMode 4 OptionAGPSize 256 OptionDmaMode Any OptionDmaType AGP OptionBusType AGP Drivermga VendorName Matrox Graphics, Inc. BoardName G400/G450 BusID PCI:1:0:0 Screen1 EndSection Section Screen Identifier Screen0 Device Card0 MonitorMonitor0 SubSection Display Viewport 0 0 Depth 16 # Modes 1280x800_85.00 # Modes 1600x1000_85.00 # Modes 1600x1000_95.00 # Modes 1600x1000_105.00 # Modes
Re: Checking out ports
On 1/10/07, Joachim Schipper [EMAIL PROTECTED] wrote: For another, somewhat more clean non-solution, see ssh_config(5), and have a look at such options as 'ServerAliveInterval'. Setting ServerAliveInterval to 30 solved the problem. Thanks a lot!
Re: squid for OBSD 4.0
Please check in the ports tree.
Currently the squid-2.6.STABLE5 is supported
Regards.
On 1/9/07, sonjaya [EMAIL PROTECTED] wrote:
Dear all
I want create proxy server with OBSD 4.0 , what kind squid version support
:
- mac Address acl
- delaypools
also how to tuning OBSD 4.0 for proxy server with squid .
-sonjaya-
-
-sonjaya-
--
---
Therefore, if anyone is in Christ, he is a new creation; the old has gone,
the new has come! - 2 Corinthians 5:17 (NIV)
---
Francisco Valladolid Hdez.
[EMAIL PROTECTED]
{Open}{Net}BSD user.
VPN/IPSEC trouble with Checkpoint
Hi all! I have a problem with a VPN tunnel. The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG FP3. When I etablish the tunnel all is okay for a while. But after a moment (variable) the tunnel break because a NO_PROPOSAL_CHOSEN. The problem appear to come from the OpenBSD side (see log below) and that for 3.9 and 4.0. The isakmpd config file are very basic. I have to kill the isakmpd process and start it again (for a variable moment only until a new NO_PROPOSAL_CHOSEN). From the log : Dec 28 14:56:28 uranium isakmpd[21562]: attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG Dec 28 14:56:28 uranium isakmpd[21562]: ike_phase_1_validate_prop: failure Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: proposal 1 failed Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: no compatible proposal found Dec 28 14:56:28 uranium isakmpd[21562]: dropped message from xxx.xxx.xxx.xxx port 500 due to notification type NO_PROPOSAL_CHOSEN The Checkpoint side has 3DES/SHA/GRP2 with PRE-SHARED Secret for Phase 1 and 3DES/SHA for Phase2 enabled. As somebody encoutered the same problem or have a tip to resolve this ? Thanks a lot in advance. Olivier -- isakmpd.conf [General] Retransmits= 5 #Exchange-max-time= 120 Exchange-max-time= 20 Check-interval= 10 Listen-on= xxx.xxx.xxx.xxx #Default-phase-1-lifetime= 86400 #Default-phase-2-lifetime= 3600 DPD-check-interval= 20 [Phase 1] Other= ISAKMP-peer-node-Other [Phase 2] Connections= IPsec-Conn-Home-Other # ISAKMP Phase 1 peer sections [ISAKMP-peer-node-Other] Phase= 1 Address= XXX.XXX.XXX.XXX Configuration= Default-main-mode Authentication= TheGreatSecret # IPsec Phase 2 sections [IPsec-Conn-Home-Other] Phase= 2 ISAKMP-peer= ISAKMP-peer-node-Other Configuration= Default-quick-mode Local-ID= MyNet Remote-ID= OtherNet # Client ID sections [MyNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.1.0 Netmask= 255.255.255.0 [OtherNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.2.0 Netmask= 255.255.255.0 # Main mode description [Default-main-mode] DOI= IPSEC EXCHANGE_TYPE= ID_PROT Transforms= 3DES-SHA-GRP2 # Quick mode description [Default-quick-mode] DOI= IPSEC EXCHANGE_TYPE= QUICK_MODE Suites= QM-ESP-3DES-SHA-SUITE --- isakmpd.policy KeyNote-Version: 2 Comment: This policy accepts ESP SAs from a remote that uses the right password $OpenBSD: policy,v 1.6 2001/06/20 16:36:19 angelos Exp $ $EOM: policy,v 1.6 2000/10/09 22:08:30 angelos Exp $ Authorizer: POLICY Conditions: app_domain == IPsec policy esp_present == yes esp_enc_alg != null - true;
isakmpd question
I'm having a problem with an IPSec tunnel I have configured connecting two networks together. Each firewall is running OpenBSD 3.9. At one end, it's a pair of firewalls running CARP and I've turned off sasyncd to troubleshoot now, because I didn't want to have it interfering and I suspect it may have been causing more problems. Since the primary firewall is staying up without issues, I'm ignoring the backup in my examples. Essentially, the behavior I'm seeing is that communication over the tunnel is interrupted whenever the Phase 1 SA is timed out. When it hits the soft timeout, a new SA is negotiated and looks fine. As soon as the older Phase 1 SA times out, communication (even just pinging) is interrupted for a minute or less. To confirm that the behavior is related to the timeouts, I've doubled all my timeout times in isakmpd.conf to 7200s for Phase 1 and 2400 seconds for Phase 2. The outages happen roughly half as often now and still correspond in timing to new Phase 1 SA establishments and changeover. I have pf configured on both ends, with altq. Altq isn't dropping any port 500 isakmpd packets (according to pfctl -vvs queue) on either side and only occasional esp traffic under high loads. Both have enough bandwidth reserved and they're given the highest priority in CBQ mode. pf is allowing isakmpd traffic only from the other of our two locations at both sides. I don't suspect that pf or altq is the problem here just because the SAs do get recreated without any obvious problem and traffic is allowed at least to proceed through the packet filter normally. However, the problem is exacerbated by higher throughput times during the business day - it usually goes unnoticed (by Nagios) on a weekend or overnight, so altq could be a factor if I need to reserve some bandwidth for more than port 500 and esp traffic. I've been watching SAs with the following procedure from isakmpd's man page: # echo S/var/run/isakmpd.fifo # cat /var/run/isakmpd.result The flows/routes as reported by ipsecctl -vvs all and netstat -rnf encap don't appear to be interrupted ever - they are always present unless I clear the SA table manually. pflog is logging all dropped packets to /var/log/pflog and I never find any esp or port 500 packets in there except obviously from servers outside our networks. Does anyone have any suggestions for points to investigate? I can provide configuration details about parts of this if anyone has a good place to look. I've already manually configured tunnels with isakmpd.conf (rather than ipsec.conf) in hopes that something would show up in that process, but the same behavior is noticed both ways. -- Regards, Neil Schelly Senior Systems Administrator W: 978-667-5115 x213 M: 508-410-4776 OASIS Open http://www.oasis-open.org Advancing E-Business Standards Since 1993
Re: VPN/IPSEC trouble with Checkpoint
Are you sure it's not a problem with fp3? Iirc, there were some interoperability issues with that version. Latest patches for FP3? On 1/11/07, Olivier Horn [EMAIL PROTECTED] wrote: Hi all! I have a problem with a VPN tunnel. The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG FP3. When I etablish the tunnel all is okay for a while. But after a moment (variable) the tunnel break because a NO_PROPOSAL_CHOSEN. The problem appear to come from the OpenBSD side (see log below) and that for 3.9 and 4.0. The isakmpd config file are very basic. I have to kill the isakmpd process and start it again (for a variable moment only until a new NO_PROPOSAL_CHOSEN). From the log : Dec 28 14:56:28 uranium isakmpd[21562]: attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG Dec 28 14:56:28 uranium isakmpd[21562]: ike_phase_1_validate_prop: failure Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: proposal 1 failed Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: no compatible proposal found Dec 28 14:56:28 uranium isakmpd[21562]: dropped message from xxx.xxx.xxx.xxx port 500 due to notification type NO_PROPOSAL_CHOSEN The Checkpoint side has 3DES/SHA/GRP2 with PRE-SHARED Secret for Phase 1 and 3DES/SHA for Phase2 enabled. As somebody encoutered the same problem or have a tip to resolve this ? Thanks a lot in advance. Olivier -- isakmpd.conf [General] Retransmits= 5 #Exchange-max-time= 120 Exchange-max-time= 20 Check-interval= 10 Listen-on= xxx.xxx.xxx.xxx #Default-phase-1-lifetime= 86400 #Default-phase-2-lifetime= 3600 DPD-check-interval= 20 [Phase 1] Other= ISAKMP-peer-node-Other [Phase 2] Connections= IPsec-Conn-Home-Other # ISAKMP Phase 1 peer sections [ISAKMP-peer-node-Other] Phase= 1 Address= XXX.XXX.XXX.XXX Configuration= Default-main-mode Authentication= TheGreatSecret # IPsec Phase 2 sections [IPsec-Conn-Home-Other] Phase= 2 ISAKMP-peer= ISAKMP-peer-node-Other Configuration= Default-quick-mode Local-ID= MyNet Remote-ID= OtherNet # Client ID sections [MyNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.1.0 Netmask= 255.255.255.0 [OtherNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.2.0 Netmask= 255.255.255.0 # Main mode description [Default-main-mode] DOI= IPSEC EXCHANGE_TYPE= ID_PROT Transforms= 3DES-SHA-GRP2 # Quick mode description [Default-quick-mode] DOI= IPSEC EXCHANGE_TYPE= QUICK_MODE Suites= QM-ESP-3DES-SHA-SUITE --- isakmpd.policy KeyNote-Version: 2 Comment: This policy accepts ESP SAs from a remote that uses the right password $OpenBSD: policy,v 1.6 2001/06/20 16:36:19 angelos Exp $ $EOM: policy,v 1.6 2000/10/09 22:08:30 angelos Exp $ Authorizer: POLICY Conditions: app_domain == IPsec policy esp_present == yes esp_enc_alg != null - true;
Re: VPN/IPSEC trouble with Checkpoint
If you are willing to try ipsec.conf instead of isakmpd.conf. I use the following for a VPN with a Checkpoint NG. ike esp from a.a.a.a/24 to b.b.b.b/20 \ local x.x.x.x peer y.y.y.y \ main auth hmac-md5 enc 3des group grp2 \ quick auth hmac-md5 enc 3des group none \ psk secretsecret The only thing special here is the group none in the quick line. This disables Perfect Forward Secrecy (pfs). That was needed for a succesful VPN setup together with a Checkpoint. -- Cam On Thu, 11 Jan 2007, Olivier Horn wrote: Hi all! I have a problem with a VPN tunnel. The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG FP3. When I etablish the tunnel all is okay for a while. But after a moment (variable) the tunnel break because a NO_PROPOSAL_CHOSEN. The problem appear to come from the OpenBSD side (see log below) and that for 3.9 and 4.0. The isakmpd config file are very basic. I have to kill the isakmpd process and start it again (for a variable moment only until a new NO_PROPOSAL_CHOSEN). From the log : Dec 28 14:56:28 uranium isakmpd[21562]: attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG Dec 28 14:56:28 uranium isakmpd[21562]: ike_phase_1_validate_prop: failure Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: proposal 1 failed Dec 28 14:56:28 uranium isakmpd[21562]: message_negotiate_sa: no compatible proposal found Dec 28 14:56:28 uranium isakmpd[21562]: dropped message from xxx.xxx.xxx.xxx port 500 due to notification type NO_PROPOSAL_CHOSEN The Checkpoint side has 3DES/SHA/GRP2 with PRE-SHARED Secret for Phase 1 and 3DES/SHA for Phase2 enabled. As somebody encoutered the same problem or have a tip to resolve this ? Thanks a lot in advance. Olivier -- isakmpd.conf [General] Retransmits= 5 #Exchange-max-time= 120 Exchange-max-time= 20 Check-interval= 10 Listen-on= xxx.xxx.xxx.xxx #Default-phase-1-lifetime= 86400 #Default-phase-2-lifetime= 3600 DPD-check-interval= 20 [Phase 1] Other= ISAKMP-peer-node-Other [Phase 2] Connections= IPsec-Conn-Home-Other # ISAKMP Phase 1 peer sections [ISAKMP-peer-node-Other] Phase= 1 Address= XXX.XXX.XXX.XXX Configuration= Default-main-mode Authentication= TheGreatSecret # IPsec Phase 2 sections [IPsec-Conn-Home-Other] Phase= 2 ISAKMP-peer= ISAKMP-peer-node-Other Configuration= Default-quick-mode Local-ID= MyNet Remote-ID= OtherNet # Client ID sections [MyNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.1.0 Netmask= 255.255.255.0 [OtherNet] ID-type= IPV4_ADDR_SUBNET Network= 192.168.2.0 Netmask= 255.255.255.0 # Main mode description [Default-main-mode] DOI= IPSEC EXCHANGE_TYPE= ID_PROT Transforms= 3DES-SHA-GRP2 # Quick mode description [Default-quick-mode] DOI= IPSEC EXCHANGE_TYPE= QUICK_MODE Suites= QM-ESP-3DES-SHA-SUITE --- isakmpd.policy KeyNote-Version: 2 Comment: This policy accepts ESP SAs from a remote that uses the right password $OpenBSD: policy,v 1.6 2001/06/20 16:36:19 angelos Exp $ $EOM: policy,v 1.6 2000/10/09 22:08:30 angelos Exp $ Authorizer: POLICY Conditions: app_domain == IPsec policy esp_present == yes esp_enc_alg != null - true;
Re: isakmpd question
Neil Joseph Schelly wrote: Does anyone have any suggestions for points to investigate? I can provide configuration details about parts of this if anyone has a good place to look. I've already manually configured tunnels with isakmpd.conf (rather than ipsec.conf) in hopes that something would show up in that process, but the same behavior is noticed both ways. have you tried following this ipsecctl howto http://www.securityfocus.com/infocus/1859 there are tons of things you could have wrong when not using ipsecctl. you didn't post any of the relevant config files or debugging information, so how do you expect anyone to help? cheers, jake
Re: greylisting
Just for the archives... I went through these emails again, and discovered that this one was the one that solved my problem. Indeed the default pf.conf file says rdr pass on for the spamd redirects, and Chris asks why pass there? I removed the word pass - now it all works like magic. Thanks Chris! Stephen On 8-Jan-07, at 9:41 PM, Chris Kuethe wrote: On 1/8/07, Stephen Schaff [EMAIL PROTECTED] wrote: rdr pass on $ext_if proto tcp from spamd to port smtp \ - 127.0.0.1 port spamd rdr pass on $ext_if proto tcp from !spamd-white to port smtp \ - 127.0.0.1 port spamd why pass there? -- GDB has a 'break' feature; why doesn't it have 'fix' too?
SunFire 280R
System : OpenBSD 4.0 Architecture: OpenBSD.sparc64 Machine : SunFire 280R CPU: 2xUltraSparc-III+ RAM: 2GB OpenBoot: 4.10.11 or 4.16.4 (this same efect) Description: After boot from cdrom (cd40.iso) server hangs up. This is kernel output: memory-controller at mainbus0 not configured memory-controller at mainbus0 not configured schizo0 at mainbus0: Schizo, ign 200, bus B 0 to 0 schizo0 : dvma map ff80-dfff, iotdb aa7e-aa80 schizo0: pci bus B error PCIAFSR=0 PCIAFSR=0 PCICTRL=6010e003fDTO_INT,SBH_INT,EEN panic: schizo0: fatal halted How to install OS on this machine? Thanks for any ideas.
Re: reading sensor RS-232/485 output
J.C. Roberts wrote: You could automate everything as a shell script using only the utilities in the base install, in short telnet over serial. sounds interesting, i'll see what i can do with this first. any further info you could provide here would be nice. I usually don't get the luxury of UNIX shell scripting, and often have a cross platform requirement, so I normally do the coding in perl. The following ports will be needed and they have win32 counterparts. /usr/ports/comms/p5-Device-SerialPort /usr/ports/net/p5-Net-Telnet if i need more involved data collection, i'll do it in perl or C, thanks for the pointers here. PLEASE BE WARNED: If you have strict timing requirements, particularly machine operator safety requirements (i.e. people operating potentially dangerous machines), the *ONLY* correct way to do machine automation is to use a (hard/soft) real time operating system and write your code in C to enforce your timing. sarcasm and this whole time i thought the correct way to automate machines is to expose them to a myriad of repeated short video clips on a television, have them join a fraternity and put a big ol' ladder in front of them. i can't wait until we can code that in C. /sarcasm i am well aware that running heavy machinery can be extremely dangerous. this data is only being used for performance analysis and has no effect on the machinery in question. your concern is appreciated. warm regards, jake
Re: isakmpd question
On Thursday 11 January 2007 12:46 pm, Jacob Yocom-Piatt wrote:
have you tried following this ipsecctl howto
Yes
there are tons of things you could have wrong when not using ipsecctl.
you didn't post any of the relevant config files or debugging
information, so how do you expect anyone to help?
I was unclear in my original post. These were running before with ipsec.conf,
as follows (with similar entries on the other end's firewall of course).
ike passive esp from 10.20.20.0/22 to 10.21.20.0/22 peer x.x.x.x
I've rebuilt them the long way in isakmpd.conf, but ultimately, they work just
as well either way. I still have these occasional interruptions during SA
timeouts. I've actually noticed today for the first time a Phase 2 SA
timeout caused a similar interruption, even though a new SA had already been
negotiated, so perhaps my initial observations are off still.
Anyway, I didn't submit debugging or config files before because attaching
every config file involved here would be overhwelming. I'm hoping I can get
some direction to look for, more along the lines of generic isakmpd
troubleshooting.
I've been trying to make pf, altq, isakmpd, ipsec.conf, etc adjustments as
atomically as possible to see if I can at least affect the problem and get a
hint at where to look more closely. The best I've got so far is that altq
may be related because it's under high loads in general that the connections
have more problems. And isakmpd may be related because doubling the SA
timeouts makes it more reliable, in the sense that the behavior comes up half
as often.
#
Here's the datacenter (dc0) side of my isakmpd.conf for example:
[General]
Listen-On = X.X.X.X (CARP)
Default-phase-1-lifetime = 7200,60:86400
Default-phase-2-lifetime = 2400,60:86400
[Phase 1]
X.X.X.X = ma0fw
[Phase 2]
Connections = dc0network-ma0network, dc0savvis-ma0network
[ma0fw]
Phase = 1
Transport = udp
Address = X.X.X.X
Configuration = Default-main-mode
[dc0network-ma0network]
Phase = 2
ISAKMP-peer = ma0fw
Configuration = Default-quick-mode
Local-ID = dc0network
Remote-ID = ma0network
[dc0savvis-ma0network]
Phase = 2
ISAKMP-peer = ma0fw
Configuration = Default-quick-mode
Local-ID = dc0savvis
Remote-ID = ma0network
[dc0network]
ID-type = IPV4_ADDR_SUBNET
Network = 10.20.20.0
Netmask = 255.255.252.0
[dc0savvis]
ID-type = IPV4_ADDR_SUBNET
Network = 10.1.1.0
Netmask = 255.255.255.0
[ma0network]
ID-type = IPV4_ADDR_SUBNET
Network = 10.21.20.0
Netmask = 255.255.252.0
[Default-main-mode]
EXCHANGE_TYPE = ID_PROT
Transforms = 3DES-SHA-GRP2-RSA_SIG
[Default-quick-mode]
EXCHANGE_TYPE = QUICK_MODE
Suites = QM-ESP-3DES-SHA-SUITE
#
#
Here's my datacenter side pf.conf, as applies to altq/IPSec
altq on fxp1 cbq bandwidth 6Mb queue { standard, admin, vpncontrol, carp }
queue standard bandwidth 82% { mail, std }
queue mail bandwidth 25% priority 2 cbq(borrow)
queue std bandwidth 75% priority 6 cbq(borrow, default)
queue admin bandwidth 10% { ssh, vpn }
queue ssh bandwidth 20% { ssh_interactive, ssh_bulk }
queue ssh_interactive bandwidth 25% priority 4 cbq(ecn, borrow)
queue ssh_bulk bandwidth 75% cbq(ecn, borrow)
queue vpn bandwidth 80% priority 6 cbq(borrow)
queue vpncontrol bandwidth 4% priority 7 cbq(borrow)
queue carp bandwidth 4% priority 7 cbq(borrow)
# Allow isakmpd control traffic between isakmp_peers
pass in quick on $ext_if proto udp from isakmp_peers to $extcarp_if:0 port
isakmp queue vpncontrol
pass out quick on $ext_if proto udp from $extcarp_if:0 to isakmp_peers port
isakmp queue vpncontrol
# Allow all isakmpd tunneled traffic (encoded with esp)
pass in quick on $ext_if proto esp from isakmp_peers to $extcarp_if:0 queue
vpn
pass out quick on $ext_if proto esp from $extcarp_if:0 to isakmp_peers queue
vpn
#
#
Here is the excerpts from /var/run/isakmpd.result on the office side firewal
during a Phase 2 SA timeout period.
SA name: dc0fw (Phase 1/Initiator)
src: MA0.X.X.X dst: DC0.X.X.X
Lifetime: 7200 seconds
Soft timeout in 4086 seconds
Hard timeout in 4468 seconds
icookie b83f99790cccd43a rcookie 0a4d6741d97c0d96
SA name: dc0savvis-ma0network (Phase 2)
src: MA0.X.X.X dst: DC0.X.X.X
Lifetime: 2400 seconds
Hard timeout in 41 seconds
SPI 0: 985404c3
SPI 1: 257a3144
Transform: IPsec ESP
Encryption key length: 24
Authentication key length: 20
Encryption algorithm: 3DES
Authentication algorithm: HMAC-SHA1
SA name: dc0network-ma0network (Phase 2)
src: MA0.X.X.X dst: DC0.X.X.X
Lifetime: 2400 seconds
Soft timeout in 149 seconds
Hard timeout in 296 seconds
SPI 0: 67f24a6f
SPI 1: e3f4896b
Transform: IPsec ESP
Encryption key length: 24
Authentication key length: 20
Encryption algorithm: 3DES
Authentication algorithm: HMAC-SHA1
SA name: dc0savvis-ma0network (Phase 2)
src: MA0.X.X.X dst: DC0.X.X.X
Lifetime:
LANDISK: USB 10/100 ethernet recommendation?
I have my Plextor up and running with a snapshot from last week. Now I want to get a second USB 10/100 NIC running on it. I read on landisk.html that most USB devices are supported. Since I've never used a USB ethernet NIC, I usually live in the 1Gb / 10Gb world, I thought I'd ask here for chipset recommendations. It appears axe(4) based USB device would be my best best. comments? flames? name calling? diana
Re: Dump dumps core
Philip Guenther [EMAIL PROTECTED] wrote:
IMHO, the non-obvious step in the above is the first: why does
control-4 generate 'FS'?
Well, I don't know what terminal you are talking about, but generally
everything that aims to emulate a VT220 should have this mapping,
because the actual DEC VT220 did (does). Personally, although I
don't care much about ctrl-4, I mostly use ctrl-3 to enter ^[ and
get upset when it isn't available.
Here's the main keymap (plain, +shift, +control) of a VT220 with
LK201 keyboard, set to US English, taken from the actual terminal:
` 1 2 3 4 5 6 7 8 9 0 - = DEL
TAB q w e r t y u i o p [ ] |
CTRL a s d f g h j k l ; ' ENTER
SHFTz x c v b n m , . / SHFT
COMP SPACE
~ ! @ # $ % ^ * ( ) _ +^X
^[[Z Q W E R T Y U I O P { } \
CTRL A S D F G H J K L : ENTER
SHFTZ X C V B N M ? SHFT
COMP SPACE
^^ ^@ ^[ ^\ ^] ^^ ^_ ^? ^X
TAB ^Q ^W ^E ^R ^T ^Y ^U ^I ^O ^P ^[ ^] ^\
CTRL ^A ^S ^D ^F ^G ^H ^J ^K ^L ENTER
SHFT^Z ^X ^C ^V ^B ^N ^M ^_ SHFT
COMP ^@
--
Christian naddy Weisgerber [EMAIL PROTECTED]
Re: LANDISK: USB 10/100 ethernet recommendation?
On Thu, Jan 11, 2007 at 03:11:31PM -0700, Diana Eichert wrote: On Thu, 11 Jan 2007, Diana Eichert wrote: I have my Plextor up and running with a snapshot from last week. Now I want to get a second USB 10/100 NIC running on it. I read on landisk.html that most USB devices are supported. Hmmm, what I meant to say is I want to get a second NIC running on the box, in addition to the onboard re(4). thanks Just about anything you can buy should work. The MosChip MCS7830 ones (ie syba usb ethernet) being the only exception that comes to mind. Most commonly you will find axe(4) devices which should work fine. I've used USB wireless and audio devices on my USL-5P without problem, I think I briefly tested aue/axe/udav without drama as well.
Re: SunFire 280R
lukasz wrote: System : OpenBSD 4.0 Architecture: OpenBSD.sparc64 Machine : SunFire 280R CPU: 2xUltraSparc-III+ RAM: 2GB OpenBoot: 4.10.11 or 4.16.4 (this same efect) Description: After boot from cdrom (cd40.iso) server hangs up. This is kernel output: memory-controller at mainbus0 not configured memory-controller at mainbus0 not configured schizo0 at mainbus0: Schizo, ign 200, bus B 0 to 0 schizo0 : dvma map ff80-dfff, iotdb aa7e-aa80 schizo0: pci bus B error PCIAFSR=0 PCIAFSR=0 PCICTRL=6010e003fDTO_INT,SBH_INT,EEN panic: schizo0: fatal halted How to install OS on this machine? Thanks for any ideas. Hi, I have had a few issues doing cd rom install on older suns. v100 v120. I read on an old thread that I am unable to find that there were some issues with these drives. I generally unplug the power and data cable from the cdrom drive and do a network install. Steve
ftp-proxy and old ftp-proxy co-mingling
this one might seem a bit odd. I have two firewalls, unfortunately, one of them is still running 3.8 and will be upgraded in the next week or two. Until then, I have a problem. I upgraded the second last night and immediately had problems with FTP. they are setup as such: inside network --- fw1 -- dmz network -- fw2 --- internet fw1 is 4.0 fw2 is 3.8 here is what is weird. I have their respective ftp-proxy running on each, prior to the upgrade of fw1 to 4.0, I could ftp from the inside network to the DMZ and out to the internet. Since last night, I cannot. Here is what I can do: 1) ftp from inside to dmz 2) ftp from dmz to internet However, the 4.0 ftp-proxy and the 3.8 ftp-proxy don't seem to like working with each other. When I attempt to ftp from the inside network all the way out to the internet, I can get connected, but if I attempt to do a transfer I receive a 'connection refused'. Here is the output of 'ftp': $ ftp openbsd.mirrors.pair.com Connected to openbsd.mirrors.pair.com. 220 openbsd.mirrors.pair.com NcFTPd Server (licensed copy) ready. Name (openbsd.mirrors.pair.com:rcorder): ftp 331 Guest login ok, send your complete e-mail address as password. Password: [snip out ASCII art] 230 Logged in anonymously. Remote system type is UNIX. Using binary mode to transfer files. ftp ls 500 EPSV command not understood 227 Entering Passive Mode (216,92,2,143,206,192) 200 PORT command successful. 550 Cannot connect to xxx.xxx.xxx.xxx:54585 - Connection refused. ftpbye $ now, here is the kicker...neither firewall is blocking ANYTHING...not a thing shows up via tcpdump on pflog0. from the looks of the output from the 550 message from the FTP server, my old 3.8 acts like it isn't proxying properly the FTP traffic coming from the 4.0 firewall. As of last night, it was, but not since the move of 4.0. is there something different about the way that the 4.0 ftp-proxy translates that would make the 3.8 ftp-proxy not act the same? TIA, ryanc -- Ryan Corder [EMAIL PROTECTED] Systems Engineer, NovaSys Health LLC. 501-219- ext. 646 [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
Re: LANDISK: USB 10/100 ethernet recommendation?
Diana Eichert writes: Since I've never used a USB ethernet NIC, I usually live in the 1Gb / 10Gb world, I thought I'd ask here for chipset recommendations. It took me three tries to get one that worked. The winner was made by linksys. The current version of the D-Link DUB-E100 does not work, nor does an off brand unit from Syba. It appears axe(4) based USB device would be my best best. axe0 at uhub4 port 3 configuration 1 interface 0 axe0: Cisco-Linksys USB200M v2, rev 2.00/0.01, addr 2, AX88772, address 00:16:b6:ef:6e:83 ukphy0 at axe0 phy 16: Generic IEEE 802.3u media interface, rev. 1: OUI 0x000ec6, model 0x0001 // marc
Re: greylisting
On Thu, 11 Jan 2007 11:52:30 -0700, Stephen Schaff wrote: Just for the archives... I went through these emails again, and discovered that this one was the one that solved my problem. Indeed the default pf.conf file says rdr pass on for the spamd redirects, and Chris asks why pass there? I removed the word pass - now it all works like magic. Thanks Chris! Stephen On 8-Jan-07, at 9:41 PM, Chris Kuethe wrote: On 1/8/07, Stephen Schaff [EMAIL PROTECTED] wrote: rdr pass on $ext_if proto tcp from spamd to port smtp \ - 127.0.0.1 port spamd rdr pass on $ext_if proto tcp from !spamd-white to port smtp \ - 127.0.0.1 port spamd why pass there? I have been running with the defaults (including pass) for well over a year. I also suspect that if the pass caused problems you would have heard about it long ago and, knowing how well the devs leap onto bugs, the default pf.conf would have been amended pretty quickly. There must be some other reason for your problem and I cannot see what else you have that may cause it. Perhaps Daniel might guess it if you asked on the pf list and showed your complete pf.conf. Rod/ From the land down under: Australia. Do we look umop apisdn from up over?
Re: LANDISK: USB 10/100 ethernet recommendation?
Jonathan Gray writes: Just about anything you can buy should work. The MosChip MCS7830 ones (ie syba usb ethernet) being the only exception that comes to mind. The current rev of the D-link DUB-E100 does NOT work. At least it did't with code as of about the middle of last month. // marc
Re: reading sensor RS-232/485 output
On Thursday 11 January 2007 11:42, Jacob Yocom-Piatt wrote: J.C. Roberts wrote: You could automate everything as a shell script using only the utilities in the base install, in short telnet over serial. sounds interesting, i'll see what i can do with this first. any further info you could provide here would be nice. I always start with running the various SCPI(ish) commands manually in a terminal emulator. If forced (by threat of death) to work in ms-windows, then I use the typical hyperterminal, otherwise I'll go with tip/cu or similar. You may want to note the docs for the CUB5 states it works in half-duplex mode, while tip/cu are normally full duplex (use the -h switch on cu). After figuring out what commands should be run, the proper order and the expected results/failures, life gets easy. hmmm... I did a good job of avoiding your question above. It's a mental block, you know, the kind of subconscious forgetting which happens after a really horrific trauma. Anyhow, I'm terrible at shell scripting and always have been. I get fed up with the syntax and cross platform bugs in a matter of minutes, give up, and go grab a better language to use (where better simply means the devil you know). Since I'm probably the worst person you could ask, hopefully one of the many shell scripting gods inhabiting this mailing list will chime in on how do useful work in shell scripts with serial. I usually don't get the luxury of UNIX shell scripting, and often have a cross platform requirement, so I normally do the coding in perl. The following ports will be needed and they have win32 counterparts. /usr/ports/comms/p5-Device-SerialPort /usr/ports/net/p5-Net-Telnet if i need more involved data collection, i'll do it in perl or C, thanks for the pointers here. PLEASE BE WARNED: If you have strict timing requirements, particularly machine operator safety requirements (i.e. people operating potentially dangerous machines), the *ONLY* correct way to do machine automation is to use a (hard/soft) real time operating system and write your code in C to enforce your timing. sarcasm and this whole time i thought the correct way to automate machines is to expose them to a myriad of repeated short video clips on a television, have them join a fraternity and put a big ol' ladder in front of them. i can't wait until we can code that in C. /sarcasm :) i am well aware that running heavy machinery can be extremely dangerous. this data is only being used for performance analysis and has no effect on the machinery in question. your concern is appreciated. Don't let the machinery word, heavy or otherwise, give you a false sense of security. Little stuff like when voltage is applied, can make a big mess in a hurry. Damaging equipment is nearly as bad as damaging people... well, maybe that depends on the person. Let's see, a spectrum analyzer which cost more than a house in California or that lazy coworker which never does anything useful... -I better not complete that thought. Anyhow, since there is no guarantee that your process/thread/interrupt will be serviced by the kernel within X amount of time, the non-realtime operating systems should not be used when doing time critical automation on dangerous or delicate equipment. The good news is there are only a few classes of problem which are actually *that* time critical so loose timing on a non-realtime OS is far more than enough in most cases. Kind Regards, JCR
Re: LANDISK: USB 10/100 ethernet recommendation?
On Thu, 11 Jan 2007, Marco S Hyman wrote: Diana Eichert writes: Since I've never used a USB ethernet NIC, I usually live in the 1Gb / 10Gb world, I thought I'd ask here for chipset recommendations. It took me three tries to get one that worked. The winner was made by linksys. The current version of the D-Link DUB-E100 does not work, nor does an off brand unit from Syba. It appears axe(4) based USB device would be my best best. axe0 at uhub4 port 3 configuration 1 interface 0 axe0: Cisco-Linksys USB200M v2, rev 2.00/0.01, addr 2, AX88772, address 00:16:b6:ef:6e:83 ukphy0 at axe0 phy 16: Generic IEEE 802.3u media interface, rev. 1: OUI 0x000ec6, model 0x0001 // marc I have a belkin one, works fine, except that it fills messages with: Jan 9 07:59:45 muffin /bsd: aue0: 1 usb errors on intr: IOERROR when it is stressed. It performs decently. aue0 at uhub0 port 1 aue0: ADMtek USB To LAN Converter, rev 1.10/1.01, addr 2 aue0: address 00:05:1b:00:64:6d acphy0 at aue0 phy 1: AC_UNKNOWN 10/100 PHY, rev. 0 -Otto
Re: php mail() function fails
On Friday 12 January 2007 13:04, noob lenoobie wrote: My problem is the following : I'm unable to send mail from php. the php mail() function will not work in chroot (unless you install the chroot flavour of the mini-sendmail package). Lars Hansson
