Re: Zurich OpenBSD
Edd Barrett wrote: On 18/07/07, Guido Tschakert <[EMAIL PROTECTED]> wrote: Just say "Humpaa" to everyone wearing an OpenBSD-Shirt or other signs of lovely Puffy. Loving the humpaa salute! I have actually never seen anyone in the UK wearing a bsd shirt apart from my friends.Sometimes I wonder if I am the only british OpenBSD user :p (Apart from that troll a few months back) Also we don't have any decent conferences :P Humpaa! I'm from the UK but currently in Ireland. I know of one other OpenBSD user here but never seen anyone else in a t-shirt. Sean.
Re: Zurich OpenBSD
Edd Barrett wrote: On 18/07/07, Guido Tschakert <[EMAIL PROTECTED]> wrote: Just say "Humpaa" to everyone wearing an OpenBSD-Shirt or other signs of lovely Puffy. Loving the humpaa salute! I have actually never seen anyone in the UK wearing a bsd shirt apart from my friends.Sometimes I wonder if I am the only british OpenBSD user :p (Apart from that troll a few months back) Also we don't have any decent conferences :P These aren't in Britain but how about: http://2007.eurobsdcon.org/ in September or at the end of November: http://www.opencon.org/ HTH Fred -- http://www.crowsons.com/puters/x41.htm
Userland Multilink PPP, PPPoE
Good Morning, I'm trying to bond two ADSL links using userland ppp. I'm having an issue when the second link tries to negotiate and requests an IP during the LCP/IPCP negotiations. I've tried adjusting the enddisc command but to no success. I can't use the sppp kernel-land implementation because it does not support multilink. tcpdump shows the second link trying to request the peer address but this was already done with link 1. Subsequent links should not request IP information. I've attached my configuration in hopes that adjusting a small configuration variable is all that needs to be done. I'm currently running OpenBSD 4.1 on i386 and using two Sangoma S518 cards. The peer ip address, username, and password has been masked. ppp.conf: ### start /etc/ppp/ppp.conf ### default: set log Chat Connect Command IPCP CCP tun Phase Warning LCP enable lqr set ctsrts off set mrru 1492 set mtu max 1492 set mru max 1492 set vj slotcomp off disable acfcomp pred1 protocomp vjcomp deflate mppe deny acfcomp pred1 protocomp vjcomp deflate mppe mlppp: set authname "username" set authkey "password" set ifaddr 0/0 1.2.3.4 set speed sync clone 1,2 link 1 set device "!/usr/sbin/pppoe -i waad0" link 2 set device "!/usr/sbin/pppoe -i wbad0" link deflink remove link 1,2 set mode ddial add! default HISADDR ### end /etc/ppp/ppp.conf ### Regards, Ryan
Re: ral in hostap mode
On 7/19/07, Jurjen Oskam <[EMAIL PROTECTED]> wrote: On Wed, Jul 18, 2007 at 04:53:35PM +0300, Alexey Suslikov wrote: > Jurjen Oskam wrote: > >At home, I have a wireless access point which is directly connected to rl1. > >To eliminate the access point, I put a wireless PCI card in the machine, ^^^ > CAVEATS section in ral's man page. > ... > The ural driver supports automatic control of the transmit speed in BSS Since the CAVEATS sections explicitly mentions "ural", I used a PCI card, not a USB one. Or does the caveat apply to PCI-cards as well? IMO codebases is the same. If you are in doubt, ask damien@ to sort this out. Alexey.
Non critical but weird pf and openvpn problem
Hi list,
I'm having weird problem with my openvpn install and pf.
I start vpn and connect to it from client computers with no problems,
but I can't access any computers on internal lan. Then I issue pfctl -f
/etc/pf.conf and everything starts to work. So my rc.local script is:
<--->
if [ X"${openvpn}" == X"YES" -a -x /usr/local/sbin/openvpn ];
then echo -n ' openvpn';
/usr/local/sbin/openvpn --cd /etc/openvpn --config server.conf
sleep 10
/sbin/pfctl -f /etc/pf.conf
fi
<--->
And everything works fine. But why do I need to reload my pf?
My server.conf is:
<--->
daemon openvpn
local xxx.xxx.xxx.xxx
port 1194
proto udp
dev tun0
tun-mtu 1500
mssfix
keepalive 10 120
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
tls-auth ta.key 0
cipher AES-256-CBC
server 192.168.5.0 255.255.255.0
push "route 192.168.0.0 255.255.255.0"
route 192.168.6.0 255.255.255.0
chroot /etc/openvpn
status /var/log/openvpn-status.log
log/var/log/openvpn-log.log
writepid /var/run/openvpn.pid
ifconfig-pool-persist ipp.txt
replay-persist replay.txt
client-config-dir ccd
max-clients 5
user nobody
group nobody
persist-key
persist-tun
comp-lzo
verb 3
mute 10
<--->
My hostname.tun0 is:
<--->
up
<--->
My pf.conf is:
<--->
ext_if="vr0"
int_if="vr1"
admins1="xxx.xxx.xxx.xxx"
admins2="xxx.xxx.xxx.xxx"
organization_net="192.168.0.0/24"
ovpn_net="192.168.6/24"
ovpn="1194"
table { $admins1, $admins2 } const persist
table { 10/8, 172.16/12, 192.168/16 } const persist
table persist
set block-policy drop
set optimization normal
set ruleset-optimization basic
set state-policy if-bound
set loginterface $ext_if
set skip on { lo0, $int_if, tun0 }
scrub on $ext_if no-df fragment reassemble random-id
nat-anchor "ftp-proxy/*"
nat on $ext_if from $organization_net to any -> ($ext_if:0)
rdr pass on $int_if inet proto tcp to port ftp -> 127.0.0.1 port 8021
rdr-anchor "ftp-proxy/*"
block log all
block in log quick on $ext_if from any to 255.255.255.255
antispoof log quick for { lo0, $ext_if, $int_if }
anchor "ftp-proxy/*"
pass log on $ext_if inet proto icmp icmp-type unreach code needfrag
pass in log quick on $ext_if inet proto icmp from to ($ext_if)
icmp-type echoreq modulate state label "icmp for admins"
pass in log quick on $ext_if inet proto tcp from to ($ext_if)
port ssh modulate state label "ssh for admins"
pass out on $ext_if inet proto { tcp, udp, icmp } from ($ext_if) to any
modulate state
pass in log on $ext_if inet proto udp from any to ($ext_if) port $ovpn
modulate state (max-src-conn-rate 30/10, overload flush global)
<--->
I'm using OpenBSD 4.1 and OpenVPN openvpn-2.0.6p0.
Re: ACPI regression on i386 ?
On 7/18/07, Devin Smith <[EMAIL PROTECTED]> wrote: > Hello, > > i've been happily testing acpi following -current since six or seven > months, > and i've noticed a little regressions : > - before June, it worked perfectly, halt -p power-offs the machine, i have > acpi detected in dmesg. > - after around start of June, halt -p doesn't poweroff the machine > anymore, > and i don't have anymore acpi detected in dmesg. But when i config -e /bsd > and try to enable acpi, it says that acpi is already enabled. > - i've retried several times, still no luck since June. > > may it be a local fuckup ? (Sorry, i don't exactly remember the date when > it > stopped working) > What can i do to debug this ? > > I always uncomment (and remove two disable) all acpi lines in GENERIC : > > option ACPIVERBOSE > option ACPI_ENABLE > > acpi0 at mainbus? > acpitimer* at acpi? > acpihpet* at acpi? > acpiac* at acpi? > acpibat*at acpi? > acpibtn*at acpi? > acpicpu*at acpi? > acpidock* at acpi? > acpiec* at acpi? > acpiprt*at acpi? > acpitz* at acpi? > > Is there something else to do somewhere ? > > Dmesg : http://gruiik.info/stuff/tmp/dmesg > Acpidump : http://gruiik.info/stuff/tmp/acpidump > > (i have to note that it works perfectly on a dell D410) > > Thanks, > > Landry > > This is possibly due to the checkin on May 29th in sys/arch/i386/i386/acpi_machdep.c. The commit message says: Add global variable apm_attached, machine dependant probe routine for ACPI will check this flag durring probe, meaning that if the machine has APM ACPI will not attach. This should remove one obstacle on the road to enabling ACPI by default. ok marco, dreaadt, art, krw, art Do you get any error message from halt -p? I can only guess that your APM implementation is some how broken. Sorry that isn't much help. Yes, in fact upon halt -p, i get error messages like : 'apm : unrecognized device ID (9)' I'll try to disable apm in config -e, hope it'll work. Thanks a lot for orienting me on this way, i didn't even think of it. Landry
Re: extracting iso
humppa, is there a tool/way to extract an iso file to a directory? thanks -- Jay Software like sex is best when its free.
Re: extracting iso
On Thu, Jul 19, 2007 at 04:45:31PM +0800, Jay Jesus Amorin wrote: | humppa, | | is there a tool/way to extract an iso file to a directory? vnconfig -c /dev/svnd0 YOUR.ISO mount /dev/svnd0c /mnt Read the manpage for vnconfig(8) for more details. Paul 'WEiRD' de Weerd -- >[<++>-]<+++.>+++[<-->-]<.>+++[<+ +++>-]<.>++[<>-]<+.--.[-] http://www.weirdnet.nl/ [demime 1.01d removed an attachment of type application/pgp-signature]
Re: Bad performance on ThinkPad T41 (-current checked out on July 1)
Thanks for the answear Efectively, i have no softdep enabled on disk. Is possible to enable more ram for disk cache than 5%? 2007/7/18, francisco roque <[EMAIL PROTECTED]>: > > On Wed, 18 Jul 2007, Tang Tse wrote: > > > Are you using the same part of the disk for both tests? > > - Yes on both, is an old scsi controller but supported ( I checked the > HLC ) > > > > Is the OpenBSD fs using softdep? > > - How can i check this? > > `mount -v` will report 'softdep' for the filesystem in question if it is > enabled. I believe you need to manually enable it and doing so should > increase general OpenBSD disk performance, not sure for this specific > test. > > > > > > What is the amount of memory in the machine? > > - 2Gb > > > > How many runs is this the average of? > > - On linux in the same conditions ( clean install, dd from the same > > partition, etc.. ) i get 17MB/s > > > > Is the input_file created immediately before the test? > > Yes on both > > This, the amount of memory available, and the size of the file probably > causes the biggest difference. IIRC, linux uses almost all available > memory as filesystem cache, but OpenBSD uses 5% by default. In this > case, the 1GB file will have been placed in fs cache when created on > linux, but not on OpenBSD since it wouldn't fit. > > In other words, on linux you are testing reading from memory and writing > to disk, but in OpenBSD you are testing reading from disk and writing to > disk. > > A couple ways around this would be to either test files > 2GB or to create > the file, umount the partition, mount it, then run dd. If you run IOzone > instead of dd, the results can show you the performance of each system > both when files fit in the memory cache and once it's out. What > performance characteristics are best for your app is for you to decide > (and often a bit beyond anything dd proves). > > > > Is the machine running other processes at the same time? > > Yes, I made a new instalation with minimum but i don't disable anything. > I > > want to test it on daily conditions to see the real performance. > > While that's nice and generally safe, you'll also need to be aware of > what's happening in the background that might be time dependant and > different between the two machines. E.g. testing OpenBSD on Saturday > early morning while it's updating the locate database will show different > results versus any other time of day. > > > > > > Thanks. > > > > Good luck, > > -f > http://www.blackant.net/
Re: extracting iso
On 2007/07/19 16:45, Jay Jesus Amorin wrote: > is there a tool/way to extract an iso file to a directory? Yes. (oh, you want to know how? :-) vnconfig and mount.
Re: Disk encryption
You could patch one binary of /usr with a trojan/virus to read the content of /etc and send it via mail to a machine of yours (or whatever scheme you can think of). Full volume protection (FVE)is made, amongst other things, to protect against offline attacks/pre os attacks. If you don't cipher your OS, you're vulnerable to the attack above. In addition maybe an user left important data in /usr, maybe you have some company confidential internal program, maybe tomorrow there is an extremely elaborate attack released on Blowfish/CBC with known cipher text when the moon is aligned with Jupiter and you have a prime number of hairs on your head, maybe, maybe... Just let's be redundant. ;)
Re: Disk encryption
On Thu, Jul 19, 2007 at 10:53:56AM +0200, Die Gestalt wrote: > You could patch one binary of /usr with a trojan/virus to read the > content of /etc and send it via mail to a machine of yours (or > whatever scheme you can think of). Full volume protection (FVE)is > made, amongst other things, to protect against offline attacks/pre os > attacks. If you don't cipher your OS, you're vulnerable to the attack > above. that's the silliest load of nonsense I've heard all day. -- [EMAIL PROTECTED] SDF Public Access UNIX System - http://sdf.lonestar.org
ICQ client for X?
Everybody, Tried licq, have been using it happily with FreeBSD, but failed to compile it on OpenBSD. Can someone recommend me a graphical ICQ client for use with OpenBSD? Thank you. -- With best regards, Gregory Edigarov
Re: ICQ client for X?
On 7/19/07, Gregory Edigarov <[EMAIL PROTECTED]> wrote: Can someone recommend me a graphical ICQ client for use with OpenBSD? Hi Gregory, try pidgin! http://ports.openbsd.nu/net/pidgin HTH, -f
Re: ICQ client for X?
On 19/07/07, Gregory Edigarov <[EMAIL PROTECTED]> wrote: Everybody, Tried licq, have been using it happily with FreeBSD, but failed to compile it on OpenBSD. Can someone recommend me a graphical ICQ client for use with OpenBSD? Thank you. -- With best regards, Gregory Edigarov http://pidgin.im/pidgin/home/ AKA gaim :-) -- Liam J. Foy [EMAIL PROTECTED] http://bsdportal.org <- BSD News
Bioctl ciss controller status
I have a proliant DL360-G5 and loaded 4.1-stable on it, all hardware is detected fine. I want see if I can get the raid controller status with bioctl. Controller initially came with firmware 1.20 so I upgraded it to the latest (1.66) version but still can't get the raid controller status using bioctl. Here is what I get: #bioctl sd0 bioctl: BIOCINQ: Inappropriate ioctl for device Any help would be appreciated. Here is the dmesg of the machine: OpenBSD 4.1-stable (GENERIC.MP) #0: Wed May 9 03:47:33 PDT 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 2145349632 (2095068K) avail mem = 1833291776 (1790324K) using 22937 buffers containing 214740992 bytes (209708K) of memory mainbus0 (root) bios0 at mainbus0: SMBIOS rev. 2.3 @ 0xee000 (67 entries) bios0: HP ProLiant DL360 G5 acpi at mainbus0 not configured ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1 mainbus0: Intel MP Specification (Version 1.4) cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Xeon(R) CPU 5120 @ 1.86GHz, 1866.99 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST ,TM2,CX16,xTPR,LONG cpu0: 4MB 64b/line 16-way L2 cache cpu0: apic clock running at 266MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Xeon(R) CPU 5120 @ 1.86GHz, 1866.74 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36, CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST ,TM2,CX16,xTPR,LONG cpu1: 4MB 64b/line 16-way L2 cache mpbios: bus 0 is type PCI mpbios: bus 1 is type PCI mpbios: bus 2 is type PCI mpbios: bus 3 is type PCI mpbios: bus 4 is type PCI mpbios: bus 5 is type PCI mpbios: bus 6 is type PCI mpbios: bus 9 is type PCI mpbios: bus 10 is type PCI mpbios: bus 11 is type PCI mpbios: bus 14 is type PCI mpbios: bus 15 is type PCI mpbios: bus 16 is type PCI mpbios: bus 19 is type PCI mpbios: bus 22 is type PCI mpbios: bus 39 is type ISA ioapic0 at mainbus0 apid 8 pa 0xfec0, version 20, 24 pins ioapic1 at mainbus0 apid 9 pa 0xfec8, version 20, 24 pins pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 vendor "Intel", unknown product 0x25d8 rev 0xb1 ppb0 at pci0 dev 2 function 0 "Intel 5000 PCIE" rev 0xb1 pci1 at ppb0 bus 9 ppb1 at pci1 dev 0 function 0 "Intel 6321ESB PCIE" rev 0x01 pci2 at ppb1 bus 10 ppb2 at pci2 dev 0 function 0 "Intel 6321ESB PCIE" rev 0x01 pci3 at ppb2 bus 11 ppb3 at pci2 dev 1 function 0 "Intel 6321ESB PCIE" rev 0x01 pci4 at ppb3 bus 14 ppb4 at pci2 dev 2 function 0 "Intel 6321ESB PCIE" rev 0x01 pci5 at ppb4 bus 15 ppb5 at pci1 dev 0 function 3 "Intel 6321ESB PCIE-PCIX" rev 0x01 pci6 at ppb5 bus 16 ppb6 at pci0 dev 3 function 0 "Intel 5000 PCIE" rev 0xb1 pci7 at ppb6 bus 6 ppb7 at pci7 dev 0 function 0 "ServerWorks PCIE-PCIX" rev 0xb4 pci8 at ppb7 bus 7 ppb8 at pci8 dev 4 function 0 "ServerWorks HT-1000 PCIX" rev 0xb2 pci9 at ppb8 bus 8 ciss0 at pci8 dev 8 function 0 "Hewlett-Packard Smart Array" rev 0x00: apic 8 int 16 (irq 5) ciss0: 1 LD, HW rev 0, FW 1.66/1.66 scsibus0 at ciss0: 1 targets sd0 at scsibus0 targ 0 lun 0: SCSI3 0/direct fixed sd0: 34699MB, 34699 cyl, 64 head, 32 sec, 512 bytes/sec, 71065440 sec total ppb9 at pci0 dev 4 function 0 "Intel 5000 PCIE" rev 0xb1 pci10 at ppb9 bus 19 ppb10 at pci0 dev 5 function 0 "Intel 5000 PCIE" rev 0xb1 pci11 at ppb10 bus 22 ppb11 at pci0 dev 6 function 0 vendor "Intel", unknown product 0x25e6 rev 0xb1 pci12 at ppb11 bus 2 ppb12 at pci12 dev 0 function 0 "ServerWorks PCIE-PCIX" rev 0xc3 pci13 at ppb12 bus 3 bnx0 at pci13 dev 0 function 0 "Broadcom BCM5708" rev 0x12: apic 8 int 18 (irq 10) ppb13 at pci0 dev 7 function 0 "Intel 5000 PCIE" rev 0xb1 pci14 at ppb13 bus 4 ppb14 at pci14 dev 0 function 0 "ServerWorks PCIE-PCIX" rev 0xc3 pci15 at ppb14 bus 5 bnx1 at pci15 dev 0 function 0 "Broadcom BCM5708" rev 0x12: apic 8 int 19 (irq 10) pchb1 at pci0 dev 16 function 0 "Intel 5000 Error Reporting" rev 0xb1 pchb2 at pci0 dev 16 function 1 "Intel 5000 Error Reporting" rev 0xb1 pchb3 at pci0 dev 16 function 2 "Intel 5000 Error Reporting" rev 0xb1 pchb4 at pci0 dev 17 function 0 "Intel 5000 Reserved" rev 0xb1 pchb5 at pci0 dev 19 function 0 "Intel 5000 Reserved" rev 0xb1 pchb6 at pci0 dev 21 function 0 "Intel 5000 FBD" rev 0xb1 pchb7 at pci0 dev 22 function 0 "Intel 5000 FBD" rev 0xb1 uhci0 at pci0 dev 29 function 0 "Intel 6321ESB USB" rev 0x09: apic 8 int 16 (irq 5) usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 "Intel 6321ESB USB" rev 0x09: apic 8 int 17 (irq 7) usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 "Intel 6321ESB USB" rev 0x09: apic 8 int 18 (irq 10) usb2 at uhci2: USB revision 1.0 uh
Re: support for Sun Fire
Hi, On Mon, 16.07.2007 at 14:25:05 -0400, Daniel Ouellet <[EMAIL PROTECTED]> wrote: > Toni Mueller wrote: > >On Tue, 29.05.2007 at 14:13:06 +0100, mark reardon <[EMAIL PROTECTED]> wrote: > >>I just got a x2100 M2 from Sun yesterday on a 60 day trial and am having > >did you get it to run OpenBSD properly? Which model do you have? > I have one as well. Some results in the archive as well, but my biggest thanks for all the feedback. I was thinking about the difference between a X2100 and an X2100 M2. These "subtleties" are not yet covered well in the archives. > griff with it is with the admin console for this unit. Sun really cut > way to short on it to make if a decent remote admin box. Plus the share I have just opted to return an X2200 M2 which has about the same problem, plus remote admin does really not appear to work reliable (for me, at least - may be a hardware problem, though). So, I'm abandoning the box for the moment... Best, --Toni++
IPSEC client question
Hello, can anyone please share their experience you have with this IPSEC client product, working against OpenBSD? http://www.hob.de/produkte/security/vpn.jsp So far, I was unable to test it myself (lacking a working Windows box atm). TIA! Best, --Toni++
Re: Zurich OpenBSD
Humpaa! On Thu, Jul 19, 2007 at 08:16:24AM +0100, The King of Norway wrote: I'm from the UK but currently in Ireland. I know of one other OpenBSD user here but never seen anyone else in a t-shirt. Sean. I'm a British OpenBSD devotee who has been living out in various parts of the Middle East for the last seven years. Next Friday I am relocating with my wife and kids to Gorey, County Wexford - and I'll be bringing my t-shirts! So then you'll know of two other OpenBSD users in Ireland :) Had a poke around on the net for other OpenBSD users in Ireland myself and drew a blank, except for http://ie.bsd.net which doesn't seem to have seen much activity in a while. Drop me a line if you fancy discussing Puffy over a pint! Merv.
Re: ICQ client for X?
On Thu, Jul 19, 2007 at 12:27:08PM +0300, Gregory Edigarov wrote: > Tried licq, have been using it happily with FreeBSD, but failed to > compile it on OpenBSD. Can someone recommend me a graphical ICQ > client for use with OpenBSD? Use Jabber with a tentative ICQ-transport as long as all your contacts have not migrated yet (: Gajim is a cool X Jabber client. And if you want to stick to direct connections to ICQ, well, Pidgin is a good choice. -- Olivier Mehani <[EMAIL PROTECTED]> PGP fingerprint: 3720 A1F7 1367 9FA3 C654 6DFB 6845 4071 E346 2FD1 [demime 1.01d removed an attachment of type application/pgp-signature]
Areca-1210 rd0 hang during install of 4.1 on amd64
I am having trouble with installing OpenBSD 4.1 on a new amd64 server with an Areca ARC-1210 raid card. When I boot from the 4.1 CD install media, everything seems fine up until it reaches" rd0: fixed, blocks" and then the system hangs. I have downloaded the latest amd64 current snapshot from the mirrors and tried booting from that too - same result. System: - Gigabyte GA-M61PM-S2 (rev. 1.0) (BIOS Updated to latest F7 release) - Areca ARC-1210 SATA RAID PCI-Express (firmware updated to V1.43 2007-04-17) - 2 x 400GB SATA Disks I have setup RAID 1 mirror of the two disks in the RAID BIOS. (Areca card and drives detected by and usable in Linux and Windows XP). Without the ARC-1210 card installed and the disks wired to the on-board SATA controller everything works fine (i.e. I am able to install OpenBSD). I have tried disabling on-board LAN and on-board SATA in the BIOS. I have also tried enabling ACPI at boot time with ( -c, UKC> enable acpi, quit ) which produces same result. In addition I have tried booting with the i386 release media, and experienced exactly the same problem. Dmesg's captured through tty com0 attached below. Many thanks in advance for any help. Nick booting cd0a:/4.1/amd64/bsd.rd: 2169728+438535+2270160+0+330160 [80+220056+135431]=0x94f9a0 entry point at 0x1001e0 [7205c766, 3404, 24448b12, 2840a304]*Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2007 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.1 (RAMDISK_CD) #1054: Sat Mar 10 19:32:06 MST 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/RAMDISK_CD real mem = 2079911936 (2031164K) avail mem = 1778188288 (1736512K) using 22937 buffers containing 208199680 bytes (203320K) of memory mainbus0 (root) acpi at mainbus0 not configured cpu0 at mainbus0: (uniprocessor) cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+, 2612.21 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT, PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: PowerNow! K8 2612 MHz: speeds: 2600 2400 2200 2000 1800 1000 MHz pci0 at mainbus0 bus 0: configuration mode 1 "NVIDIA MCP61 Memory" rev 0xa1 at pci0 dev 0 function 0 not configured "NVIDIA MCP61 ISA" rev 0xa2 at pci0 dev 1 function 0 not configured "NVIDIA MCP61 SMBus" rev 0xa2 at pci0 dev 1 function 1 not configured "NVIDIA MCP61 Memory" rev 0xa2 at pci0 dev 1 function 2 not configured ohci0 at pci0 dev 2 function 0 "NVIDIA MCP61 USB" rev 0xa2: irq 10, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 10 ports with 10 removable, self powered ehci0 at pci0 dev 2 function 1 "NVIDIA MPC61 USB" rev 0xa2: irq 11 usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 10 ports with 10 removable, self powered ppb0 at pci0 dev 4 function 0 "NVIDIA MCP61" rev 0xa1 pci1 at ppb0 bus 1 skc0 at pci1 dev 7 function 0 "D-Link Systems DGE-530T B1" rev 0x11, Yukon Lite (0x9): irq 10 sk0 at skc0 port A, address 00:15:e9:aa:d3:34 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 pciide0 at pci0 dev 6 function 0 "NVIDIA MCP61 IDE" rev 0xa2: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD_RW ND-2510A, 2.16> SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) ppb1 at pci0 dev 9 function 0 "NVIDIA MCP61 PCIE" rev 0xa2 pci2 at ppb1 bus 2 ppb2 at pci2 dev 0 function 0 "Intel IOP332 PCIE-PCIX" rev 0x07 pci3 at ppb2 bus 3 arc0 at pci3 dev 14 function 0 "Areca ARC-1210" rev 0x00: irq 11 arc0: 4 SATA Ports, 256MB SDRAM, FW Version: V1.43 2007-4-17 scsibus1 at arc0: 16 targets sd0 at scsibus1 targ 0 lun 0: SCSI3 0/direct fixed sd0: 381469MB, 58128 cyl, 28 head, 480 sec, 512 bytes/sec, 781249536 sec total ppb3 at pci2 dev 0 function 2 "Intel IOP332 PCIE-PCIX" rev 0x07 pci4 at ppb3 bus 4 vga1 at pci0 dev 13 function 0 "NVIDIA GeForce 6100 nForce 430" rev 0xa2 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) pchb0 at pci0 dev 24 function 0 "AMD AMD64 HyperTransport" rev 0x00 pchb1 at pci0 dev 24 function 1 "AMD AMD64 Address Map" rev 0x00 pchb2 at pci0 dev 24 function 2 "AMD AMD64 DRAM Cfg" rev 0x00 pchb3 at pci0 dev 24 function 3 "AMD AMD64 Misc Cfg" rev 0x00 isa0 at mainbus0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com0: console com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pck
Re: extracting iso
On Thu, Jul 19, 2007 at 10:36:24AM +0200, Paul de Weerd wrote: > On Thu, Jul 19, 2007 at 04:45:31PM +0800, Jay Jesus Amorin wrote: > > is there a tool/way to extract an iso file to a directory? > > vnconfig -c /dev/svnd0 YOUR.ISO > mount /dev/svnd0c /mnt > > Read the manpage for vnconfig(8) for more details. > > Paul 'WEiRD' de Weerd It is also in the FAQ: http://www.openbsd.org/faq/faq14.html#MountImage Martin
OpenCON 2007 Poster material / conference info ?
I have a flyer for OpenCON 2007 in hand, but the web site is still devoid of details for this year's conference: http://www.opencon.org/ Where can I find the details about this year's program and schedule? (Prior to the conference.) If there are conference flyers available in SVG or PDF, I can print some out and post them in the relevant class rooms and labs. -Lars Support Open Standards in Europe: http://www.openstandards.eu/
Re: OpenBSD Berlin?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Thus "Vim Visual" <[EMAIL PROTECTED]> spake on Thu, 19 Jul 2007 08:35:39 +0200: > I am using ion/wmii either, Timo... and my site is more... > "elaborated" than yours, it's not incompatible. But I like simplicity > too! Nah, it means that if you're using a desktop heavily overl0ad3d with eyecandy (Aqua, Vista, KDE, ...) you'll be annoyed by the very lightweight appearance of the site ;) > if you get into the S1 from Schoeneberg in direction to Potsdam in ~15 > min you'll see somebody wearing the obsd 3.6 t-shirt cool. i guess i should choose one of mine and take a trip, eh? (some beer near you? :) > well, it's nice to see I'm not "alone" in this mailing list > > Pau Is there something like an OpenBSD user group in berlin? If not, why not fund it? Timo > 2007/7/18, Timo Schoeler <[EMAIL PROTECTED]>: > > thus Vim Visual spake: > > > > > Hi, > > > > > > inspired by the Zurich email, I would like to ask here whether > > > there is somebody from / living in Berlin in this list > > > > > > Cheers, > > > > > > Pau > > > > Always wanted to post this: We have some really addicted OpenBSD > > freaks here in Berlin -- this guy opened Wim's packet after it > > arrived at my house even before I had the chance to check its > > content... > > > > http://riscworks.net/images/OpenBSD/checking1.jpg > > > > http://riscworks.net/images/OpenBSD/checking2.jpg > > > > Seems he also likes Puffy a lot ;) > > > > Timo iD8DBQFGn2Ou689t39h/zfARAvYUAJ9S8wf3FcAVWywCn6+1Ew+W1b3UmgCfb3Ga 9xJ6mV1kDm9gXJKXTAM3OAg= =BuR3 -END PGP SIGNATURE-
Re: OpenBSD Berlin?
> well, it's nice to see I'm not "alone" in this mailing list > > Pau Is there something like an OpenBSD user group in berlin? If not, why not fund it? Timo good idea! I'll be the president for life, ok? next step? Pau
Re: OpenBSD Berlin?
Thus "Vim Visual" <[EMAIL PROTECTED]> spake on Thu, 19 Jul 2007 15:18:37 +0200: > > > well, it's nice to see I'm not "alone" in this mailing list > > > > > > Pau > > > > Is there something like an OpenBSD user group in berlin? If not, why > > not fund it? > > > > Timo > > good idea! > > I'll be the president for life, ok? 'I've said it before, and I'll say it again: democracy just doesn't work. (Kent Brockman, anchorman of Channel 6) > next step? * Find more people interested? * choose a beer supplier. > Pau Timo
Re: OpenBSD Berlin?
'I've said it before, and I'll say it again: democracy just doesn't work. (Kent Brockman, anchorman of Channel 6) change president with "mild dictator", if you please * Find more people interested? "WHO'S INTERESTED?" - he screamed * choose a beer supplier. what about wine? I'll be it if it's wine > Pau Timo
Re: OpenBSD Berlin?
Thus "Vim Visual" <[EMAIL PROTECTED]> spake on Thu, 19 Jul 2007 15:57:29 +0200: > > 'I've said it before, and I'll say it again: democracy just doesn't > > work. (Kent Brockman, anchorman of Channel 6) > > change president with "mild dictator", if you please Forget it. > > * Find more people interested? > > "WHO'S INTERESTED?" - he screamed So, there is not OpenBSD user group in berlin yet? > > * choose a beer supplier. > > what about wine? I'll be it if it's wine I admit: I don't like the german 'Pils' either; wine is fine, especially portuguese wine.
Re: OpenBSD Berlin?
Timo Schoeler <[EMAIL PROTECTED]> writes: >> > * choose a beer supplier. >> >> what about wine? I'll be it if it's wine around these parts I cant get the local geeks to go anywhere Guinness isn't on tap, but wine is certainly tolerated. You can have both. - P -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: OpenBSD Berlin?
> change president with "mild dictator", if you please Forget it. ok, that makes it: hard dictator > "WHO'S INTERESTED?" - he screamed So, there is not OpenBSD user group in berlin yet? it seems we're two of us... If there was a group in Berlin they'd read these emails, wouldn't they I admit: I don't like the german 'Pils' either; wine is fine, especially portuguese wine. wrong: especially _Spanish_ wine So this is the last call: ---> anybody interested? <--- If so, please email Timo and me, so that we do not "overwhelm" this mailing list with our messages Cheers, Pau
PF Config problem
I've got two OBSD 4.1 boxes. They are setup identically, and I'm using CARP (&
pfsync) to obtain a redundant firewall. I appear to have CARP working fine. My
problem is when I enable pf. The initial TCP packet goes through fine, but the
return packet gets blocked. (I have verified this by putting "LOG" entries in
my ruleset) If I disable PF, everything works fine
Cutting down the pf ruleset to the bare minimum, I have:
adsl_if="em2"
int_if="em0"
pfsync_if="bge0"
scrub in
set skip on lo
block in
#These three lines allow the failover mechanisms to work
pass on { $int_if } proto carp keep state
pass on { $adsl_if } proto carp keep state
pass quick on { $pfsync_if} proto pfsync
#Allow internal people to SSH in.
pass in on $int_if proto tcp to ($int_if) port ssh keep state
#ICMP
pass in proto icmp to
pass in on $int_if proto tcp from 172.16.2.34 to 192.168.249.3 keep state
With this config, 172.16.2.34 cannot make a TCP connection to 192.168.249.3.
What stupid thing have I missed ?
For reference, below are the details of the carp & em interfaces. If anything
else is needed, let me know.
Thanks,
GTG
# ifconfig carp0
carp0: flags=8843 mtu 1500
lladdr 00:00:5e:00:01:01
carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 0
groups: carp
inet 192.168.253.253 netmask 0xff00 broadcast 192.168.253.255
inet6 fe80::200:5eff:fe00:101%carp0 prefixlen 64 scopeid 0xb
# ifconfig carp2
carp2: flags=8843 mtu 1500
lladdr 00:00:5e:00:01:03
carp: MASTER carpdev em2 vhid 3 advbase 1 advskew 0
groups: carp
inet6 fe80::200:5eff:fe00:103%carp2 prefixlen 64 scopeid 0xc
inet 192.168.249.253 netmask 0xff00 broadcast 192.168.249.255
# ifconfig em0
em0: flags=8943 mtu 1500
lladdr 00:1b:21:01:c8:30
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.253.20 netmask 0xff00 broadcast 192.168.253.255
inet6 fe80::21b:21ff:fe01:c830%em0 prefixlen 64 scopeid 0x3
# ifconfig em2
em2: flags=8943 mtu 1500
lladdr 00:1b:21:01:c8:32
media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause)
status: active
inet 192.168.249.251 netmask 0xff00 broadcast 192.168.249.255
inet6 fe80::21b:21ff:fe01:c832%em2 prefixlen 64 scopeid 0x5
How to block PPPoE session on a PF bridge?
Hi all, I insert a openbsd box between my PC and ADSL modem, that box running PF in bridge mode and blocks all IP traffic. But my PC always successfully connect Internet via PPPoE dailing, and I could see this via tcpdump on openbsd box(see below). PC<->OBSD Bridge<>ADSL modem<>Internet OBSD Bridge itself has nothing to do with PPPoE, i.e. not a PPPoE client or server, just a bridge. My question is how to block PPPoE session on a PF bridge while pass all IP traffic? How about brconfig? How about bpf blocking as we could see it via tcpdump? TIA frank # cat /etc/bridgename.bridge1 add rl0 add rl1 up # pfctl -sr scrub in all fragment reassemble block drop in inet all # brconfig bridge1: flags=41 Configuration: priority 32768 hellotime 2 fwddelay 15 maxage 20 Interfaces: rl1 flags=3 port 2 ifpriority 128 ifcost 55 rl0 flags=3 port 1 ifpriority 128 ifcost 55 Addresses (max cache: 100, timeout: 240): 00:33:ba:14:a4:5f rl0 0 flags=0<> 00:33:a0:16:5d:ba rl0 0 flags=0<> # tcpdump -n -i bridge1 or # tcpdump -n -i rl1 20:57:59.911487 PPPoE-Session code Session, version 1, type 1, id 0x12c0, length 42 IP: 34.45.55.66.4080 > 81.175.13.140.80: . ack 21838 win 17640 (DF) 20:57:59.911534 PPPoE-Session code Session, version 1, type 1, id 0x12c0, length 1482 IP: 81.175.13.140.80 > 34.45.55.66.4082: . 4558:5998(1440) ack 269 win 33580 (DF) 20:57:59.911577 PPPoE-Session code Session, version 1, type 1, id 0x12c0, length 42 IP: 34.45.55.66.4082 > 81.175.13.140.80: . ack 4558 win 17640 (DF) Pinpoint customers who are looking for what you sell. http://searchmarketing.yahoo.com/
Dell sc440 / broadcom bcm5754 nic
Our company has purchased 3 of these servers, and I would like very much to get the onboard nic working on at least one of them. I have installed OpenBSD 4.1 and it seems to recognize the interface correctly and use the correct driver ( bge ) for it, but it is not responsive. It will not connect to our network at all. Googling tells me some others have had the same problem, but I haven't found any solutions so far. ifconfig output looks normal, dmesg provides: == bge0 at pci4 dev 0 function 0 "Broadcom BCM5754" rev 0x02, BCM5787 A2 (0xb002): irq 10, address 00:1a:a0:24:03:ef brgphy0 at bge0 phy 1: BCM5787 10/100/1000baseT PHY, rev.0 == Pointers, etc. would be a big help. Thanks, --charlie -- Charles Farinella Appropriate Solutions, Inc. (www.AppropriateSolutions.com) [EMAIL PROTECTED] voice: 603.924.6079 fax: 603.924.8668
openbsd 4.0 using PPPoE panic showing "unknown code (0x00d3)"
Hi all,
My OBSD 4.0 using a PPPoE ADSL Internet connection and
it occasionally panic after running 4~8 hours. After
reboot I got "unknown code (0x00d3)" error, see below
for details.
Is this my ISP wrong or OBSD bug?
TIA
frank
==
# dmesg
...
pppoe: unknown code (0x00d3) session = 0x11a5
kernel: page fault trap, code=0
Stopped at
WARNING: / was not properly unmounted
pppoe: unknown code (0x00d3) session = 0x0453
pppoe: unknown code (0x00d3) session = 0x0501
==
ddb> trace
bcopy(d11d5800,c021,8,d7,5ca,e86baf34,fd,e86ba800) at
bcopy+0x1a
sppp_input(d11d5800,e86baf00,1,d115d000,e81e4f98) at
sppp_input+0x2fe
pppoeintr(e86baf00,d113e480,869eedac,cf755254) at
pppoeintr+0x865
pppoeintr(81130027,27,27,cf750027,cf755254) at
pppoeintr+0xd9
Bad frame pointer: 0xe81e4fa0
I find source code related to this issue:
/usr/src/sys/net/if_pppoe.c
line 700
default:
printf("%s: unknown code (0x%04x)
session = 0x%04x\n",
sc ? sc->sc_sppp.pp_if.if_xname :
"pppoe",
ph->code, session);
break;
Looking for a deal? Find great prices on flights and hotels with Yahoo!
FareChase.
http://farechase.yahoo.com/
Re: OpenBSD Berlin?
Hi there! Am Donnerstag, den 19.07.2007, 15:25 +0200 schrieb Timo Schoeler: > > > Is there something like an OpenBSD user group in berlin? If not, why > > > not fund it? > > > > > > Timo > > > > good idea! > > > > I'll be the president for life, ok? > > 'I've said it before, and I'll say it again: democracy just doesn't > work. (Kent Brockman, anchorman of Channel 6) > > > next step? > > * Find more people interested? > > * choose a beer supplier. ./target Berlin if you've found a beer supplier, announce it. Berlin is not *to* far away. Greetings from Paderborn, Andre
which sub/notebook + APM?
Hi, I know we have the laptop web page, but it seems to be a bit old. I know because I posted two entries some months ago and they never showed up... or maybe the quality was miserable... don't know... Anyway... I am looking for a sub/notebook, of ~1.2 kg (2.something maximum), with a good screen resolution (i.e. better than the ibm thinkpads X family, [EMAIL PROTECTED]") which supports APM: I am thinking here of *suspend* specially. Does anybody have a recommendation? If so, I wonder whether you'd be so nice as to elaborate also a bit on fan noise and battery life. Thanks in advance! Pau
Re: OpenBSD Berlin?
Vim Visual wrote: > change president with "mild dictator", if you please Forget it. ok, that makes it: hard dictator > "WHO'S INTERESTED?" - he screamed So, there is not OpenBSD user group in berlin yet? it seems we're two of us... I'm here two and I know one or two folks who are at least a bit interested in OpenBSD. Jonathan -- Jonathan Weiss http://blog.innerewut.de
Re: PF Config problem
I think you will find that since carp is communicated with multicast
that your rules are not behaving as you think.
They are allowing the outbound transmissions, but since you are not
establishing tcp sessions the keep state does not do what you want.
Try explicitly allowing in protocol carp
What I do is this:
pass out quick proto carp
pass in quick proto carp
Gordon Ross wrote:
I've got two OBSD 4.1 boxes. They are setup identically, and I'm using CARP (&
pfsync) to obtain a redundant firewall. I appear to have CARP working fine. My
problem is when I enable pf. The initial TCP packet goes through fine, but the
return packet gets blocked. (I have verified this by putting "LOG" entries in
my ruleset) If I disable PF, everything works fine
Cutting down the pf ruleset to the bare minimum, I have:
adsl_if="em2"
int_if="em0"
pfsync_if="bge0"
scrub in
set skip on lo
block in
#These three lines allow the failover mechanisms to work
pass on { $int_if } proto carp keep state
pass on { $adsl_if } proto carp keep state
pass quick on { $pfsync_if} proto pfsync
#Allow internal people to SSH in.
pass in on $int_if proto tcp to ($int_if) port ssh keep state
#ICMP
pass in proto icmp to
pass in on $int_if proto tcp from 172.16.2.34 to 192.168.249.3 keep state
With this config, 172.16.2.34 cannot make a TCP connection to 192.168.249.3.
What stupid thing have I missed ?
For reference, below are the details of the carp & em interfaces. If anything
else is needed, let me know.
Thanks,
GTG
# ifconfig carp0
carp0: flags=8843 mtu 1500
lladdr 00:00:5e:00:01:01
carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 0
groups: carp
inet 192.168.253.253 netmask 0xff00 broadcast 192.168.253.255
inet6 fe80::200:5eff:fe00:101%carp0 prefixlen 64 scopeid 0xb
# ifconfig carp2
carp2: flags=8843 mtu 1500
lladdr 00:00:5e:00:01:03
carp: MASTER carpdev em2 vhid 3 advbase 1 advskew 0
groups: carp
inet6 fe80::200:5eff:fe00:103%carp2 prefixlen 64 scopeid 0xc
inet 192.168.249.253 netmask 0xff00 broadcast 192.168.249.255
# ifconfig em0
em0: flags=8943 mtu 1500
lladdr 00:1b:21:01:c8:30
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.253.20 netmask 0xff00 broadcast 192.168.253.255
inet6 fe80::21b:21ff:fe01:c830%em0 prefixlen 64 scopeid 0x3
# ifconfig em2
em2: flags=8943 mtu 1500
lladdr 00:1b:21:01:c8:32
media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause)
status: active
inet 192.168.249.251 netmask 0xff00 broadcast 192.168.249.255
inet6 fe80::21b:21ff:fe01:c832%em2 prefixlen 64 scopeid 0x5
Using altq and cbq to do contention like an ISP
Hallo list,
I'm running a small hosting company, and we have a 10Mb leased line. We
don't use anywhere like all of it yet, but it was the smallest we could
get where we are. To offset the costs a bit, we sell off portions of
this to other companies in our building, using an OpenBSD router and a
Cisco switch. Just like a large ISP we put multiple people in the same
slice of bandwidth, and they 'contend'. I say contend, as at the moment
all our ADSL-grade customers just go in the same queue, which has 256Kb
upstream and 2Mb downstream.
What we would like to do is to have them all contend properly, such that
in a 1:20 contention block, each of the 20 users is guaranteed 1/20th of
the up- and down-stream bandwidth, but they all fight with equal
priority over any bandwidth not currently being used by other peers in
their block.
Here's what I've got so far:
altq on $vl_bt cbq bandwidth 9.1Mb qlimit 200 queue { adsl_up }
altq on $vl_dsl cbq bandwidth 9.1Mb qlimit 200 queue { adsl_dn }
# $vl_bt is the vlan interface that has our net connection on it.
# $vl_dsl is the vlan interface that our 'DSL' subscribers come in on.
# We have a 10Mb leased line in both directions.
queue adsl_up bandwidth 256Kb cbq {client1_up, client2_up, client3_up}
queue adsl_dn bandwidth 2Mb cbq {client1_dn, client2_dn, client3_dn}
queue client1_up bandwidth 13Kb cbq (borrow)
queue client1_dn bandwidth 120Kb cbq (borrow)
queue client2_up bandwidth 13Kb cbq (borrow)
queue client2_dn bandwidth 120Kb cbq (borrow)
queue client3_up bandwidth 13Kb cbq (borrow)
queue client3_dn bandwidth 120Kb cbq (borrow)
# And so on, up to a maximum of 20 in this block
pass in on $vl_dsl from $client1_net to any queue adsl_up
pass out on $vl_dsl from any to $client1_net queue adsl_down
pass in on $vl_dsl from $client2_net to any queue adsl_up
pass out on $vl_dsl from any to $client2_net queue adsl_down
pass in on $vl_dsl from $client3_net to any queue adsl_up
pass out on $vl_dsl from any to $client3_net queue adsl_dn
I *think* it should work, but I'm not sure I've understood how cbq and
pf actually work. I'm a little confused about what will happen to the
traffic to and from our hosting servers, which have no queuing in their
pass rules.
Also, at the moment the sdsl block (not shown, but just the same only
with different numbers) had the default keyword. It just happened to be
the first one I did. I'm worried that this means that any traffic
without a queue is going in the SDSL queue, including that to our web
servers, and so we're not properly using all our bandwidth. I think I
might have happened to get away with it, because the servers aren't on
$vl_dsl, but if that's the case its broken, and I should fix it.
In summary, I think I've got somewhere, but I'm probably going about it
the wrong way...
I throw myself upon the collective wisdom of misc@ :-)
--
Richard 'Dave' Wilson
Systems Administrator
Senokian Solutions Ltd.
Business Innovation Centre,
Binley Business Park, Coventry,
United Kingdom
CV3 2TX
T: +44 (0)24 76 233 400
DDI: +44 (0)24 76 233 416
F: +44 (0)24 76 233 401
Re: ACPI regression on i386 ?
On 7/19/07, Landry Breuil <[EMAIL PROTECTED]> wrote: On 7/18/07, Devin Smith <[EMAIL PROTECTED]> wrote: > > Hello, > > > > i've been happily testing acpi following -current since six or seven > > months, > > and i've noticed a little regressions : > > - before June, it worked perfectly, halt -p power-offs the machine, i have > > acpi detected in dmesg. > > - after around start of June, halt -p doesn't poweroff the machine > > anymore, > > and i don't have anymore acpi detected in dmesg. But when i config -e /bsd > > and try to enable acpi, it says that acpi is already enabled. > > - i've retried several times, still no luck since June. > > > > may it be a local fuckup ? (Sorry, i don't exactly remember the date when > > it > > stopped working) > > What can i do to debug this ? > > > > I always uncomment (and remove two disable) all acpi lines in GENERIC : > > > > option ACPIVERBOSE > > option ACPI_ENABLE > > > > acpi0 at mainbus? > > acpitimer* at acpi? > > acpihpet* at acpi? > > acpiac* at acpi? > > acpibat*at acpi? > > acpibtn*at acpi? > > acpicpu*at acpi? > > acpidock* at acpi? > > acpiec* at acpi? > > acpiprt*at acpi? > > acpitz* at acpi? > > > > Is there something else to do somewhere ? > > > > Dmesg : http://gruiik.info/stuff/tmp/dmesg > > Acpidump : http://gruiik.info/stuff/tmp/acpidump > > > > (i have to note that it works perfectly on a dell D410) > > > > Thanks, > > > > Landry > > > > > > This is possibly due to the checkin on May 29th in > sys/arch/i386/i386/acpi_machdep.c. > > The commit message says: > > Add global variable apm_attached, machine dependant probe routine for ACPI > will check this flag durring probe, meaning that if the machine has APM > ACPI will not attach. This should remove one obstacle on the road to > enabling ACPI by default. > > ok marco, dreaadt, art, krw, art > > Do you get any error message from halt -p? I can only guess that your > APM implementation is some how broken. Sorry that isn't much help. Yes, in fact upon halt -p, i get error messages like : 'apm : unrecognized device ID (9)' I'll try to disable apm in config -e, hope it'll work. Thanks a lot for orienting me on this way, i didn't even think of it. You were right, now it works perfectly. Thanks again. Landry
Re: hardware problem?! strangely ssh error
> On Thu, 19 Jul 2007, openbsd misc wrote: >> > misc(at)openbsd.org wrote: >> >> Hello, >> >> >> >> I have a system with openbsd 4.1 installed. Everything works fine >> (lynx >> >> / ping / ...) but I'm not able to connect to another system via ssh. >> I'm >> >> not able to connect to the system, too. >> >> The error I got: >> >> >> >> 2: Bad packet length >> >> >> >> I googled a bit, but I wasn't able to find out what exactly is wrong. >> >> Here are the informations from dmesg about the nics: >> >> >> >> sis0 at pci0 dev 8 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: >> >> irq 11, address 00:02:b6:33:50:dd >> >> >> >> Btw, I'm talking about a fresh 4.1 installation, completly untouched. >> >> >> >> Has anyone an idea for me? Driver problem? Unsupported hardware? The >> >> hardware was checked twice by producer (and I don't have the problems >> >> using linux), I don't think that is a hardware defect. >> >> >> >> Thanks. >> >> >> >> Regards >> >> Hagen Volpers >> >> >> > >> > Have you tried: >> > >> > ssh -vvv host.to.connect.to >> > >> > That might give some clues. >> > >> > HTH >> > Fred >> > -- >> > http://www.crowsons.com/puters/x41.htm >> >> Hello, >> >> here are the last lines: >> >> debug1: SSH2_MSG_NEWKEYS sent >> debug1: expecting SSH2_MSG_NEWKEYS >> debug2: set_newkeys: mode 0 >> debug1: SSH2_MSG_NEWKEYS received >> debug1: SSH2_MSG_SERVICE_REQUEST sent >> >> followed by the error mentioned in my first mail. >> >> Does that help? Do you need more informations? >> >> Regards >> Hagen Volpers > > Try to determine where the error occurs. For example: is this a network > driver issue? To find out put another type network card into the > machine and try to use ssh over it. > > Another test would be to connect to another machine (running a > different version of sshd?), to test if this is a ssh protcol problem > on the local or remote side. > > Can you ssh INTO the machine? > > Make notes of what works and what not, etc. Try to be smart and rule > out possible causes, this enable you to zoom in into the real problem. > > -Otto Hello, unfortunately I'm not able to test another nic, the system doesn't have a pci slot (we are talking about a all-in-one board - e.g. http://www.visionsystems.de/1_2_5_4.html). I already did all the other tests you mentioned, except changing the ssh protocol - lynx / ping works, ssh from to machine to different machines doesn't work (I can connect from other systems without any problem), ssh to the machine doesn't work, too. Any other ideas? Regards Hagen Volpers
Re: PF Config problem
So why is this different to what I put ?
#These three lines allow the failover mechanisms to work
pass on { $int_if } proto carp keep state
pass on { $adsl_if } proto carp keep state
pass quick on { $pfsync_if} proto pfsync
The only difference I can see, is that your lines would allow CARP on the
pfsync (and loopback) interface.
GTG
>>> Dag Richards <[EMAIL PROTECTED]> 07/19/07 4:55 PM >>>
I think you will find that since carp is communicated with multicast
that your rules are not behaving as you think.
They are allowing the outbound transmissions, but since you are not
establishing tcp sessions the keep state does not do what you want.
Try explicitly allowing in protocol carp
What I do is this:
pass out quick proto carp
pass in quick proto carp
Re: [[ in sh(1)
On 7/17/07, Paul de Weerd <[EMAIL PROTECTED]> wrote: On Tue, Jul 17, 2007 at 11:42:14AM -0400, Eric Furman wrote: | > The description of [[ ]] is missing from sh(1) though, hence my | > statement "which, I believe, is only a difference in documentation". | This difference is only in the documentation. The following two constructs behave the same in /bin/sh and /bin/ksh : [[ foobar = f*r ]] && echo YES || echo NO [ foobar = f*r ] && echo YES || echo NO At least, they do when I just tried : That's because in OpenBSD they are the same binary.. -Nick
Re: Allocate more memory than 512 MB with squid
I start squid with the following entry in /etc/rc.local. if [ -x /usr/local/sbin/squid ]; then echo -n ' squid'; /usr/local/sbin/squid fi Best regards. Patrick Daniel Ouellet schrieb: > Patrick Hemmen wrote: >> Squid runs under the user _squid and this user is in the login class >> "daemon" in which the data size is set to infinity. Or do I have to >> set a another capability? > > How do you start your squid is the key. > > man 5 login.conf > man 8 rc > > explain it. Just putting the class there for a specific user doesn't > make it use it unless you specify that class at the start in your rc.local > > It's not for squid, but check the principal and ideas here: > > http://openbsdsupport.org/mysql.htm#/etc/login.conf > http://openbsdsupport.org/mysql.htm#/etc/rc.local > > You will see that unless you specifically tell it to use it, it will not > use it and only gets the default class no matter what you put in there. > > Hope this help you. > > Daniel [demime 1.01d removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s]
Re: PF Config problem
Gordon Ross wrote:
So why is this different to what I put ?
#These three lines allow the failover mechanisms to work
pass on { $int_if } proto carp keep state
pass on { $adsl_if } proto carp keep state
pass quick on { $pfsync_if} proto pfsync
The only difference I can see, is that your lines would allow CARP on the
pfsync (and loopback) interface.
GTG
Dag Richards <[EMAIL PROTECTED]> 07/19/07 4:55 PM >>>
I think you will find that since carp is communicated with multicast
that your rules are not behaving as you think.
They are allowing the outbound transmissions, but since you are not
establishing tcp sessions the keep state does not do what you want.
Try explicitly allowing in protocol carp
What I do is this:
pass out quick proto carp
pass in quick proto carp
The difference is you were paying attention.
I really thought I saw pass out not just pass on your lines.
When you do
tcpdump -n -e -ttt -i pflog0
with rules enables to you see inbound carp being blocked?
Re: fsck Segmentation fault on 4.1
On Fri, 13 Jul 2007, Otto Moerbeek wrote:
> On Fri, 13 Jul 2007, Marcos Laufer wrote:
>
> > Otto ,
> >
> > This is the error i get:
> > It starts booting , and it starts fsck , it fails with /dev/rwd0e and rwd0h,
> >
> > (i could see once that when it finished it says:)
> > fsck_ffs in free(): error: free_page: pointer to wrong page
> > fsck: /dev/rwd0h: Abort trap
> >
> > I reboot it again many times and that did not show again
> >
> >
> > i try to fsck manually like this as you say and i get:
> >
> > # ulimit -d unlimited
> > # fsck -y /dev/rwd0e
> >
> > INCONSISTENT CGSIZE=16384
> >
> > FIX? yes
> >
> > * * Last mounted on /usr
> > * * Phase 1- Check Blocks and Sizes
> > * * Phase 2 - Check pathnames
> > * * Phase 3 - Check Conectivity
> > * * Phase 4 - Check Reference Counts
> > * * Phase 5 - Check Cyl Groups
> >
> > CANNOT READ: BLK 64
> >
> > CONTINUE? yes
> >
> > fsck: /dev/rwd0e: Segmentation Fault
>
> This is not an out of memory situation.
>
> It looks like fsck_ffs has problems getting data from your disk,
> probably because of hardware failure or bad cabling. Sometimes it
> detects it cannot read the data (the CANNOT READ: BLK 64 case), but it
> is possible it gets corrupted data in other cases.
>
> Sadly, this can cause fsck_ffs to do the wrong thing and access wrong
> memory and corrupt it's internal data. During the last year I've fixed
> some stuff in this area, but there still remains cases that can go
> wrong.
I misdiagnosed the problem. In the meantime I got another report with
a dd of the partition which enabled me to diagnose the problem and
make a fix for 4.1. Please test and report back. I'll be on vacation
from Saturday, so it would be nice if you can answer before that.
Anobody else seeing INCONSISTENT CGSIZE messages should try this as well.
NOTE: this diff only applies to 4.1. Current does not have the
problem, due to a corrected CGSIZE macro.
-Otto
Index: setup.c
===
RCS file: /cvs/src/sbin/fsck_ffs/setup.c,v
retrieving revision 1.29
diff -u -p -r1.29 setup.c
--- setup.c 16 Feb 2007 08:34:29 - 1.29
+++ setup.c 19 Jul 2007 18:02:36 -
@@ -336,6 +336,7 @@ setup(char *dev)
sbdirty();
dirty(&asblk);
}
+#if 0
if (sblock.fs_cgsize != fragroundup(&sblock, CGSIZE(&sblock))) {
pwarn("INCONSISTENT CGSIZE=%d\n", sblock.fs_cgsize);
sblock.fs_cgsize = fragroundup(&sblock, CGSIZE(&sblock));
@@ -346,6 +347,7 @@ setup(char *dev)
dirty(&asblk);
}
}
+#endif
if (INOPB(&sblock) != sblock.fs_bsize / sizeof(struct ufs1_dinode)) {
pwarn("INCONSISTENT INOPB=%d\n", INOPB(&sblock));
sblock.fs_inopb = sblock.fs_bsize / sizeof(struct ufs1_dinode);
Re: Zurich OpenBSD
Merv Hammer wrote: > Humpaa! > > On Thu, Jul 19, 2007 at 08:16:24AM +0100, The King of Norway wrote: > >> I'm from the UK but currently in Ireland. I know of one other OpenBSD >> user here but never seen anyone else in a t-shirt. >> >> Sean. > > I'm a British OpenBSD devotee who has been living out in various parts > of the Middle East for the last seven years. Next Friday I am > relocating with my wife and kids to Gorey, County Wexford - and I'll be > bringing my t-shirts! > > So then you'll know of two other OpenBSD users in Ireland :) > > Had a poke around on the net for other OpenBSD users in Ireland myself > and drew a blank, except for http://ie.bsd.net which doesn't seem to > have seen much activity in a while. Drop me a line if you fancy > discussing Puffy over a pint! > > Merv. > > I'm currently in Ireland, Dublin to be precise but relocating back to Finland in two weeks. Heh, OpenBSD users should have a salute or some sort of secret handshake :) Timo
Re: Zurich OpenBSD
On 19/07/07, Edd Barrett <[EMAIL PROTECTED]> wrote: On 18/07/07, Guido Tschakert <[EMAIL PROTECTED]> wrote: > Just say "Humpaa" to everyone wearing an OpenBSD-Shirt or other signs of > lovely Puffy. Loving the humpaa salute! I have actually never seen anyone in the UK wearing a bsd shirt apart from my friends.Sometimes I wonder if I am the only british OpenBSD user :p Here's another OpenBSD Brit. And as it happens, i wore my Puffy t-shirt to work today. But i'm not a fan of Humpaa. Sorry. -- ~michael www.bsdqed.com
Re: [tex-live] TeXLive committed to OpenBSD
Edd Barrett writes: > Why would static libs be a problem for OpenBSD? A lot of stuff in the > OpenBSD 2007 port is static. I didn't say that this is a problem. As far as I remember you said that the binaries you compiled now are dynamically linked. Regards, Reinhard -- Reinhard Kotucha Phone: +49-511-4592165 Marschnerstr. 25 D-30167 Hannover mailto:[EMAIL PROTECTED] Microsoft isn't the answer. Microsoft is the question, and the answer is NO.
Since location mails seem to be the thing for the past couple of days....
Anyone in or around Morgantown, WV USA? Thanks, Josh
Re: hardware problem?! strangely ssh error
Hello, putting that one back to list, it's not silly ;-) I tried ssh [EMAIL PROTECTED] -> same result. So the nic isn't the problem ... I looked into dmesg again, the bios is mentioned as AT/286+ there?! Is that normal? Btw, the IP-Address is unique ;-) Are there known bugs on VIA-CPUs? Which informations do I need to provide? (dmesg is hard, I have to write it up, but if that helps, let me know and I'll do it). Regards Hagen Volpers -Urspr|ngliche Nachricht- Von: Maxim Belooussov [mailto:[EMAIL PROTECTED] Gesendet: Donnerstag, 19. Juli 2007 21:38 An: openbsd misc Betreff: Re: hardware problem?! strangely ssh error Hi Hagen, Doing this off-the list in case I sound too silly. For starters, have you tried to ssh [EMAIL PROTECTED] This would give a clue where the problem could be. Further make sure that there is no machine with the same ip on your net - I've seen before that some connections were 'dying' all over sudden when another (linux) box with same IP was closing 'illegal' connection. Hope it helps, Maxim > > On Thu, 19 Jul 2007, openbsd misc wrote: > > >> > misc(at)openbsd.org wrote: > >> >> Hello, > >> >> > >> >> I have a system with openbsd 4.1 installed. Everything works fine > >> (lynx > >> >> / ping / ...) but I'm not able to connect to another system via > ssh. > >> I'm > >> >> not able to connect to the system, too. > >> >> The error I got: > >> >> > >> >> 2: Bad packet length > >> >> > >> >> I googled a bit, but I wasn't able to find out what exactly is > wrong. > >> >> Here are the informations from dmesg about the nics: > >> >> > >> >> sis0 at pci0 dev 8 function 0 "NS DP83815 10/100" rev 0x00, > DP83816A: > >> >> irq 11, address 00:02:b6:33:50:dd > >> >> > >> >> Btw, I'm talking about a fresh 4.1 installation, completly > untouched. > >> >> > >> >> Has anyone an idea for me? Driver problem? Unsupported hardware? > The > >> >> hardware was checked twice by producer (and I don't have the > problems > >> >> using linux), I don't think that is a hardware defect. > >> >> > >> >> Thanks. > >> >> > >> >> Regards > >> >> Hagen Volpers > >> >> > >> > > >> > Have you tried: > >> > > >> > ssh -vvv host.to.connect.to > >> > > >> > That might give some clues. > >> > > >> > HTH > >> > Fred > >> > -- > >> > http://www.crowsons.com/puters/x41.htm > >> > >> Hello, > >> > >> here are the last lines: > >> > >> debug1: SSH2_MSG_NEWKEYS sent > >> debug1: expecting SSH2_MSG_NEWKEYS > >> debug2: set_newkeys: mode 0 > >> debug1: SSH2_MSG_NEWKEYS received > >> debug1: SSH2_MSG_SERVICE_REQUEST sent > >> > >> followed by the error mentioned in my first mail. > >> > >> Does that help? Do you need more informations? > >> > >> Regards > >> Hagen Volpers > > > > Try to determine where the error occurs. For example: is this a > network > > driver issue? To find out put another type network card into the > > machine and try to use ssh over it. > > > > Another test would be to connect to another machine (running a > > different version of sshd?), to test if this is a ssh protcol problem > > on the local or remote side. > > > > Can you ssh INTO the machine? > > > > Make notes of what works and what not, etc. Try to be smart and rule > > out possible causes, this enable you to zoom in into the real problem. > > > > > -Otto > > Hello, > > unfortunately I'm not able to test another nic, the system doesn't have > a pci slot (we are talking about a all-in-one board - e.g. > http://www.visionsystems.de/1_2_5_4.html). I already did all the other > tests you mentioned, except changing the ssh protocol - lynx / ping > works, ssh from to machine to different machines doesn't work (I can > connect from other systems without any problem), ssh to the machine > doesn't work, too. > > Any other ideas? > > Regards > Hagen Volpers
Re: Zurich OpenBSD
Edd Barrett wrote: I have actually never seen anyone in the UK wearing a bsd shirt apart from my friends.Sometimes I wonder if I am the only british OpenBSD user :p 'nother one here in South Wales. OpenBSD newbie - still running 3.9 on various boxes while I look for the justification (and time) to upgrade. No shirt yet either. -- Neil
Re: Since location mails seem to be the thing for the past couple of days....
On Thu, Jul 19, 2007 at 04:03:52PM -0400, Joshua Smith wrote: > Anyone in or around Morgantown, WV USA? I'd also like to remind people about metabug.org. We've been slacking a bit in the summer heat, but we're still there! In addition to joining up user groups, we also aim to provide a "home" to users who don't have a local group. We hang out on freenode.net in #metabug. We're meant to be *BSD, but somehow (wonder of wonders) we're mostly OpenBSD. People from anywhere are welcome to drop in. -- Darrin Chandler| Phoenix BSD User Group | MetaBUG [EMAIL PROTECTED] | http://phxbug.org/ | http://metabug.org/ http://www.stilyagin.com/ | Daemons in the Desert | Global BUG Federation
GENERIC: #option MTRR
Hi misc@, just out of curiosity: What's the reason for MTRR being disabled by default? Thanks for enlightment, Timo :)
Re: hardware problem?! strangely ssh error
Hello again, I tested the gentoo live cd. I was able to ssh to another machine, so I was able to get a complete (linux) dmesg output. Hope that helps: Linux version 2.6.19-gentoo-r5 ([EMAIL PROTECTED]) (gcc version 4.1.1 (Gentoo 4.1.1-r3)) #1 SMP Tue Apr 3 01:19:22 UTC 2007 BIOS-provided physical RAM map: BIOS-e820: - 0009fc00 (usable) BIOS-e820: 0009fc00 - 000a (reserved) BIOS-e820: 000d - 000d2000 (reserved) BIOS-e820: 000f - 0010 (reserved) BIOS-e820: 0010 - 1f80 (usable) BIOS-e820: fff8 - 0001 (reserved) 0MB HIGHMEM available. 504MB LOWMEM available. Entering add_active_range(0, 0, 129024) 0 entries of 256 used Zone PFN ranges: DMA 0 -> 4096 Normal 4096 -> 129024 HighMem129024 -> 129024 early_node_map[1] active PFN ranges 0:0 -> 129024 On node 0 totalpages: 129024 DMA zone: 32 pages used for memmap DMA zone: 0 pages reserved DMA zone: 4064 pages, LIFO batch:0 Normal zone: 976 pages used for memmap Normal zone: 123952 pages, LIFO batch:31 HighMem zone: 0 pages used for memmap DMI 2.3 present. ACPI: Unable to locate RSDP Allocating PCI resources starting at 2000 (gap: 1f80:e078) Detected 997.469 MHz processor. Built 1 zonelists. Total pages: 128016 Kernel command line: root=/dev/ram0 init=/linuxrc dokeymap looptype=squashfs loop=/image.squashfs cdroot initrd=gentoo.igz vga=791 splash=silent,theme:livecd-2006.1 CONSOLE=/dev/tty1 quiet BOOT_IMAGE=gentoo No local APIC present or hardware disabled mapped APIC to d000 (013fa000) Enabling fast FPU save and restore... done. Enabling unmasked SIMD FPU exception support... done. Initializing CPU#0 PID hash table entries: 2048 (order: 11, 8192 bytes) Speakup v-2.00 CVS: Sat Oct 7 10:52:29 EDT 2006 : initialized Console: colour dummy device 80x25 Dentry cache hash table entries: 65536 (order: 6, 262144 bytes) Inode-cache hash table entries: 32768 (order: 5, 131072 bytes) Memory: 502752k/516096k available (2604k kernel code, 12916k reserved, 605k data, 248k init, 0k highmem) virtual kernel memory layout: fixmap : 0xfff4e000 - 0xf000 ( 708 kB) pkmap : 0xff80 - 0xffc0 (4096 kB) vmalloc : 0xe000 - 0xff7fe000 ( 503 MB) lowmem : 0xc000 - 0xdf80 ( 504 MB) .init : 0xc042a000 - 0xc0468000 ( 248 kB) .data : 0xc038b370 - 0xc0422b14 ( 605 kB) .text : 0xc010 - 0xc038b370 (2604 kB) Checking if this processor honours the WP bit even in supervisor mode... Ok. Calibrating delay using timer specific routine.. 1996.94 BogoMIPS (lpj=9984715) Mount-cache hash table entries: 512 CPU: After generic identify, caps: 0381b93f CPU: L1 I Cache: 64K (32 bytes/line), D cache 64K (32 bytes/line) CPU: L2 Cache: 64K (32 bytes/line) CPU: After all inits, caps: 0381b93f 00dd Compat vDSO mapped to e000. Checking 'hlt' instruction... OK. SMP alternatives: switching to UP code Freeing SMP alternatives: 16k freed CPU0: Centaur VIA Nehemiah stepping 08 SMP motherboard not detected. Local APIC not detected. Using dummy APIC emulation. Brought up 1 CPUs checking if image is initramfs... it is Freeing initrd memory: 4694k freed NET: Registered protocol family 16 EISA bus registered PCI: PCI BIOS revision 2.10 entry at 0xfdb51, last bus=1 PCI: Using configuration type 1 Setting up standard PCI resources pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_
Re: hardware problem?! strangely ssh error
openbsd misc wrote: Hello again, I tested the gentoo live cd. I was able to ssh to another machine, so I was able to get a complete (linux) dmesg output. Hope that helps: Linux version 2.6.19-gentoo-r5 ([EMAIL PROTECTED]) (gcc version 4.1.1 (Gentoo 4.1.1-r3)) #1 SMP Tue Apr 3 01:19:22 UTC 2007 BIOS-provided physical RAM map: BIOS-e820: - 0009fc00 (usable) BIOS-e820: 0009fc00 - 000a (reserved) BIOS-e820: 000d - 000d2000 (reserved) BIOS-e820: 000f - 0010 (reserved) BIOS-e820: 0010 - 1f80 (usable) BIOS-e820: fff8 - 0001 (reserved) 0MB HIGHMEM available. 504MB LOWMEM available. Entering add_active_range(0, 0, 129024) 0 entries of 256 used Zone PFN ranges: DMA 0 -> 4096 Normal 4096 -> 129024 HighMem129024 -> 129024 early_node_map[1] active PFN ranges 0:0 -> 129024 On node 0 totalpages: 129024 DMA zone: 32 pages used for memmap DMA zone: 0 pages reserved DMA zone: 4064 pages, LIFO batch:0 Normal zone: 976 pages used for memmap Normal zone: 123952 pages, LIFO batch:31 HighMem zone: 0 pages used for memmap DMI 2.3 present. ACPI: Unable to locate RSDP Allocating PCI resources starting at 2000 (gap: 1f80:e078) Detected 997.469 MHz processor. Built 1 zonelists. Total pages: 128016 Kernel command line: root=/dev/ram0 init=/linuxrc dokeymap looptype=squashfs loop=/image.squashfs cdroot initrd=gentoo.igz vga=791 splash=silent,theme:livecd-2006.1 CONSOLE=/dev/tty1 quiet BOOT_IMAGE=gentoo No local APIC present or hardware disabled mapped APIC to d000 (013fa000) Enabling fast FPU save and restore... done. Enabling unmasked SIMD FPU exception support... done. Initializing CPU#0 PID hash table entries: 2048 (order: 11, 8192 bytes) Speakup v-2.00 CVS: Sat Oct 7 10:52:29 EDT 2006 : initialized Console: colour dummy device 80x25 Dentry cache hash table entries: 65536 (order: 6, 262144 bytes) Inode-cache hash table entries: 32768 (order: 5, 131072 bytes) Memory: 502752k/516096k available (2604k kernel code, 12916k reserved, 605k data, 248k init, 0k highmem) virtual kernel memory layout: fixmap : 0xfff4e000 - 0xf000 ( 708 kB) pkmap : 0xff80 - 0xffc0 (4096 kB) vmalloc : 0xe000 - 0xff7fe000 ( 503 MB) lowmem : 0xc000 - 0xdf80 ( 504 MB) .init : 0xc042a000 - 0xc0468000 ( 248 kB) .data : 0xc038b370 - 0xc0422b14 ( 605 kB) .text : 0xc010 - 0xc038b370 (2604 kB) Checking if this processor honours the WP bit even in supervisor mode... Ok. Calibrating delay using timer specific routine.. 1996.94 BogoMIPS (lpj=9984715) Mount-cache hash table entries: 512 CPU: After generic identify, caps: 0381b93f CPU: L1 I Cache: 64K (32 bytes/line), D cache 64K (32 bytes/line) CPU: L2 Cache: 64K (32 bytes/line) CPU: After all inits, caps: 0381b93f 00dd Compat vDSO mapped to e000. Checking 'hlt' instruction... OK. SMP alternatives: switching to UP code Freeing SMP alternatives: 16k freed CPU0: Centaur VIA Nehemiah stepping 08 SMP motherboard not detected. Local APIC not detected. Using dummy APIC emulation. Brought up 1 CPUs checking if image is initramfs... it is Freeing initrd memory: 4694k freed NET: Registered protocol family 16 EISA bus registered PCI: PCI BIOS revision 2.10 entry at 0xfdb51, last bus=1 PCI: Using configuration type 1 Setting up standard PCI resources pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devices is still empty pci_get_subsys() called while pci_devic
Non critical but weird pf and openvpn problem
I have the same problem. I was going to post a this question too along with another question. When I first boot up my OpenBSD 4.1 sever. I can not access my OpenVPN wireless connection. I can access ssh wirelessly though. So what I do is login via ssh and run pfctl -f /etc/pf.conf. Now my OpenVPN connection works just fine. I too have my startup script in /etc/rc.local but it is much simpler: /usr/local/sbin/openvpn /var/openvpn/server.conf I am curious to know why pf requires a command line start for it to work.
Re: Dell sc440 / broadcom bcm5754 nic
On Thu, Jul 19, 2007 at 10:47:55AM -0400, Charlie Farinella wrote: > Our company has purchased 3 of these servers, and I would like very much > to get the onboard nic working on at least one of them. > > I have installed OpenBSD 4.1 and it seems to recognize the interface > correctly and use the correct driver ( bge ) for it, but it is not > responsive. It will not connect to our network at all. Googling tells > me some others have had the same problem, but I haven't found any > solutions so far. If you apply revision 1.212 of src/sys/dev/pci/if_bge.c then your nic will start working. dlg > > ifconfig output looks normal, dmesg provides: > == > bge0 at pci4 dev 0 function 0 "Broadcom BCM5754" rev 0x02, BCM5787 A2 > (0xb002): > irq 10, address 00:1a:a0:24:03:ef > brgphy0 at bge0 phy 1: BCM5787 10/100/1000baseT PHY, rev.0 > == > Pointers, etc. would be a big help. > > Thanks, > > --charlie > > -- > > Charles Farinella > Appropriate Solutions, Inc. (www.AppropriateSolutions.com) > [EMAIL PROTECTED] > voice: 603.924.6079 fax: 603.924.8668
Re: Areca-1210 rd0 hang during install of 4.1 on amd64
On Thu, Jul 19, 2007 at 12:29:51PM +0100, Nick Humphrey wrote: > I am having trouble with installing OpenBSD 4.1 on a new amd64 server > with an Areca ARC-1210 raid card. When I boot from the 4.1 CD install > media, everything seems fine up until it reaches" rd0: fixed, > blocks" and then the system hangs. I have downloaded the latest amd64 > current snapshot from the mirrors and tried booting from that too - same > result. > > System: > - Gigabyte GA-M61PM-S2 (rev. 1.0) (BIOS Updated to latest F7 release) > - Areca ARC-1210 SATA RAID PCI-Express (firmware updated to V1.43 > 2007-04-17) > - 2 x 400GB SATA Disks > > I have setup RAID 1 mirror of the two disks in the RAID BIOS. (Areca > card and drives detected by and usable in Linux and Windows XP). Without > the ARC-1210 card installed and the disks wired to the on-board SATA > controller everything works fine (i.e. I am able to install OpenBSD). I > have tried disabling on-board LAN and on-board SATA in the BIOS. I have > also tried enabling ACPI at boot time with ( -c, UKC> enable acpi, quit > ) which produces same result. In addition I have tried booting with the > i386 release media, and experienced exactly the same problem. can you show me a dmesg from this box with acpi enabled? dlg > > Dmesg's captured through tty com0 attached below. > Many thanks in advance for any help. > Nick > > booting cd0a:/4.1/amd64/bsd.rd: 2169728+438535+2270160+0+330160 > [80+220056+135431]=0x94f9a0 > entry point at 0x1001e0 [7205c766, 3404, 24448b12, > 2840a304]*Copyright (c) 1982, 1986, 1989, 1991, 1993 > The Regents of the University of California. All rights reserved. > Copyright (c) 1995-2007 OpenBSD. All rights reserved. > http://www.OpenBSD.org > > OpenBSD 4.1 (RAMDISK_CD) #1054: Sat Mar 10 19:32:06 MST 2007 > [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/RAMDISK_CD > real mem = 2079911936 (2031164K) > avail mem = 1778188288 (1736512K) > using 22937 buffers containing 208199680 bytes (203320K) of memory > mainbus0 (root) > acpi at mainbus0 not configured > cpu0 at mainbus0: (uniprocessor) > cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+, 2612.21 MHz > cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT, > PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW > cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB > 64b/line 16-way L2 cache > cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative > cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative > cpu0: PowerNow! K8 2612 MHz: speeds: 2600 2400 2200 2000 1800 1000 MHz > pci0 at mainbus0 bus 0: configuration mode 1 > "NVIDIA MCP61 Memory" rev 0xa1 at pci0 dev 0 function 0 not configured > "NVIDIA MCP61 ISA" rev 0xa2 at pci0 dev 1 function 0 not configured > "NVIDIA MCP61 SMBus" rev 0xa2 at pci0 dev 1 function 1 not configured > "NVIDIA MCP61 Memory" rev 0xa2 at pci0 dev 1 function 2 not configured > ohci0 at pci0 dev 2 function 0 "NVIDIA MCP61 USB" rev 0xa2: irq 10, > version 1.0, legacy support > usb0 at ohci0: USB revision 1.0 > uhub0 at usb0 > uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 > uhub0: 10 ports with 10 removable, self powered > ehci0 at pci0 dev 2 function 1 "NVIDIA MPC61 USB" rev 0xa2: irq 11 > usb1 at ehci0: USB revision 2.0 > uhub1 at usb1 > uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 > uhub1: 10 ports with 10 removable, self powered > ppb0 at pci0 dev 4 function 0 "NVIDIA MCP61" rev 0xa1 > pci1 at ppb0 bus 1 > skc0 at pci1 dev 7 function 0 "D-Link Systems DGE-530T B1" rev 0x11, > Yukon Lite (0x9): irq 10 > sk0 at skc0 port A, address 00:15:e9:aa:d3:34 > eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 > pciide0 at pci0 dev 6 function 0 "NVIDIA MCP61 IDE" rev 0xa2: DMA, > channel 0 configured to compatibility, channel 1 configured to compatibility > atapiscsi0 at pciide0 channel 0 drive 0 > scsibus0 at atapiscsi0: 2 targets > cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD_RW ND-2510A, 2.16> SCSI0 > 5/cdrom removable > cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 > pciide0: channel 1 ignored (disabled) > ppb1 at pci0 dev 9 function 0 "NVIDIA MCP61 PCIE" rev 0xa2 > pci2 at ppb1 bus 2 > ppb2 at pci2 dev 0 function 0 "Intel IOP332 PCIE-PCIX" rev 0x07 > pci3 at ppb2 bus 3 > arc0 at pci3 dev 14 function 0 "Areca ARC-1210" rev 0x00: irq 11 > arc0: 4 SATA Ports, 256MB SDRAM, FW Version: V1.43 2007-4-17 > scsibus1 at arc0: 16 targets > sd0 at scsibus1 targ 0 lun 0: SCSI3 > 0/direct fixed > sd0: 381469MB, 58128 cyl, 28 head, 480 sec, 512 bytes/sec, 781249536 sec > total > ppb3 at pci2 dev 0 function 2 "Intel IOP332 PCIE-PCIX" rev 0x07 > pci4 at ppb3 bus 4 > vga1 at pci0 dev 13 function 0 "NVIDIA GeForce 6100 nForce 430" rev 0xa2 > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) > pchb0 at pci0 dev 24 function 0 "AMD AMD64 HyperTransport" rev 0x00 > pchb1 at pci0 dev 24 function 1 "AMD AMD64 Address Map"
Re: Non critical but weird pf and openvpn problem
On Thu, 19 Jul 2007 15:06:55 -0700 <[EMAIL PROTECTED]> spake: > I have the same problem. I was going to post a this question too > along with another question. > > When I first boot up my OpenBSD 4.1 sever. I can not access my > OpenVPN wireless connection. I can access ssh wirelessly though. > So what I do is login via ssh and run pfctl -f /etc/pf.conf. Now > my OpenVPN connection works just fine. I too have my startup > script in /etc/rc.local but it is much simpler: > > /usr/local/sbin/openvpn /var/openvpn/server.conf > > I am curious to know why pf requires a command line start for it to > work. I have a few OpenVPN installations running and do not have this problem with any of them. I start my PF normally through the rc.conf.local pf= pf_rules=/etc/brock.conf My OpenVPN starts in rc.local echo -n ' openvpn'; /usr/local/sbin/openvpn --cd /etc/openvpn --config server.conf --daemo It all "just works"(TM). Do you have a hostname.tun0 file in /etc? I forget if OpenVPN will create the tun0, but it could be why PF needs to be run after in your instance. I have simply: UP in this file.
Re: Areca-1210 rd0 hang during install of 4.1 on amd64
David Gwynne wrote: > On Thu, Jul 19, 2007 at 12:29:51PM +0100, Nick Humphrey wrote: >> I am having trouble with installing OpenBSD 4.1 on a new amd64 server >> with an Areca ARC-1210 raid card. When I boot from the 4.1 CD install >> media, everything seems fine up until it reaches" rd0: fixed, >> blocks" and then the system hangs. I have downloaded the latest amd64 >> current snapshot from the mirrors and tried booting from that too - same >> result. >> >> System: >> - Gigabyte GA-M61PM-S2 (rev. 1.0) (BIOS Updated to latest F7 release) >> - Areca ARC-1210 SATA RAID PCI-Express (firmware updated to V1.43 >> 2007-04-17) >> - 2 x 400GB SATA Disks >> >> I have setup RAID 1 mirror of the two disks in the RAID BIOS. (Areca >> card and drives detected by and usable in Linux and Windows XP). Without >> the ARC-1210 card installed and the disks wired to the on-board SATA >> controller everything works fine (i.e. I am able to install OpenBSD). I >> have tried disabling on-board LAN and on-board SATA in the BIOS. I have >> also tried enabling ACPI at boot time with ( -c, UKC> enable acpi, quit >> ) which produces same result. In addition I have tried booting with the >> i386 release media, and experienced exactly the same problem. > > can you show me a dmesg from this box with acpi enabled? > > dlg > David, Please find below dmesg from 4.1-RELEASE with acpi enabled. Kind regards, Nick boot> -c booting cd0a:/4.1/amd64/bsd.rd: 2169728+438535+2270160+0+330160 [80+220056+135431]=0x94f9a0 entry point at 0x1001e0 [7205c766, 3404, 24448b12, 2840a304]*Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2007 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.1 (RAMDISK_CD) #1054: Sat Mar 10 19:32:06 MST 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/RAMDISK_CD real mem = 2079911936 (2031164K) avail mem = 1778188288 (1736512K) using 22937 buffers containing 208199680 bytes (203320K) of memory User Kernel Config UKC> enable acpi 136 acpi0 enabled UKC> quit Continuing... mainbus0 (root) acpi0 at mainbus0: rev 0 acpi0: tables DSDT FACP SSDT HPET MCFG APIC acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (HUB0) cpu0 at mainbus0: (uniprocessor) cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+, 2612.33 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: PowerNow! K8 2612 MHz: speeds: 2600 2400 2200 2000 1800 1000 MHz pci0 at mainbus0 bus 0: configuration mode 1 "NVIDIA MCP61 Memory" rev 0xa1 at pci0 dev 0 function 0 not configured "NVIDIA MCP61 ISA" rev 0xa2 at pci0 dev 1 function 0 not configured "NVIDIA MCP61 SMBus" rev 0xa2 at pci0 dev 1 function 1 not configured "NVIDIA MCP61 Memory" rev 0xa2 at pci0 dev 1 function 2 not configured ohci0 at pci0 dev 2 function 0 "NVIDIA MCP61 USB" rev 0xa2: irq 10, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 10 ports with 10 removable, self powered ehci0 at pci0 dev 2 function 1 "NVIDIA MPC61 USB" rev 0xa2: irq 11 usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 10 ports with 10 removable, self powered ppb0 at pci0 dev 4 function 0 "NVIDIA MCP61" rev 0xa1 pci1 at ppb0 bus 1 skc0 at pci1 dev 7 function 0 "D-Link Systems DGE-530T B1" rev 0x11, Yukon Lite (0x9): irq 10 sk0 at skc0 port A, address 00:15:e9:aa:d3:34 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 pciide0 at pci0 dev 6 function 0 "NVIDIA MCP61 IDE" rev 0xa2: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD_RW ND-2510A, 2.16> SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) ppb1 at pci0 dev 9 function 0 "NVIDIA MCP61 PCIE" rev 0xa2 pci2 at ppb1 bus 2 ppb2 at pci2 dev 0 function 0 "Intel IOP332 PCIE-PCIX" rev 0x07 pci3 at ppb2 bus 3 arc0 at pci3 dev 14 function 0 "Areca ARC-1210" rev 0x00: irq 11 arc0: 4 SATA Ports, 256MB SDRAM, FW Version: V1.43 2007-4-17 scsibus1 at arc0: 16 targets sd0 at scsibus1 targ 0 lun 0: SCSI3 0/direct fixed sd0: 381469MB, 58128 cyl, 28 head, 480 sec, 512 bytes/sec, 781249536 sec total ppb3 at pci2 dev 0 function 2 "Intel IOP332 PCIE-PCIX" rev 0x07 pci4 at ppb3 bus 4 vga1 at pci0 dev 13 function 0 "NVIDIA GeForce 6100 nForce 430" rev 0xa2 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) pchb0 at pci0 dev 24 function 0 "AMD AMD64 HyperTransport" rev 0x
Re: PF Config problem
On 2007/07/19 15:38, Gordon Ross wrote: > Cutting down the pf ruleset to the bare minimum, I have: Might be below the minimum; there's no explicit "pass out". There's an implicit one, but I suspect it might not be keeping state (though the default as of 4.1 is to keep state, I suspect this _may_ apply only to rules configured by pfctl and not implicit ones). And if that's the case it won't permit the return traffic. I would have a look at http://www.openbsd.org/faq/pf/tagging.html before you start writing much more. I also find the ruleset a lot easier to read when I leave out "keep state" keywords.
Re: hardware problem?! strangely ssh error
> openbsd misc wrote:
>> Hello again,
>>
>> I tested the gentoo live cd. I was able to ssh to another machine, so
I was
>> able to get a complete (linux) dmesg output. Hope that helps:
>>
>> [...]
>>
>> Regards
>> Hagen Volpers
>>
>>
>> -Urspr|ngliche Nachricht-
>> Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im
Auftrag von
>> openbsd misc
>> Gesendet: Donnerstag, 19. Juli 2007 22:19
>> An: misc@openbsd.org
>> Cc: Maxim Belooussov
>> Betreff: Re: hardware problem?! strangely ssh error
>>
>> Hello,
>>
>> putting that one back to list, it's not silly ;-)
>>
>> I tried ssh [EMAIL PROTECTED] -> same result.
>>
>> So the nic isn't the problem ... I looked into dmesg again, the bios
is
>> mentioned as AT/286+ there?! Is that normal?
>>
>> Btw, the IP-Address is unique ;-)
>>
>> Are there known bugs on VIA-CPUs? Which informations do I need to
provide?
>> (dmesg is hard, I have to write it up, but if that helps, let me know
and
>> I'll
>> do it).
>>
>> Regards
>> Hagen Volpers
>
> Can you ftp the dmesg out?
>
> My answer to all dodgy hardware at the moment is enable acpi via boot
-c
>
> HTH
> --
> http://www.crowsons.com/puters/x41.htm
Hello,
acpi0 was disabled, but enabling it doesn't make any difference. Here is
the openbsd dmesg output (after enableing acpi using config - forgot the
good old apache, easier than setting up an ftp server on another machine
;-)):
OpenBSD 4.1 (GENERIC) #1435: Sat Mar 10 19:07:45 MST 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: VIA Nehemiah ("CentaurHauls" 686-class) 1 GHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,CX8,SEP,MTRR,PGE,CMOV,PAT,MMX,FXSR,SSE
cpu0: RNG AES
real mem = 528052224 (515676K)
avail mem = 474099712 (462988K)
using 4278 buffers containing 26525696 bytes (25904K) of memory
User Kernel Config
UKC> find acpi0
386 acpi0 at mainbus0 bus -1 flags 0x0
UKC> quit
Continuing...
mainbus0 (root)
bios0 at mainbus0: AT/286+ BIOS, date 11/27/03, BIOS32 rev. 0 @ 0xfdb30,
SMBIOS rev. 2.3 @ 0xf0630 (24 entries)
bios0: American Megatrends Inc. Uknown
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf8920/192 (10 entries)
pcibios0: PCI Interrupt Router at 000:07:0 ("VIA VT82C686 ISA" rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xc000 0xcc000/0x1000 0xcd000/0x1000
0xce000/0x1000 0xcf000/0x1000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "VIA VT8601 PCI" rev 0x05
ppb0 at pci0 dev 1 function 0 "VIA VT82C601 AGP" rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 "Trident CyberBlade i1" rev 0x6a
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
pcib0 at pci0 dev 7 function 0 "VIA VT82C686 ISA" rev 0x40
pciide0 at pci0 dev 7 function 1 "VIA VT82C571 IDE" rev 0x06: ATA100,
channel 0 configured to compatibility, channel 1 configured to
compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 39205MB, 80293248 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
pciide0: channel 1 disabled (no drives)
uhci0 at pci0 dev 7 function 2 "VIA VT83C572 USB" rev 0x1a: irq 10
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
viaenv0 at pci0 dev 7 function 4 "VIA VT82C686 SMBus" rev 0x40
sis0 at pci0 dev 8 function 0 "NS DP83815 10/100" rev 0x00, DP83816A:
irq 11, address 00:02:b6:33:50:dd
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 9 function 0 "NS DP83815 10/100" rev 0x00, DP83816A:
irq 12, address 00:02:b6:33:50:de
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 10 function 0 "NS DP83815 10/100" rev 0x00, DP83816A:
irq 9, address 00:02:b6:33:50:df
nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1
sis3 at pci0 dev 11 function 0 "NS DP83815 10/100" rev 0x00, DP83816A:
irq 10, address 00:02:b6:33:50:e0
nsphyter3 at sis3 phy 0: DP83815 10/100 PHY, rev. 1
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask e5e5 netmask ffe5 ttymask ffe7
pctr: user-level cycle counter enabled
uhidev0 at uhub0 port 2 configuration 1 interface 0
uhidev0: Tangtop USBPS2, rev 1.10/0.01, addr 2, iclass 3/1
ukbd0 at uhidev0: 8 modifier keys, 6 key codes
wskbd1 at ukbd0 mux 1
wskbd1: connecting to wsdisplay0
uhidev1 at uhub0 port 2 configuration 1 interface 1
uhidev1: Tangtop USBPS2, rev 1.10/0.01, addr 2, iclass 3/1
uhidev1: 3 report ids
ums0 at uhidev1 reportid 1: 5 buttons and Z dir.
wsmouse0 at ums0 mux 0
uhid0 at uhidev1 reportid 2: inpu
Re: hardware problem?! strangely ssh error
On 2007/07/19 23:06, openbsd misc wrote: > I tested the gentoo live cd. I was able to ssh to another machine, so I was > able to get a complete (linux) dmesg output. Hope that helps: Can you ftp or email out an OpenBSD dmesg from the box? Linux ones make my head hurt, and I suspect other people too. :-) If there might be crypto hardware onboard, try sysctl kern.usercrypto=0
Re: Areca-1210 rd0 hang during install of 4.1 on amd64
can you try a snapshot bsd.rd? On Thu, Jul 19, 2007 at 11:33:34PM +0100, Nick Humphrey wrote: > David Gwynne wrote: > > On Thu, Jul 19, 2007 at 12:29:51PM +0100, Nick Humphrey wrote: > >> I am having trouble with installing OpenBSD 4.1 on a new amd64 server > >> with an Areca ARC-1210 raid card. When I boot from the 4.1 CD install > >> media, everything seems fine up until it reaches" rd0: fixed, > >> blocks" and then the system hangs. I have downloaded the latest amd64 > >> current snapshot from the mirrors and tried booting from that too - same > >> result. > >> > >> System: > >> - Gigabyte GA-M61PM-S2 (rev. 1.0) (BIOS Updated to latest F7 release) > >> - Areca ARC-1210 SATA RAID PCI-Express (firmware updated to V1.43 > >> 2007-04-17) > >> - 2 x 400GB SATA Disks > >> > >> I have setup RAID 1 mirror of the two disks in the RAID BIOS. (Areca > >> card and drives detected by and usable in Linux and Windows XP). Without > >> the ARC-1210 card installed and the disks wired to the on-board SATA > >> controller everything works fine (i.e. I am able to install OpenBSD). I > >> have tried disabling on-board LAN and on-board SATA in the BIOS. I have > >> also tried enabling ACPI at boot time with ( -c, UKC> enable acpi, quit > >> ) which produces same result. In addition I have tried booting with the > >> i386 release media, and experienced exactly the same problem. > > > > can you show me a dmesg from this box with acpi enabled? > > > > dlg > > > > > > David, > > Please find below dmesg from 4.1-RELEASE with acpi enabled. > > Kind regards, > > Nick > > > boot> -c > booting cd0a:/4.1/amd64/bsd.rd: 2169728+438535+2270160+0+330160 > [80+220056+135431]=0x94f9a0 > entry point at 0x1001e0 [7205c766, 3404, 24448b12, > 2840a304]??Copyright (c) 1982, 1986, 1989, 1991, 1993 > The Regents of the University of California. All rights reserved. > Copyright (c) 1995-2007 OpenBSD. All rights reserved. > http://www.OpenBSD.org > > OpenBSD 4.1 (RAMDISK_CD) #1054: Sat Mar 10 19:32:06 MST 2007 > [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/RAMDISK_CD > real mem = 2079911936 (2031164K) > avail mem = 1778188288 (1736512K) > using 22937 buffers containing 208199680 bytes (203320K) of memory > User Kernel Config > UKC> enable acpi > 136 acpi0 enabled > UKC> quit > Continuing... > mainbus0 (root) > acpi0 at mainbus0: rev 0 > acpi0: tables DSDT FACP SSDT HPET MCFG APIC > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus 1 (HUB0) > cpu0 at mainbus0: (uniprocessor) > cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+, 2612.33 MHz > cpu0: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW > cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB > 64b/line 16-way L2 cache > cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative > cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative > cpu0: PowerNow! K8 2612 MHz: speeds: 2600 2400 2200 2000 1800 1000 MHz > pci0 at mainbus0 bus 0: configuration mode 1 > "NVIDIA MCP61 Memory" rev 0xa1 at pci0 dev 0 function 0 not configured > "NVIDIA MCP61 ISA" rev 0xa2 at pci0 dev 1 function 0 not configured > "NVIDIA MCP61 SMBus" rev 0xa2 at pci0 dev 1 function 1 not configured > "NVIDIA MCP61 Memory" rev 0xa2 at pci0 dev 1 function 2 not configured > ohci0 at pci0 dev 2 function 0 "NVIDIA MCP61 USB" rev 0xa2: irq 10, > version 1.0, legacy support > usb0 at ohci0: USB revision 1.0 > uhub0 at usb0 > uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 > uhub0: 10 ports with 10 removable, self powered > ehci0 at pci0 dev 2 function 1 "NVIDIA MPC61 USB" rev 0xa2: irq 11 > usb1 at ehci0: USB revision 2.0 > uhub1 at usb1 > uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 > uhub1: 10 ports with 10 removable, self powered > ppb0 at pci0 dev 4 function 0 "NVIDIA MCP61" rev 0xa1 > pci1 at ppb0 bus 1 > skc0 at pci1 dev 7 function 0 "D-Link Systems DGE-530T B1" rev 0x11, > Yukon Lite (0x9): irq 10 > sk0 at skc0 port A, address 00:15:e9:aa:d3:34 > eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 > pciide0 at pci0 dev 6 function 0 "NVIDIA MCP61 IDE" rev 0xa2: DMA, > channel 0 configured to compatibility, channel 1 configured to compatibility > atapiscsi0 at pciide0 channel 0 drive 0 > scsibus0 at atapiscsi0: 2 targets > cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD_RW ND-2510A, 2.16> SCSI0 > 5/cdrom removable > cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 > pciide0: channel 1 ignored (disabled) > ppb1 at pci0 dev 9 function 0 "NVIDIA MCP61 PCIE" rev 0xa2 > pci2 at ppb1 bus 2 > ppb2 at pci2 dev 0 function 0 "Intel IOP332 PCIE-PCIX" rev 0x07 > pci3 at ppb2 bus 3 > arc0 at pci3 dev 14 function 0 "Areca ARC-1210" rev 0x00: irq 11 > arc0: 4 SATA Ports, 256MB SDRAM, FW Version: V1.43 2007-4-17 > scsibus1 at arc0: 16 targets > sd0 at scsibus1 targ 0 lun 0: SCSI3 > 0/direct fixed > sd0: 381469MB, 58128 cyl, 28 head, 480
Re: Non critical but weird pf and openvpn problem
On Thu July 19 2007 5:12:58 pm Bill wrote: > On Thu, 19 Jul 2007 15:06:55 -0700 > > <[EMAIL PROTECTED]> spake: > > I have the same problem. I was going to post a this question too > > along with another question. > > > > When I first boot up my OpenBSD 4.1 sever. I can not access my > > OpenVPN wireless connection. I can access ssh wirelessly though. > > So what I do is login via ssh and run pfctl -f /etc/pf.conf. Now > > my OpenVPN connection works just fine. I too have my startup > > script in /etc/rc.local but it is much simpler: > > > > /usr/local/sbin/openvpn /var/openvpn/server.conf > > > > I am curious to know why pf requires a command line start for it to > > work. > > I have a few OpenVPN installations running and do not have this problem > with any of them. I start my PF normally through the rc.conf.local > Same here I have few installations which are very reliable and problem free. > Do you have a hostname.tun0 file in /etc? > > I forget if OpenVPN will create the tun0, but it could be why PF needs > to be run after in your instance. I have simply: > > UP my hostname.tun0 is set to inet 0.0.0.0 0.0.0.0 NONE Either way probably works fine. Have you checked out your log files? Openvpn does a good job logging in my experience. If the logs are empty I would try turning up the verbosity or running openvpn by hand before doing a reload of the pf rules. It would also be interesting to run pfctl -sr before reloading to see if they even loaded properly. -- Tim Kuhlman Network Administrator ColoradoVnet.com
Re: Non critical but weird pf and openvpn problem
I had the same symptom, where I'd have to manually reload my pf rules
after a reboot to get OpenVPN traffic to flow. Using tcpdump showed
that pf was blocking all the traffic on my tun interfaces although I had
a "set skip" rule for them.
I may not be completely right here, but I believe pf gets loaded before
openvpn, so openvpn will not have created the interface yet. I ran into
this problem here because I was trying to do "set skip on { tun0 tun1 }"
so pf would ignore my vpn interfaces. However, they weren't yet created
so the skip rule had no effect and pf would block all traffic on them
until I reloaded the ruleset. I also had /etc/hostname.{tun0,tun1}
files, both simply containing the "up" keyword.
Anyhow, I don't have the issue any longer because I just added this rule:
pass quick on { tun0 tun1 }
That seems to be effective regardless of whether or not the interfaces
exist when pf loads, so my OpenVPN tunnels work after reboots without
intervention.
Regards,
Mark
Bill wrote:
On Thu, 19 Jul 2007 15:06:55 -0700
<[EMAIL PROTECTED]> spake:
I have the same problem. I was going to post a this question too
along with another question.
When I first boot up my OpenBSD 4.1 sever. I can not access my
OpenVPN wireless connection. I can access ssh wirelessly though.
So what I do is login via ssh and run pfctl -f /etc/pf.conf. Now
my OpenVPN connection works just fine. I too have my startup
script in /etc/rc.local but it is much simpler:
/usr/local/sbin/openvpn /var/openvpn/server.conf
I am curious to know why pf requires a command line start for it to
work.
I have a few OpenVPN installations running and do not have this problem
with any of them. I start my PF normally through the rc.conf.local
pf=
pf_rules=/etc/brock.conf
My OpenVPN starts in rc.local
echo -n ' openvpn'; /usr/local/sbin/openvpn --cd /etc/openvpn --config
server.conf --daemo
It all "just works"(TM).
Do you have a hostname.tun0 file in /etc?
I forget if OpenVPN will create the tun0, but it could be why PF needs
to be run after in your instance. I have simply:
UP
in this file.
Re: Areca-1210 rd0 hang during install of 4.1 on amd64
I have this Same trouble with the Same ARC card. and I am using an intel Pentium D the issue in my case is I must have a acpi enabled MP kernel, I did this by installing OpenBSD without the ARC controller in the system(I have a sata boot drive seprate from my RAID) then used config -ef /bsd.mp to enable acpi and disable apm then I mv /bsd.mp /bsd this fixed my issue. Sam Fourman Jr. On 7/19/07, Nick Humphrey <[EMAIL PROTECTED]> wrote: > > David Gwynne wrote: > > On Thu, Jul 19, 2007 at 12:29:51PM +0100, Nick Humphrey wrote: > >> I am having trouble with installing OpenBSD 4.1 on a new amd64 server > >> with an Areca ARC-1210 raid card. When I boot from the 4.1 CD install > >> media, everything seems fine up until it reaches" rd0: fixed, > >> blocks" and then the system hangs. I have downloaded the latest amd64 > >> current snapshot from the mirrors and tried booting from that too - > same > >> result. > >> > >> System: > >> - Gigabyte GA-M61PM-S2 (rev. 1.0) (BIOS Updated to latest F7 release) > >> - Areca ARC-1210 SATA RAID PCI-Express (firmware updated to V1.43 > >> 2007-04-17) > >> - 2 x 400GB SATA Disks > >> > >> I have setup RAID 1 mirror of the two disks in the RAID BIOS. (Areca > >> card and drives detected by and usable in Linux and Windows XP). > Without > >> the ARC-1210 card installed and the disks wired to the on-board SATA > >> controller everything works fine (i.e. I am able to install OpenBSD). I > >> have tried disabling on-board LAN and on-board SATA in the BIOS. I have > >> also tried enabling ACPI at boot time with ( -c, UKC> enable acpi, quit > >> ) which produces same result. In addition I have tried booting with the > >> i386 release media, and experienced exactly the same problem. > > > > can you show me a dmesg from this box with acpi enabled? > > > > dlg > > > > > > David, > > Please find below dmesg from 4.1-RELEASE with acpi enabled. > > Kind regards, > > Nick > > > boot> -c > booting cd0a:/4.1/amd64/bsd.rd: 2169728+438535+2270160+0+330160 > [80+220056+135431]=0x94f9a0 > entry point at 0x1001e0 [7205c766, 3404, 24448b12, > 2840a304]* Copyright (c) 1982, 1986, 1989, 1991, 1993 > The Regents of the University of California. All rights reserved. > Copyright (c) 1995-2007 OpenBSD. All rights reserved. > http://www.OpenBSD.org > > OpenBSD 4.1 (RAMDISK_CD) #1054: Sat Mar 10 19:32:06 MST 2007 > [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/RAMDISK_CD > real mem = 2079911936 (2031164K) > avail mem = 1778188288 (1736512K) > using 22937 buffers containing 208199680 bytes (203320K) of memory > User Kernel Config > UKC> enable acpi > 136 acpi0 enabled > UKC> quit > Continuing... > mainbus0 (root) > acpi0 at mainbus0: rev 0 > acpi0: tables DSDT FACP SSDT HPET MCFG APIC > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus 1 (HUB0) > cpu0 at mainbus0: (uniprocessor) > cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+, 2612.33 MHz > cpu0: > > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW > cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB > 64b/line 16-way L2 cache > cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully > associative > cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully > associative > cpu0: PowerNow! K8 2612 MHz: speeds: 2600 2400 2200 2000 1800 1000 MHz > pci0 at mainbus0 bus 0: configuration mode 1 > "NVIDIA MCP61 Memory" rev 0xa1 at pci0 dev 0 function 0 not configured > "NVIDIA MCP61 ISA" rev 0xa2 at pci0 dev 1 function 0 not configured > "NVIDIA MCP61 SMBus" rev 0xa2 at pci0 dev 1 function 1 not configured > "NVIDIA MCP61 Memory" rev 0xa2 at pci0 dev 1 function 2 not configured > ohci0 at pci0 dev 2 function 0 "NVIDIA MCP61 USB" rev 0xa2: irq 10, > version 1.0, legacy support > usb0 at ohci0: USB revision 1.0 > uhub0 at usb0 > uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 > uhub0: 10 ports with 10 removable, self powered > ehci0 at pci0 dev 2 function 1 "NVIDIA MPC61 USB" rev 0xa2: irq 11 > usb1 at ehci0: USB revision 2.0 > uhub1 at usb1 > uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 > uhub1: 10 ports with 10 removable, self powered > ppb0 at pci0 dev 4 function 0 "NVIDIA MCP61" rev 0xa1 > pci1 at ppb0 bus 1 > skc0 at pci1 dev 7 function 0 "D-Link Systems DGE-530T B1" rev 0x11, > Yukon Lite (0x9): irq 10 > sk0 at skc0 port A, address 00:15:e9:aa:d3:34 > eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 > pciide0 at pci0 dev 6 function 0 "NVIDIA MCP61 IDE" rev 0xa2: DMA, > channel 0 configured to compatibility, channel 1 configured to > compatibility > atapiscsi0 at pciide0 channel 0 drive 0 > scsibus0 at atapiscsi0: 2 targets > cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD_RW ND-2510A, 2.16> SCSI0 > 5/cdrom removable > cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 > pciide0: channel 1 ignored (disabled) > ppb1 at pci0 dev 9 function 0 "NVIDIA MCP61 PCIE" rev 0xa2 > pci2 at ppb
Re: Non critical but weird pf and openvpn problem
Hello,
I'm perhaps wrong but i think the interface must exists before loading
any rules which use it.
Best regards,
Jean-philippe.
On Thu, 19 Jul 2007 10:47:31 +0300
Tomas <[EMAIL PROTECTED]> wrote:
> Hi list,
>
> I'm having weird problem with my openvpn install and pf.
> I start vpn and connect to it from client computers with no problems,
> but I can't access any computers on internal lan. Then I issue pfctl
> -f /etc/pf.conf and everything starts to work. So my rc.local script
> is: <--->
> if [ X"${openvpn}" == X"YES" -a -x /usr/local/sbin/openvpn ];
> then echo -n ' openvpn';
> /usr/local/sbin/openvpn --cd /etc/openvpn --config server.conf
> sleep 10
> /sbin/pfctl -f /etc/pf.conf
> fi
> <--->
> And everything works fine. But why do I need to reload my pf?
> My server.conf is:
> <--->
> daemon openvpn
> local xxx.xxx.xxx.xxx
> port 1194
> proto udp
> dev tun0
> tun-mtu 1500
> mssfix
> keepalive 10 120
> ca ca.crt
> cert server.crt
> key server.key
> dh dh1024.pem
> tls-auth ta.key 0
> cipher AES-256-CBC
> server 192.168.5.0 255.255.255.0
> push "route 192.168.0.0 255.255.255.0"
> route 192.168.6.0 255.255.255.0
> chroot /etc/openvpn
> status /var/log/openvpn-status.log
> log/var/log/openvpn-log.log
> writepid /var/run/openvpn.pid
> ifconfig-pool-persist ipp.txt
> replay-persist replay.txt
> client-config-dir ccd
> max-clients 5
> user nobody
> group nobody
> persist-key
> persist-tun
> comp-lzo
> verb 3
> mute 10
> <--->
> My hostname.tun0 is:
> <--->
> up
> <--->
> My pf.conf is:
> <--->
> ext_if="vr0"
> int_if="vr1"
> admins1="xxx.xxx.xxx.xxx"
> admins2="xxx.xxx.xxx.xxx"
> organization_net="192.168.0.0/24"
> ovpn_net="192.168.6/24"
> ovpn="1194"
> table { $admins1, $admins2 } const persist
> table { 10/8, 172.16/12, 192.168/16 } const persist
> table persist
> set block-policy drop
> set optimization normal
> set ruleset-optimization basic
> set state-policy if-bound
> set loginterface $ext_if
> set skip on { lo0, $int_if, tun0 }
> scrub on $ext_if no-df fragment reassemble random-id
> nat-anchor "ftp-proxy/*"
> nat on $ext_if from $organization_net to any -> ($ext_if:0)
> rdr pass on $int_if inet proto tcp to port ftp -> 127.0.0.1 port 8021
> rdr-anchor "ftp-proxy/*"
> block log all
> block in log quick on $ext_if from any to 255.255.255.255
> antispoof log quick for { lo0, $ext_if, $int_if }
> anchor "ftp-proxy/*"
> pass log on $ext_if inet proto icmp icmp-type unreach code needfrag
> pass in log quick on $ext_if inet proto icmp from to
> ($ext_if) icmp-type echoreq modulate state label "icmp for admins"
> pass in log quick on $ext_if inet proto tcp from to
> ($ext_if) port ssh modulate state label "ssh for admins"
> pass out on $ext_if inet proto { tcp, udp, icmp } from ($ext_if) to
> any modulate state
> pass in log on $ext_if inet proto udp from any to ($ext_if) port
> $ovpn modulate state (max-src-conn-rate 30/10, overload
> flush global) <--->
> I'm using OpenBSD 4.1 and OpenVPN openvpn-2.0.6p0.
>
>
>
>
>
>
> !DSPAM:1,469f22cc303651336712104!
stty -echo not working
Hi, I know I am doing something wrong as opposed to a problem with OpenBSD, but I can't get the stty command working correctly. I have searched on Google but I am unable to find any reference to it not working.. everyone suggests this method. On any other system I can do "stty -echo" to turn the terminal echo off, but on OpenBSD 4.0/4.1 it doesn't have any affect: mail:/root# stty -echo mail:/root# stty -e speed 38400 baud; 24 rows; 80 columns; lflags: icanon isig iexten -echo echoe -echok echoke -echonl echoctl -echoprt -altwerase -noflsh -tostop -flusho pendin -nokerninfo -extproc -xcase iflags: -istrip icrnl -inlcr -igncr -iuclc ixon -ixoff ixany imaxbel -ignbrk brkint -inpck -ignpar -parmrk oflags: opost onlcr -ocrnl -onocr -onlret -olcuc oxtabs -onoeot cflags: cread cs8 -parenb -parodd hupcl -clocal -cstopb -crtscts -mdmbuf discard dsusp eof eol eol2erase intrkilllnext ^O ^Y ^D^? ^C ^U ^V min quitreprint start status stopsusptimewerase 1 ^\ ^R ^Q ^S ^Z 0 ^W Does anyone have any idea what I am doing wrong? Thanks, Chris
Re: Bioctl ciss controller status
--- Quoting Doros Eracledes on 2007/07/19 at 10:42 +0100: > I have a proliant DL360-G5 and loaded 4.1-stable on it, all hardware is > detected fine. > > I want see if I can get the raid controller status with bioctl. > > Controller initially came with firmware 1.20 so I upgraded it to the > latest (1.66) version but still can't get the raid controller status > using bioctl. > Here is what I get: > #bioctl sd0 > bioctl: BIOCINQ: Inappropriate ioctl for device Known issue, no fix. mickey@ told me he found the issue but I'm not sure what happened to the code. FYI, this issue doesn't seem to happen on the DL380. .joel
