Re: 4.3 and acpi

[Sam Fourman Jr.]

  # SYS=asus-m6ne
  # mkdir $SYS; cd $SYS
  # acpidump -o $SYS  $SYS.aml
  # dmesg  $SYS.dmesg
  # cd ..;tar czf $SYS.tgz $SYS

  put the created tgz on a webserver and send the URL.



Would these commands work on a Dell poweredge 1650, OpenBSD 4.3 will
not boot with acpi enabled, and I am wondering if the above set of
commands would produce any useful info for anyone

Sam Fourman Jr.

Re: Abort trap on 4.3 release

[Pieter Verberne]

On Tue, Apr 15, 2008 at 06:33:44PM +, Miod Vallat wrote:
  Yesterday I installed OpenBSD 4.3 release from CD. I copied both
  PORTS_TA.GZ and SRC_TAR.GZ to /tmp. I extracted the ports to /usr/, and
  while extracting src, I tried to make libsndfile in the ports tree. I
  got Abort trap. I tried other commands as well but I got the same.
  Shell buildin commands just worked. I couldn't even halt my system, it
  gave me the same error.
 
 You extracted the source in / instead of /usr/src. As a result, almost
 all commands have been overwritten with similarly-named directories
 containing their sources.
 
 Reinstall, and do not make this mistake a second time.

(Miod: oopz, typed 'r' (reply) again instead of 'L' (group reply))

Uhw.. Pretty sucky. But I can laugh with my mistake.

I think I've read this in the Unix haters handbook; it's to easy to make
big mistakes in UNIX. Ah, here it is..(1)

You're probably, right. I made that typo. (I thought my error-report
would me much to short to be usefull. :-) )

(1) http://web.mit.edu/~simsong/www/ugh.pdf , page 59

Fini les mutuelles trop chères !

[Kelassur]

Si ce message ne s'affiche pas correctement, vous pouvez le visualiser en
suivant ce lien.

DEVIS MUTUELLE

 Comparatif Mutuelle Santi

3 MOIS GRATUIT

17 marques comparies
Optez pour
la meilleure
mutuelle
santi !

20% DE REDUCTION

Offre Spiciale Internet :
jusqu’` 1 an ` moins 20% ou 2 mois offerts

Comparer pour mieux choisir :
 + de 200 produits
 17 Marques spicialistes

CLIQUEZ ICI

CLIQUEZ ICI

Cliquez ici

comparatif en ligne

[IMAGE]

Conformiment ` l’article 34 de la loi Informatique et Liberti du 6
janvier 1978, vous disposez d’un droit d’acchs, de modification, de
rectification et de suppression des donnies vous concernant. Diclaration
CNIL n0 1239369.
Si vous ne souhaitez plus recevoir de message de notre part, cliquez ici

Re: install42.iso hangs....any ideas?

[Peter N. M. Hansteen]

Matthew Szudzik [EMAIL PROTECTED] writes:

 I have a DVDRAM drive with the following dmesg

  cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVDRAM GSA-4083N, 1.08 SCSI0 
 5/cdrom removable

almost exactly the same as mine, then:

$ dmesg | grep cd0
cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVDRAM GMA-4082N, CX08 SCSI0 5/cdrom 
removable
cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2

 and I have not had any problems installing OpenBSD 4.2 on the machine (a
 ThinkPad T60).

My ThinkPad R60 reads and writes CDs and DVDs under OpenBSD too, using
a succession of snapshots starting with 4.0-beta up to present
-current.  It's been a while since I've burned a DVD, but for CDs at
least cdio does everything I ask it to.

-- 
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
Remember to set the evil bit on all malicious network traffic
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.

Re: 4.3 and acpi

[Stuart Henderson]

On 2008/04/16 01:07, Sam Fourman Jr. wrote:
   # SYS=asus-m6ne
   # mkdir $SYS; cd $SYS
   # acpidump -o $SYS  $SYS.aml
   # dmesg  $SYS.dmesg
   # cd ..;tar czf $SYS.tgz $SYS
 
   put the created tgz on a webserver and send the URL.
 
 Would these commands work on a Dell poweredge 1650, OpenBSD 4.3 will
 not boot with acpi enabled, and I am wondering if the above set of
 commands would produce any useful info for anyone

Yes, just change SYS= to a descriptive name.

Please also include any other relevant information (e.g. console
output, a description of what happens, etc) in a file in the directory
before you tar it up. Include your email address in this file too.
That way, the information is in one place.

If you know how to build an ACPI_DEBUG kernel and capture the
output over serial console (USB serial is no good, it must be a
real standard serial port) then please include that too.
There's a *lot* of output, you might want to set this faster
than 9600...

Re: 4.3 and acpi

[Edd Barrett]

Hi,

On Tue, Apr 15, 2008 at 10:41 PM, Stuart Henderson [EMAIL PROTECTED] wrote:
 On 2008-04-15, axel keuchel [EMAIL PROTECTED] wrote:
   apm0 at bios0: Power Management spec V1.2
   apm0: AC on, no battery
   acpi at bios0 function 0x0 not configured
   [etc. pp.]
  
   You see, acpi doesn't seem to work at all.

  that's normal: with single processor systems, APM is preferred.
  with multi processor systems, ACPI is preferred. (this is done in
  sys/arch/i386/i386/bios.c, the if (apm  ncpu  2) check).


i am experiencing this also on desktop machine. If i disable apm then
it shuts down just fine, otherwise it used to (I havent tried this in
a while) cause a disk check on next boot. I should try this again.

It's quite annoying to have to remember to config(8) the kernel after
each snapshot upgrade, as I always forget. I would be nice to add an
option to config(8) your kernel at install/upgrade, but I guess there
is no more space on the media for that.

-- 

Best Regards

Edd

http://students.dec.bournemouth.ac.uk/ebarrett

Re: SSD drives: performance gain

[David Gwynne]

some ssd drives would be very cool to try. id love to play with  
these: http://www.stec-inc.com/product/zeusiops.php


dlg

On 15/04/2008, at 9:52 AM, Jacob Yocom-Piatt wrote:
am considering acquiring some machines with SSD drives, e.g.  
thinkpad X300, and was interested to hear about any experiences  
with openbsd on an SSD drive.


the reduction in latency and load times is attractive, but i'd like  
to hear some about some real world experiences before doling out  
serious money for the drives.


cheers,
jake

--

Re: Chatting with developers? Is it soo 1996?

[Artur Grabowski]

Andris [EMAIL PROTECTED] writes:

 On Tue, Apr 15, 2008 at 2:20 PM, Theo de Raadt [EMAIL PROTECTED]
wrote:
  I found an old email on the mailing lists, dating back to 1996, when
   Theo announced users could connect and chat with the developers on
   their ICB server.

  Many developers did not like it, so please leave them alone.



 I can understand your point, but isn't there a way of connecting to
 just read? I mean, we only read, you talk.

 That would be very interesting.

Is there a way to connect to your phone to just listen? Not talk, just
listen.

That would be very interesting.

//art

Re: SSD drives: performance gain

[Die Gestalt]

  As of last week, the T61 is available with the same drive that comes with
  the X300 and is both cheaper and available with more (and faster) options.

But what about the size? Because size does matter. :p

Re: Chatting with developers? Is it soo 1996?

[bofh]

On Wed, Apr 16, 2008 at 6:30 AM, Artur Grabowski [EMAIL PROTECTED] wrote:


 Is there a way to connect to your phone to just listen? Not talk, just
 listen.

 That would be very interesting.


Yes.  It is exactly like those people selling stealth cat5 cables.


-- 
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
This officer's men seem to follow him merely out of idle curiosity. --
Sandhurst officer cadet evaluation.
Securing an environment of Windows platforms from abuse - external or
internal - is akin to trying to install sprinklers in a fireworks factory
where smoking on the job is permitted. -- Gene Spafford
learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related

Re: install42.iso hangs....any ideas?

[Unix Fan]

Matthew Szudzik wrote:

 I have successfully read and written several DVDs and CDs using OpenBSD,

 following the instructions at

 http://www.openbsd.org/faq/faq13.html



That was not what I was talking about, I know how to burn CD/DVD's, 
obviously, I was asking of DVD-RAM drives/disks can be used just as if they're 
sd(4) devices, read/write calls, i.e: UFS on a disk, mounted read/write.







-Nix Fan.

Re: install42.iso hangs....any ideas?

[Hannah Schroeter]

Hi!

On Wed, Apr 16, 2008 at 04:44:38AM -0700, Unix Fan wrote:
[...]

That was not what I was talking about, I know how to burn CD/DVD's,
obviously, I was asking of DVD-RAM drives/disks can be used just as if
they're sd(4) devices, read/write calls, i.e: UFS on a disk, mounted
read/write.

(Please wrap your lines)

IIRC not, I have a DVD-RAM drive and it probes as cd(4), not as sd(4).

And btw, IIRC our UFS/FFS implementation does still not cope well with
sector sizes != 512 (which makes MO drive usage difficult too, as they
*are* sd(4), but with 2048 byte sectors). Or has that, at least, been
fixed in-between? IIRC, DVD-RAM has larger sectors, too, and *usually*
one uses UDF2 there (our UDF support is 1.1, read-only, only).

Kind regards,

Hannah.

Re: install42.iso hangs....any ideas?

[Unix Fan]

Hannah Schroeter wrote:

 (Please wrap your lines)



I cannot, the Webmail provider formats it out.. I believe it's sending the 
email as MIME, it is out of my control - deal with it.



Hannah Schroeter wrote:

 IIRC not, I have a DVD-RAM drive and it probes as cd(4), not as sd(4).



Why is everyone ignoring me? I wasn't asking if the device could be attached as 
sd, I meant.. could DVD-RAM drives be used as if they're like an ordinary 
drive that attached to sd(4).



Can you newfs any file system, or blindly read/write/seek on the device? i.e: 
dd if=/dev/zero of=/dev/cd0c ???



I thought DVD-RAM were unique in that, unlike DVD-RW, you can write to the disk 
as if it's simply an optical hard drive...



*Sigh* http://en.wikipedia.org/wiki/DVD-RAM



DVD-RAM (DVDbRandom Access Memory).







-Nix Fan.

Re: install42.iso hangs....any ideas?

[Stuart Henderson]

On 2008-04-16, Unix Fan [EMAIL PROTECTED] wrote:
 Hannah Schroeter wrote:

 (Please wrap your lines)



 I cannot,
the Webmail
provider
formats it
out.. I
believe it's
sending the
email as
MIME, it is
out of my
control -
deal with
it.



 Hannah
Schroeter
wrote:

 IIRC not,
I have a
DVD-RAM drive
and it probes
as cd(4),
not as sd(4).



 Why is
everyone
ignoring me?

People often ignore messages that are hard to read.
other email service providers are available...

I wasn't
asking if
the device
could be
attached as
sd, I
meant.. could
DVD-RAM
drives be
used as
if they're
like an
ordinary
drive that
attached to
sd(4).



 Can you
newfs any
file system,
or blindly
read/write/seek on
the device?
i.e: dd
if=/dev/zero
of=/dev/cd0c ???



 I thought
DVD-RAM were
unique in
that, unlike
DVD-RW, you
can write
to the disk
as if it's
simply an
optical hard
drive...



 *Sigh*
http://en.wikipedia.org/wiki/DVD-RAM



 DVD-RAM
(DVDbRandom Access
Memory).







 -Nix Fan.

Re: Chatting with developers? Is it soo 1996?

[Jacob Yocom-Piatt]

Artur Grabowski wrote:

Andris [EMAIL PROTECTED] writes:

  

On Tue, Apr 15, 2008 at 2:20 PM, Theo de Raadt [EMAIL PROTECTED]


wrote:
  

I found an old email on the mailing lists, dating back to 1996, when


  Theo announced users could connect and chat with the developers on
  their ICB server.

 Many developers did not like it, so please leave them alone.


  

I can understand your point, but isn't there a way of connecting to
just read? I mean, we only read, you talk.

That would be very interesting.



Is there a way to connect to your phone to just listen? Not talk, just
listen.

That would be very interesting.

  



apparently that's what the government thinks here in the US too (read 
CALEA, et al). this is the most obvious indication that something is a 
good idea.


cheers,
jake

Re: phy and config -e

[Need Coffee]

Sorry -- I wasn't clear enough in my original message.

bge1 is the shared-with-management port, which I simply disable.

bge0 is the other broadcom in the box that I need to use.  Disabling bge*
takes them both out, but I can add back in *just* bge0 via config -e, and that
attaches fine but doesn't work (ifconfig shows media manual).

Unfortunately brgphy* does not attach to bge0 configured in this manner,
giving instead:

OUI 0x000818 model 0x0034 rev 0 at bge0 phy 1 not configured
bge0: no PHY found!

I tried to disable brgphy* and add a brgphy0, but that doesn't seem
to work either... and that's where I'm stuck (no way of getting the PHY
to attach to a manually configured bge).

Thanks.


On Mon, Apr 14, 2008 at 11:02 AM, Need Coffee [EMAIL PROTECTED] wrote:
 I'd like to use GENERIC.MP on a couple of boxes that share bge1 with a
  built-in service processor for remote management, but when the kernel boots,
  it locks up the SP).  I understand this is normal.

  Using config -e, I have disabled bge* and added a custom bge0 that attaches
  fine.  The problem is that without brgphy, I am left with media manual and 
 no
  apparent way to make it work (ifconfig up followed by tcpdump -i bge0 shows
  nothing on a busy network).

  Rebuilding a kernel with the appropriate bge0 entry works fine, but I'd 
 prefer
  to use config -e on GENERIC.MP to do this if possible... is it
  possible?  I tried
  cloning brgphy* to brgphy0 and specifying phy=1 and then disabling brgphy*,
  but that didn't work either.

  Thanks in advance.

Re: SSD drives: performance gain

[Jacob Yocom-Piatt]

David Gwynne wrote:
some ssd drives would be very cool to try. id love to play with these: 
http://www.stec-inc.com/product/zeusiops.php




am i right in saying these STEC drives are 10K USD each? yikes

robert, thanks for the affirmation, i did see your entry on the openbsd 
laptops page. ryan, thanks for letting me know the T61 comes with the 
optional SSD drive.


will acquire an X300 to see how it performs. might end up going with the 
T61 + SSD if the horsepower of the X300 is insufficient.


cheers,
jake


dlg

On 15/04/2008, at 9:52 AM, Jacob Yocom-Piatt wrote:
am considering acquiring some machines with SSD drives, e.g. thinkpad 
X300, and was interested to hear about any experiences with openbsd 
on an SSD drive.


the reduction in latency and load times is attractive, but i'd like 
to hear some about some real world experiences before doling out 
serious money for the drives.


cheers,
jake

--

Re: Openbgpd in -current does not announce prefix

[Claudio Jeker]

On Mon, Mar 31, 2008 at 04:01:49PM +0200, Christian wrote:
 Hi Claudio  Co.,

 I am running 4.3-current. I am using a very basic bgpd config file that 
 worked for 4.2 very well. Unfortunatelly, with -current my router does not 
 want to announce our prefix anymore.

 Any ideas?

 Thanks,
 - Christian

 Details: (my as: 303, transit: 304)

 I am able to receive prefixes from my transit provider.
 bgpctl shows the following (77.X.Y.0/21 being our prefix):

 # bgpctl show rib 77.X.Y.0
 flags: * = Valid,  = Selected, I = via IBGP, A = Announced
 origin: i = IGP, e = EGP, ? = Incomplete

 flags destination gateway  lpref   med aspath origin
   77.X.Y.0/21   A.B.C.D 105 0 304 [SOMEAS] 303 i
 I*77.X.Y.0/21   77.X.Y.2   100 0 i
 AI77.X.Y.0/21   0.0.0.0100 0 i

 So there are two funny things:

 - I get my own prefix (announced by our other router, 77.X.Y.2) via the 
 transit provider.
 - The line with my announced prefix (AI) is missing the *.


The missing * in tha AI output is an error when composing the control
message to bgpctl. The problem with the looped AS path is a bit more evil.
In the decision process the wrong flags field was inspected and because of
that loops remained undetected.
Having the loop in the table with a higher lpref will result in missing
anouncements. That's why your own route is not selected (missing ).

I hope the attached diff fixes all your issues. At least it seems to work
for me.
-- 
:wq Claudio

Index: rde.c
===
RCS file: /cvs/src/usr.sbin/bgpd/rde.c,v
retrieving revision 1.230
diff -u -p -r1.230 rde.c
--- rde.c   26 Feb 2008 19:58:51 -  1.230
+++ rde.c   16 Apr 2008 14:04:10 -
@@ -1717,7 +1717,7 @@ rde_dump_rib_as(struct prefix *p, struct
rib.flags |= F_RIB_INTERNAL;
if (asp-flags  F_PREFIX_ANNOUNCED)
rib.flags |= F_RIB_ANNOUNCE;
-   if (asp-nexthop != NULL  asp-nexthop-state == NEXTHOP_REACH)
+   if (asp-nexthop == NULL || asp-nexthop-state == NEXTHOP_REACH)
rib.flags |= F_RIB_ELIGIBLE;
if (asp-flags  F_ATTR_LOOP)
rib.flags = ~F_RIB_ELIGIBLE;
@@ -2846,4 +2846,3 @@ sa_cmp(struct bgpd_addr *a, struct socka
 
return (0);
 }
-
Index: rde_decide.c
===
RCS file: /cvs/src/usr.sbin/bgpd/rde_decide.c,v
retrieving revision 1.49
diff -u -p -r1.49 rde_decide.c
--- rde_decide.c27 Nov 2007 01:13:54 -  1.49
+++ rde_decide.c16 Apr 2008 14:43:48 -
@@ -121,14 +121,14 @@ prefix_cmp(struct prefix *p1, struct pre
if (!(p2-flags  F_LOCAL))
return (1);
  
+   asp1 = p1-aspath;
+   asp2 = p2-aspath;
+
/* only loop free pathes are eligible */
-   if (p1-flags  F_ATTR_LOOP)
+   if (asp1-flags  F_ATTR_LOOP)
return (-1);
-   if (p2-flags  F_ATTR_LOOP)
+   if (asp2-flags  F_ATTR_LOOP)
return (1);
-
-   asp1 = p1-aspath;
-   asp2 = p2-aspath;
 
/* 1. check if prefix is eligible a.k.a reachable */
if (asp2-nexthop != NULL  asp2-nexthop-state != NEXTHOP_REACH)

Re: install42.iso hangs....any ideas?

[Matthew Szudzik]

On Wed, Apr 16, 2008 at 05:45:56AM -0700, Unix Fan wrote:
 I thought DVD-RAM were unique in that, unlike DVD-RW, you can write to the 
 disk as if it's simply an optical hard drive...

I have only used DVD+RW and CD media in my DVDRAM drive, so I cannot
answer your question.

Re: install42.iso hangs....any ideas?

[Frank Bax]

Unix Fan wrote:

Hannah Schroeter wrote:

 IIRC not, I have a DVD-RAM drive and it probes as cd(4), not as sd(4).

Why is everyone ignoring me? I wasn't asking if the device could be

 attached as sd, I meant.. could DVD-RAM drives be used as if
 they're like an ordinary drive that attached to sd(4).


That might not be what you asked; but it still could be the answer to 
your question.  I've been on this list long enough to know that if an 
answer does not right away make sense to me; then in some way I don't 
get it and extra reading is warranted.  Maybe that's happened here. 
OpenBSD names devices based on driver used.  I haven't looked at code (I 
wouldn't understand it anyway); but I would not expect the cd(4) device 
driver to support random writes; whereas the sd(4) driver would.  I 
suspect that if your DVD-RAM device *were* detected as sd; then it 
*might* behave as an sd device.


Then again; I might not even have a clue...

weird tlsv1 alert unknown ca

[Thierry Lacoste]

OpenBSD 4.1 + Apache/1.3.29 (Unix) PHP/5.1.6 with Suhosin-Patch
mod_ssl/2.8.16 OpenSSL/0.9.7j

When a Mozilla client refuses the SSL Certificate of the server
I have this in /var/www/logs/error_log:

[Wed Apr 16 11:53:30 2008] [error] mod_ssl: SSL handshake failed
 (server pegase.miage.univ-paris12.fr:443, client 194.214.13.40)
 (OpenSSL library error follows)
[Wed Apr 16 11:53:30 2008] [error] OpenSSL: error:14094418:SSL 
routines:SSL3_READ_BYTES:tlsv1 alert unknown ca

Why is it so?

Regards,
Thierry.

Re: 4.3 and acpi

[axel keuchel]

Stuart Henderson stu at spacehopper.org writes:

 
 On 2008-04-15, axel keuchel axel.keuchel at web.de wrote:
  apm0 at bios0: Power Management spec V1.2
  apm0: AC on, no battery
  acpi at bios0 function 0x0 not configured
  [etc. pp.]
 
  You see, acpi doesn't seem to work at all.
 
 that's normal: with single processor systems, APM is preferred.
 with multi processor systems, ACPI is preferred. (this is done in
 sys/arch/i386/i386/bios.c, the if (apm  ncpu  2) check).
 
  Up to now, I don't know, how to deal with this. Under Debian and WinXP acpi
  works without problems.
 
  Just let my know, if you need any further Information (acpidumb?).
 
 # SYS=asus-m6ne
 # mkdir $SYS; cd $SYS
 # acpidump -o $SYS  $SYS.aml
 # dmesg  $SYS.dmesg
 # cd ..;tar czf $SYS.tgz $SYS
 
 put the created tgz on a webserver and send the URL.
 
 

Done as you said:-)! I've done two acpidumps - one after a normal boot and
another one after disabling apm.

1. With apm enabled: www.file-upload.net/en/download-791386/asus-m6ne.tgz.html

2. With apm disabled: www.file-upload.net/en/download-791419/asus-m6ne_dis
able-apm.tgz.html

Please let me know, if you need further information!

Thanks a lot!!!

Re: Chatting with developers? Is it soo 1996?

[mickey]

On Wed, Apr 16, 2008 at 08:16:11AM -0500, Jacob Yocom-Piatt wrote:
 Artur Grabowski wrote:
 Andris [EMAIL PROTECTED] writes:
 
   
 On Tue, Apr 15, 2008 at 2:20 PM, Theo de Raadt [EMAIL PROTECTED]
 
 wrote:
   
 I found an old email on the mailing lists, dating back to 1996, when
 
   Theo announced users could connect and chat with the developers on
   their ICB server.
 
  Many developers did not like it, so please leave them alone.
 
 
   
 I can understand your point, but isn't there a way of connecting to
 just read? I mean, we only read, you talk.
 
 That would be very interesting.
 
 
 Is there a way to connect to your phone to just listen? Not talk, just
 listen.
 
 That would be very interesting.
 
 apparently that's what the government thinks here in the US too (read 
 CALEA, et al). this is the most obvious indication that something is a 
 good idea.

i think you've just invoked the godwin's law...
cu
-- 
paranoic mickey   (my employers have changed but, the name has remained)

MPS Table Mode on HP DL380 G3?

[bofh]

Any ideas what that does?  bsd (uniproc) works across all 4 options.
bsd.mpdoesn't work with APIC disabled.  What is the difference between
APIC/Mapped/Disabled?  Just curious.

Advanced Options - MPS Table Mode:
Full Table APIC  (bsd.mp boots)
Full Table Mapped  (bsd.mp boots)
Disabled  (see below)
Auto Set Table (see below)

Have to hand type in, so missing a little bit at the top.  This is off iLO,
so no way to get information that scrolled off.


rev. 2.3 @ 0xec000 (49 entries)
bios0: vendor HP version P29 date 09/15/2004
bios0: HP ProLiant DL380 G3
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP APIC SPCR
acpi0: wakeup devices
acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0panic: cpu0: running cpu is at apic 255 insteadof at
expected 0
Stopped at  Debugger+0x4:leave
Debugger(,4,d07fd420,d2239400,d0942b80) at Debugger+0x4
panic(d0770980,d2239414,ff,0,d079c590) at panic+0x63
cpu_attach(d2266fc0,d2239400,d0942b80,d2266fc0,d08ab0c0) at cpu_attach+0xd9
config_attach(d2266fc0,d2239400,d0942b80,d0686858,0) at config_attach+0xfd
acpimadt_attach(d2264c00,d227f140,d0942c50,d2264c00,0) at
acpimadt_attach+0x446
config_attach(d2264c00,d0796b80,d0942c50,d067c7dc,0) at config_attach+0xfd
acpi_attach(d2266f80,d2264c00,d0942d50,d2266f80,0) at acpi_attach+0x3e9
config_attach(d2266f80,d0796a3c,d0942d50,d060b13c) at config_attach+0xfd
biosattach(d2266fc0,d2266f80,d0942e80,d2266fc0,d02032a5) at biosattach+0x367
config_attach(d2266fc0,d0795c08,d0942e80,d04ac9f0,d06de791) at
config_attach+0xfd
RUN AT LEAST 'trace' AND 'ps' AND INCLUDE OUTPUT WHEN REPORTING THIS PANIC!
DO NOT EVEN BOTHER REPORTING THIS WITHOUT INCLUDING THAT INFORMATION!
DDB{0} trace
Debugger(,4,d07fd420,d2239400,d0942b80) at Debugger+0x4
panic(d0770980,d2239414,ff,0,d079c590) at panic+0x63
cpu_attach(d2266fc0,d2239400,d0942b80,d2266fc0,d08ab0c0) at cpu_attach+0xd9
config_attach(d2266fc0,d0795c50,d0942b80,d0686858,0) at config_attach+0xfd
acpimadt_attach(d2264c00,d227f140,d0942c50,d2264c00,0) at
acpimadt_attach+0x446
config_attach(d2264c00,d0796b80,d0942c50,d067c7dc,0) at config_attach+0xfd
acpi_attach(d2266f80,d2264c00,d0942d50,d2266f80,0) at acpi_attach+0x3e9
config_attach(d2266f80,d0796a3c,d0942d50,d060b13c) at config_attach+0xfd
biosattach(d2266fc0,d2266f80,d0942e80,d2266fc0,d02032a5) at biosattach+0x367
config_attach(d2266fc0,d0795c08,d0942e80,d04ac9f0,d06de791) at
config_attach+0xfd
mainbus_attach(0,d2266fc0,0,e2d2c000,d0941334) at mainbus_attach+0x3d
config_attach(0,d0793514,0,0,0) at config_attach+0xfd
config_rootfound(d06dcfab,0,d0942f38,d047ee16) at config_rootfound+0x27
cpu_configure(d08aad60,1,3,0,2) at cpu_configure+0x29
main(0,0,0,0) at main+0x39c
ddb{0} ps
   PIDPPIDPGRP UID   SFLAGS   WAITCOMMAND
*0-1007  0x80200
swapper



-- 
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
This officer's men seem to follow him merely out of idle curiosity. --
Sandhurst officer cadet evaluation.
Securing an environment of Windows platforms from abuse - external or
internal - is akin to trying to install sprinklers in a fireworks factory
where smoking on the job is permitted. -- Gene Spafford
learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related

Re: MPS Table Mode on HP DL380 G3?

[Steve Shockley]

bofh wrote:

Any ideas what that does?  bsd (uniproc) works across all 4 options.
bsd.mpdoesn't work with APIC disabled.  What is the difference between
APIC/Mapped/Disabled?  Just curious.


Have you tried playing with the OS Selection knob in the BIOS?


Have to hand type in, so missing a little bit at the top.  This is off iLO,
so no way to get information that scrolled off.


You should be able to connect to the serial port via ILO, try to ssh 
into the ILO console address.


I have 4.2 running fine on a DL380 G3, but since the dmesg mentions ACPI 
I'm guessing you're using 4.3 or a snapshot.  Maybe try disabling acpi 
and see if it boots.

Re: Chatting with developers? Is it soo 1996?

[Floor Terra]

On Wed, 16 Apr 2008, mickey wrote:


i think you've just invoked the godwin's law...
cu


As we're already off topic:
Why not talk to the developers personally?
On the 4.2 release date a small group of OpenBSD users and developers
went to a cafe in Amsterdam. You'll get much more information out of a
developer after a few beers. ;)

If there are people from around Amsterdam who are willing to have a
small release party for 4.3 I'll be happy to attend. Last time was fun!
Pics:
http://brobding.mine.nu/Brobding.mine.nu/Albums/Pages/OpenBSD_4.2.html


Floor

--
Floor Terra [EMAIL PROTECTED]
www: http://brobding.mine.nu/

Re: MPS Table Mode on HP DL380 G3?

[bofh]

On Wed, Apr 16, 2008 at 3:22 PM, Steve Shockley [EMAIL PROTECTED]
wrote:

 bofh wrote:

  Any ideas what that does?  bsd (uniproc) works across all 4 options.
  bsd.mpdoesn't work with APIC disabled.  What is the difference between
  APIC/Mapped/Disabled?  Just curious.
 

 Have you tried playing with the OS Selection knob in the BIOS?


Yes, tried both other and linux.  Doesn't do anything.

You should be able to connect to the serial port via ILO, try to ssh into
 the ILO console address.


Unfortunately I don't have access to the data center (much).  ILO is the
best I can get.


 I have 4.2 running fine on a DL380 G3, but since the dmesg mentions ACPI
 I'm guessing you're using 4.3 or a snapshot.  Maybe try disabling acpi and
 see if it boots.


Yes, it's a snapshot from 2 days ago.   I downloaded it on Apr 14.  bsd
works.  bsd.mp works if I do APIC, so I'm good for now.  Thanx.


-- 
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
This officer's men seem to follow him merely out of idle curiosity. --
Sandhurst officer cadet evaluation.
Securing an environment of Windows platforms from abuse - external or
internal - is akin to trying to install sprinklers in a fireworks factory
where smoking on the job is permitted. -- Gene Spafford
learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related

wpa now in current?!

[Didier Wiroth]

damn it ... I'm really excited and I can't really  believe it:
http://marc.info/?l=openbsd-cvsm=120837078900999w=2

Does that mean wpa is now included and working in current?

thx a lot
didier

[demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a 
name of didier.wiroth.6605DEFANGED-vcf]

suggested fix for mkfifo.1

[Ben Calvert]

en:1$ cd /usr/src/sbin/mknod
ben:2$ cvs diff mkfifo.1
Index: mkfifo.1
===
RCS file: /cvs/src/sbin/mknod/mkfifo.1,v
retrieving revision 1.9
diff -r1.9 mkfifo.1
57c57
 Set the file permission bits of newly created directories to
---
 Set the file permission bits of the newly created fifo to

Re: wpa now in current?!

[Damien Bergamini]

WPA-PSK only and for a limited number of drivers.
This is definetely work-in-progress, but the basic functionality
is there.

Damien

| damn it ... I'm really excited and I can't really  believe it:
| http://marc.info/?l=openbsd-cvsm=120837078900999w=2
| 
| Does that mean wpa is now included and working in current?
| 
| thx a lot
| didier

Re: suggested fix for mkfifo.1

[Jason McIntyre]

On Wed, Apr 16, 2008 at 01:18:09PM -0700, Ben Calvert wrote:
 en:1$ cd /usr/src/sbin/mknod
 ben:2$ cvs diff mkfifo.1
 Index: mkfifo.1
 ===
 RCS file: /cvs/src/sbin/mknod/mkfifo.1,v
 retrieving revision 1.9
 diff -r1.9 mkfifo.1
 57c57
  Set the file permission bits of newly created directories to
 ---
  Set the file permission bits of the newly created fifo to

fixed, thanks.
(diff -u next time, please ;)

jmc

Re: Help on package upgrade on 4.3 needed

[Stefan Wollny]

 -Urspr|ngliche Nachricht-
 Von: [EMAIL PROTECTED]
 Gesendet: 16.04.08 01:15:52
 An: Stefan Wollny [EMAIL PROTECTED]
 CC: misc@openbsd.org
 Betreff: Re: Help on package upgrade on 4.3 needed


 On Tue, Apr 15, 2008 at 8:39 AM, Stefan Wollny [EMAIL PROTECTED] wrote:
  Hello folks!
 
   I need a little help with an issue when upgrading to 4.3-packages (from
4.2). I use OpenBSD on an ThinkPad T60 as my daily tool.
   I followed the instructions on www.openbsd.org/faq/upgrade43.html when
upgrading the system from the 4.3 CD's. Then I did:
   $ sudo pkg_add -u -i -F update -F updatedepends
 
   Everything went fine - except that I shouldn't have done that as the
majority of the 4.3-packages are not yet available.  :/
   In particular all QT/KDE apps will not yet work. But Gtk/Glib apps work
neither.
 
   pkg_add gave a note to upgrade the following databases:
   /var/db/gtk-2.0/gtk.immodules
   /var/db/gtk-2.0/gdk-pixbuf.loaders
   /var/db/xmlcatalog
   Unfortunatelly I didn't find a man page for gtk-2.0. The man page for
xmlcatalog is beyond my skills (or my English).
   Via Google I found the advice to use pkg_add -r -F update. Well - this
somehow worked without any remarks. BUT: Gtk+2-related apps still don't work
(like sylpheed).
 
   Can someone help me? Any hints on where to get more information? What
additional information do you need to help me? I provide dmesg further down as
first source.
 
   BTW: Without any trouble the 4.2-versions of Firefox, OpenOffice,
acrobat, xpdf, nedit and mc worked still after upgrading. Good!
 
   Any help is welcome - thanks!

 4.3 isn't out yet. Try again around May 1 or build the packages you
 need from ports.

 -Bryan



Bryan,
thank you for replying and your advice.

What puzzles me is the fact that I tried to upgrade ONLY those packages on the
CD. By now I even deleted firefox 2.0.0.6 and tried to install 2.0.0.12 from
the CD - it is not possible! This I find rather annoying as my expectation is
not met: For me it doesn't make any sense to order early no more! I will still
do it as I believe in Theo and his fellow developers. But no more will there
be pride and anticipation for early possesion of the CD's. Once they arrive I
will take them with a 'so what?'-feeling and put them aside as I have to wait
for the official release date anyway.

Upgrading the base system was astonishing easy. But now having to use M$ on
the laptop to meet my responsibilities is sad. The next two weeks will be
vry long...

Cheers,
STEFAN

Re: wpa now in current?!

[Stephan Andre']

On Wednesday 16 April 2008 15:03:31 Didier Wiroth wrote:
 damn it ... I'm really excited and I can't really  believe it:
 http://marc.info/?l=openbsd-cvsm=120837078900999w=2

 Does that mean wpa is now included and working in current?

 thx a lot
 didier

It would certainly appear so.  Quoting from the commit:

In concrete terms, this adds support for WPA-PSK and WPA2-PSK
protocols, both in station and hostap modes.

--STeve Andre'

Re: Belinea s.Book1 can't boot OpenBSD

[Denis Fondras]

Hello all,

After upgrading the BIOS, hacking the kernel and fighting with the 
boot sector, it boots OpenBSD 4.2 :)


1- I'm not sure flashing the BIOS is mandatory

2- The kernel hack (I need to find out what really makes it reboot) :

--- wscons_machdep.cWed Apr 16 23:09:35 2008
+++ wscons_machdep.c.bootWed Apr 16 23:09:53 2008
@@ -122,6 +122,7 @@
 #endif
if (0) goto dokbd;  /* XXX stupid gcc */
 dokbd:
+/*
 #if (NPCKBC  0)
if (!pckbc_cnattach(I386_BUS_SPACE_IO, IO_KBD, KBCMDP, 
PCKBC_KBD_SLOT))

return;
@@ -130,6 +131,7 @@
if (!ukbd_cnattach())
return;
 #endif
+*/
 #endif  /* VGA | EGA | PCDISPLAY */
return;
 }

3- The BIOS looks at the bootsector in the first MBR partition (#0)

Here is the dmesg :

OpenBSD 4.2 (GENERIC) #25: Wed Apr 16 21:53:00 CEST 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: VIA C7-M Processor 1200MHz (CentaurHauls 686-class) 601 MHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,TM,SBF,SSE3,EST,TM2,xTPR

real mem  = 1005015040 (958MB)
avail mem = 964034560 (919MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/09/07, BIOS32 rev. 0 @ 0xfdd64, 
SMBIOS rev. 2.4 @ 0xdc010 (47 entries)

bios0: vendor Phoenix Technologies LTD version 6.00 date 11/09/2007
bios0: MAXDATA sbook1-1
pcibios0: pcibios_get_status - function not supported
pcibios at bios0 function 0x1a not configured
bios0: ROM list: 0xc/0xd600 0xcd800/0x1000 0xdc000/0x4000!
acpi at mainbus0 not configured
cpu0 at mainbus0
cpu0: unknown Enhanced SpeedStep CPU, msr 0x04060c0904000606
cpu0: using only highest, current and lowest power states
cpu0: Enhanced SpeedStep 800 MHz (796 mV): speeds: 1600, 800, 533 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 VIA CX700 Host rev 0x10
pchb1 at pci0 dev 0 function 1 VIA CX700 Host rev 0x00
pchb2 at pci0 dev 0 function 2 VIA CX700 Host rev 0x00
pchb3 at pci0 dev 0 function 3 VIA CX700 Host rev 0x00
pchb4 at pci0 dev 0 function 4 VIA CX700 Host rev 0x00
pchb5 at pci0 dev 0 function 7 VIA CX700 Host rev 0x00
ppb0 at pci0 dev 1 function 0 VIA VT8377 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 VIA S3 UniChrome Pro II IGP rev 0x03: 
aperture at 0xa000, size 0x1000

wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
pciide0 at pci0 dev 15 function 0 VIA CX700 IDE rev 0x00: ATA133, 
channel 0 configured to compatibility, channel 1 configured to compatibility

pciide0: channel 0 ignored (disabled)
wd0 at pciide0 channel 1 drive 0: TOSHIBA MK8009GAH
wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors
wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5
uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x90: irq 9
uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x90: irq 11
uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x90: irq 10
ehci0 at pci0 dev 16 function 4 VIA VT6202 USB rev 0x90: irq 3
ehci0: timed out waiting for BIOS
usb0 at ehci0: USB revision 2.0
uhub0 at usb0: VIA EHCI root hub, rev 2.00/1.00, addr 1
viapm0 at pci0 dev 17 function 0 VIA CX700 ISA rev 0x00
iic0 at viapm0
pchb6 at pci0 dev 17 function 7 VIA VX700 Host rev 0x00
ppb1 at pci0 dev 19 function 0 VIA CX700 Host rev 0x00
pci2 at ppb1 bus 2
azalia0 at pci2 dev 1 function 0 VIA HD Audio rev 0x10: irq 11
azalia0: host: High Definition Audio rev. 1.0
azalia0: codec: VIA/0x1708 (rev. 7.0), HDA version 1.0
audio0 at azalia0
ppb2 at pci0 dev 19 function 1 VIA CX700 PCI-PCI rev 0x00
pci3 at ppb2 bus 3
rl0 at pci3 dev 9 function 0 Realtek 8139 rev 0x10: irq 10, address 
00:14:0b:34:60:9c

rlphy0 at rl0 phy 0: RTL internal PHY
usb1 at uhci0: USB revision 1.0
uhub1 at usb1: VIA UHCI root hub, rev 1.00/1.00, addr 1
usb2 at uhci1: USB revision 1.0
uhub2 at usb2: VIA UHCI root hub, rev 1.00/1.00, addr 1
usb3 at uhci2: USB revision 1.0
uhub3 at usb3: VIA UHCI root hub, rev 1.00/1.00, addr 1
isa0 at mainbus0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0 mux 1
wskbd0: connecting to wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
biomask effd netmask effd ttymask 
pctr: user-level cycle counter enabled
ugen0 at uhub0 port 4
ugen0: Realtek RTL8187, rev 2.00/1.00, addr 2
uhub4 at uhub0 port 5: Genesys Logic USB2.0 Hub, rev 2.00/7.02, addr 3
uhidev0 at uhub4 port 3 configuration 1 interface 0
uhidev0: E N E UTS 6680, rev 1.10/1.00, addr 4, iclass 3/0
uhidev0: 10 report ids
ums0 at uhidev0 reportid 1
ums0: X report 0x0002 not supported
uhid0 at uhidev0 reportid 2: input=0, output=0, feature=7
uhid1 at uhidev0 reportid 3: input=0, output=0, feature=7
uhid2 at uhidev0 

how do I capture dmesg for a failed install??

[[EMAIL PROTECTED]]

Hi,
  How can I capture the dmesg (white on blue text) during a failed install?
I would like to capture the message during the install process (which
eventually hangs).
  Can someone point me to a procedure or provide the info?

Thanks in advnace...
-- 
View this message in context: 
http://www.nabble.com/how-do-I-capture-dmesg-for-a-failed-install---tp16735908p16735908.html
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: wpa now in current?!

[scott]

Applause, applause, applause.

Thanks big time.

-Original Message-
From: Damien Bergamini [EMAIL PROTECTED]
To: Didier Wiroth [EMAIL PROTECTED]
Cc: misc@openbsd.org
Subject: Re: wpa now in current?!
Date: Wed, 16 Apr 2008 22:22:37 +0200
Mailer: Microsoft Outlook Express 6.00.2900.3138
Delivered-To: [EMAIL PROTECTED]

WPA-PSK only and for a limited number of drivers.
This is definetely work-in-progress, but the basic functionality
is there.

Damien

| damn it ... I'm really excited and I can't really  believe it:
| http://marc.info/?l=openbsd-cvsm=120837078900999w=2
| 
| Does that mean wpa is now included and working in current?
| 
| thx a lot
| didier

Re: suggested fix for mkfifo.1

[Ben Calvert]

On Apr 16, 2008, at 1:55 PM, Jason McIntyre wrote:


On Wed, Apr 16, 2008 at 01:18:09PM -0700, Ben Calvert wrote:

en:1$ cd /usr/src/sbin/mknod
ben:2$ cvs diff mkfifo.1
Index: mkfifo.1
===
RCS file: /cvs/src/sbin/mknod/mkfifo.1,v
retrieving revision 1.9
diff -r1.9 mkfifo.1
57c57
 Set the file permission bits of newly created directories to
---

Set the file permission bits of the newly created fifo to


fixed, thanks.
(diff -u next time, please ;)


my bad.  will do.




jmc

install hangs...I have attached dmesg output.

[[EMAIL PROTECTED]]

Hello all,
  The CD with either install42.iso or cd42.iso both hang. PC is i386 based
with Intel Dual 2 core. I currently have a wireless keyboard attached to a
usb hub. 

any ideas or suggestions would be greatly appreciated.

Thanks in advance. http://www.nabble.com/file/p16736618/dmesg.txt dmesg.txt 
-- 
View this message in context: 
http://www.nabble.com/install-hangs...I-have-attached-dmesg-output.-tp16736618p16736618.html
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: install42.iso hangs....any ideas?

[Rod Whitworth]

On Wed, 16 Apr 2008 15:15:02 +, Matthew Szudzik wrote:

On Wed, Apr 16, 2008 at 05:45:56AM -0700, Unix Fan wrote:
 I thought DVD-RAM were unique in that, unlike DVD-RW, you can write to the 
 disk as if it's simply an optical hard drive...

I have only used DVD+RW and CD media in my DVDRAM drive, so I cannot
answer your question.


I can read DVD-RAM disks written in my video recorder or in winXP on a
drive in an OpenBSD4.2 box. mount_udf mounts the drive ro, so no
writing is possible.

I used to want support for writing DVD-RAM because the type 2 cartridge
disks are rated at 100,000 write cycles and are truly random access.
Trouble is that cartridge drives are now very hard to get (I have only
2, one in a Panasonic DVR and one in a winbox) so I am popping the
platters out to use in regular drives.

BD-RE support would suit me fine right now but the media are too
expensive so far and the drives ain't cheap either.

Rod/

A consultant is someone who's called in when someone has painted himself into a 
corner.  He's expected to levitate his client out of that corner.

-The Sayings of Chairman Morrow. 1984.

Re: SSD drives: performance gain

[David Gwynne]

On 17/04/2008, at 12:28 AM, Jacob Yocom-Piatt wrote:

David Gwynne wrote:
some ssd drives would be very cool to try. id love to play with  
these: http://www.stec-inc.com/product/zeusiops.php




am i right in saying these STEC drives are 10K USD each? yikes


i dont know. i try to avoid pricing things like this cos it would  
just make me depressed.


these ones definitely look quick though.

dlg

pf rewriting outgoing traffic

[Mark Felder]

Iptables allows me to rewrite the address of outgoing traffic. PF does
not allow this functionality. Is this a missing/broken feature, or is
there a reason why this is not allowed?

Example: I absolutely need traffic sent to 10.10.10.10 to be rewritten
to 192.168.1.1. There is no way around it, it just needs to be done to
solve my problem. I had a long discussion with some people in #pf, and
after they got the whole story, it made sense to them, but they agreed
it was a pretty dirty solution... but it works with iptables.

iptables -A OUTPUT -t nat -d 10.10.10.10 -j DNAT --to 192.168.1.1

I can now ping 10.10.10.10 and like magic it send the traffic to
192.168.1.1 without my machine knowing.

rdr inet proto tcp from self to 10.10.10.10 - 192.168.1.1

Doesnt work. Tried binat too. Tried many variations. PF just doesn't
allow this.

Could someone elaborate on why this is not implemented or why PF doesn't
allow this behavior?


Thanks,

Mark

Re: Chatting with developers? IRC!

[Paul Greidanus]

On 15-Apr-08, at 11:12 AM, Unix Fan wrote:
I found an old email on the mailing lists, dating back to 1996, when  
Theo announced users could connect and chat with the developers on  
their ICB server.


I'm wondering, when did it go private? Why can't users join and  
chat.. or idle.. and watch OpenBSD development as it takes place,  
are there any other places to go besides -cvs?


It sounds like you're interested in building some sort of online  
OpenBSD community, maybe some developers, maybe some users.. maybe  
some newbies, maybe some experienced people.


This exists, it's #openbsd on irc.freenode.net.  I'm there, my nick is  
prg3.  I'm not a dev though, so I may not count.


Paul

Re: pf rewriting outgoing traffic

[Mark Felder]

I completely understand what you're doing there, but that isn't what I'm
trying to do. Perhaps I'll give you a simple scenario that shows how to
make my needs easier to understand.

My home network is 192.168.1.0/24. A host on my network is
192.168.1.10. There is NO host at 192.168.1.200.

I want to be able to rewrite any traffic send to 192.168.1.200 to
actually go to 192.168.1.10.

iptables -A OUTPUT -t nat -d 192.168.1.200 -j DNAT --to 192.168.1.10

Voila, like magic, the packets are rewritten. I can ping 192.168.1.200
even though it doesnt exist! My computer is completely fooled into
thinking it does, because iptables rewrites transparently.

This is what I want to do with pf. Only I'm rewriting external REAL world
addresses to internal addresses for a development environment under very
specific conditions where split horizon DNS doesn't fit the requirements
(Because it's always on. Separate DNS servers and host file changes are
too intrusive so they aren't viable either.)

I'm doing this by running a proxy on the box where the firewall is. 
Access the proxy and your traffic is rewritten to this specific dev 
environment. This works on a Linux box, but I'd like to move the
operation to a BSD box with pf.

Do you understand the issue a little better now? It's a hack, I'll
admit, but it works in iptables and why pf doesn't seem to offer this
functionality is confusing. Or maybe I'm going about it wrong and it
*is* possible. I'm not sure yet. That's why I'm emailing here :)


Mark


On Wed, Apr 16, 2008 at 09:42:34PM -0500, Peques wrote:
 Have you tried?
 
 webserver = 192.168.2.7
 webports = { http, https }
 emailserver = 192.168.2.5
 email = { smtp, pop3, imap, imap3, imaps, pop3s }
 rdr on $ext_if proto tcp from any to $ext_if port $webports - $webserver
 rdr on $ext_if proto tcp from any to $ext_if port $email - $emailserver
 pass proto tcp from any to $webserver port $webports synproxy state
 pass proto tcp from any to $emailserver port $email synproxy state
 pass proto tcp from $emailserver to any port smtp synproxy state
 
 or can you probe
 
 lan= 10.10.10.10/24
 lan2= 192.168.0.0/24
 rdr on $ext_if proto {tcp,udp} from $lan1 to $lan2
 
 See you

Squid proxy server authentication

[Parvinder Bhasin]

Hi,

How do I setup squid proxy server for authentication using NSCA?  I used 
the ports to install squid.

I can't find the NSCA auth module to allow me to do that.
Any help ..is highly appreciated.

Thanks