Re: Outdated example in smtpd.conf(5)
On Sun, May 01, 2011 at 07:23:24PM -0600, Anthony J. Bentley wrote: I recently upgraded to a snapshot and tried to set up smtpd. But the first example in the smtpd.conf(5) manpage fails with a usage error: # makemap /etc/mail/secrets Usage: makemap [-C cffile] [-N] [-c cachesize] [-D commentchar] [-d] [-e] [-f] [-l] [-o] [-r] [-s] [-t delimiter] [-u] [-v] type mapname What is the correct way to perform this step? Should the manpage be updated? You need to read mailer.conf(5) ;-) -- Gilles - http://users.poolp.org/~gilles/
pf ruleset for openbsd 4.9
http://mouedine.net/ruleset49.aspx [1] Links: -- [1] http://mouedine.net/ruleset49.aspx
Re: Any suggests for modest, known compatible servers with RAID 1?
On Sat 30 Apr 2011 at 10:03:11 AM -0400, Nico Kadel-Garcia wrote: keys and uploaded files need someplace to be. You've raised an interesting point with flash hardware. How well is that working for you? I've been using IDE cflash perimeter firewalls since about 2006, another bsd but no complaints. This one has no fans, moving parts etc, AMD Geode LX (586-class), 498.08 MHz, id 0x5a2 -George
Re: 4.8 and 4.9 panic on Supermicro P8SCi
Hi Owain, I was not able to disable it by config -e /bsd, it keeps panic. I just compile new kernel with inteldrm disabled and it OK. Thanks for the help, Ivo On 1.5.2011 P3. 18:16 Q., Owain Ainsworth wrote: On Sun, May 01, 2011 at 05:57:47PM +0300, Ivo Chutkin wrote: Hi Chris, It solves the problem and system boots normally. Do I need to compile custom kernel and disable inteldrm there? Thanks for the help, config -e /bsd should allow you to make the disable permanent. FWIW i just commited a fix to current that should stop the crash at least. -0- Ivo On 1.5.2011 P3. 17:10 Q., Chris Cappuccio wrote: looks like a setup bug in the non-attachment of inteldrm? try disabling inteldrm in the UKC (boot -c disable inteldrm quit) Ivo Chutkin [open...@bgone.net] wrote: Hello sirs, I have problem to get this system running. It is Supermicro P8SCi, dmesg and panic messages are below. I have three identical systens, I tried 4.8 stable, 4.9 official and 4.9 snapshot, all i386 GENERIC and 4.9 snapshot GENERIC.MP ACPI enabled and disabled. The result is the same. I am not skillful enough to diagnose the problem myself. I am glad to help you with any info or tests. Thank you for the help. Ivo ### # panic 4.8 OpenBSD 4.8-stable (GENERIC) #11: Thu Apr 28 11:24:34 EEST 2011 r...@old.my.domain:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21 GHzI cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR real mem = 2137550848 (2038MB)/ CI Cntrlr avail mem = 2092621824 (1995MB)6 2659 0C03 USB 1.0/1.1 UHCI Cntrlr 10 mainbus0 at root A 0C03 USB 1.0/1.1 UHCI Cntrlr 12 bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @ 0xfa000, SMBIOS rev. 2.3 @ 0xf0800 (49 entries)rom CD bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005 bios0: Supermicro P8SC8 acpi at bios0 function 0x0 not configured mpbios0 at bios0: Intel MP Specification 1.4 cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 200MHz mpbios0: bus 0 is type PCI mpbios0: bus 1 is type PCI mpbios0: bus 2 is type PCI mpbios0: bus 3 is type PCI mpbios0: bus 4 is type PCI mpbios0: bus 5 is type PCI mpbios0: bus 6 is type PCI mpbios0: bus 7 is type ISA ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 4 ioapic1 at mainbus0: apid 5 pa 0xfec84400, version 20, 24 pins pcibios0 at bios0: rev 3.0 @ 0xf/0xcb24 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc9f0/288 (16 entries) pcibios0: PCI Exclusive IRQs: 5 9 10 12 pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00) pcibios0: PCI bus #6 is the last bus bios0: ROM list: 0xc/0x9400! 0xcc000/0x4000! 0xd/0x1800 0xd2000/0x1800 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel E7221 Host rev 0x05 ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05: apic 4 int 16 (irq 5) pci_intr_map: bus 0 dev 1 func 0 pin 2; line 5 pci_intr_map: no MP mapping found pci_intr_map: bus 0 dev 1 func 0 pin 3; line 12 pci_intr_map: no MP mapping found pci_intr_map: bus 0 dev 1 func 0 pin 4; line 10 pci_intr_map: no MP mapping found pci1 at ppb0 bus 1 ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09 pci2 at ppb1 bus 2 Intel IOxAPIC rev 0x09 at pci1 dev 0 function 1 not configured vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) intagp at vga1 not configured inteldrm0 at vga1: apic 4 int 16 (irq 5) drm0 at inteldrm0: couldn't find agp uvm_fault(0xd0a05960, 0x0, 0, 3) - e kernel: page fault trap, code=0 Stopped at rw_cas_486+0xf: cmpxchgl%ebx,0(%ecx) rw_cas_486(48,0,d0a05a64,0,0) at rw_cas_486+0xf rw_enter_write(48,0,d0b75b68,0,d2e14000) at rw_enter_write+0x29 i915_gem_idle(d2e14000,d02094e0,0,d2e0f600,d0b75b74) at i915_gem_idle+0x20 inteldrm_lastclose(d2e0f600,0,8,0,d09967b8) at inteldrm_lastclose+0x1a drm_lastclose(d2e0f600,d2e0f600,d0b75bf8,d03e4aab,0) at drm_lastclose+0x1b config_attach(d2e14000,d09919cc,d0b75bf8,d0207cd0,0,2,0,d03eca77,d099b238,5 ,d08 24200,d2dfac80,d09acea0,1,14,1,d0b75c05) at config_attach+0x140 drm_attach_pci(d0824200,d0b75d70,1,d2e14000,0) at drm_attach_pci+0xaa inteldrm_attach(d2d0f900,d2e14000,d0b75d70,d03e4aab,d059b940) at inteldrm_attac h+0x40e config_attach(d2d0f900,d09919f0,d0b75d70,0,258a,6280,628015d9) at config_attach +0x140 vga_pci_attach(d2dfde00,d2d0f900,d0b75d70,d03e4aab,d0598b60) at vga_pci_attach+ 0x12b ddb ###
Re: 4.8 and 4.9 panic on Supermicro P8SCi
On 02/05/11 12:07, Ivo Chutkin wrote: Hi Owain, I was not able to disable it by config -e /bsd, it keeps panic. I just compile new kernel with inteldrm disabled and it OK. Thanks for the help, Ivo You should do config -ef /bsd disable inteldrm quit If you are not using /bsd kernel replace first line with the appropriate kernel. Giannis [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
How to mount usb disk at boot
Hello misc, I have problem mounting usb disk at boot time (namely Western Digital My Book 1130) on Alix2d2 board, dmesg below. I am getting this message and the disk is not mounted: mount_ffs: /dev/sd0a on /data: Device not configured also: r...@asterisk1.my.domain ~ # mount /dev/wd0a on / type ffs (local) /dev/wd0e on /home type ffs (local, nodev, nosuid) /dev/wd0d on /mfs type ffs (local, nodev, nosuid) After boot, I can mount it by hand without problem issuing: r...@asterisk1.my.domain ~ # mount /dev/sd0a /data and: r...@asterisk1.my.domain ~ # mount /dev/wd0a on / type ffs (local) /dev/wd0e on /home type ffs (local, nodev, nosuid) /dev/wd0d on /mfs type ffs (local, nodev, nosuid) /dev/sd0a on /data type ffs (local) My fstab is: /dev/wd0a / ffs rw 1 1 /dev/wd0e /home ffs rw,nodev,nosuid 1 2 /dev/wd0d /mfs ffs rw,nodev,nosuid 1 2 /dev/sd0a /data ffs rw,nodev 0 0 How can I mount this disk at boot? Thanks for the help, Ivo Dmesg: OpenBSD 4.8-stable (GENERIC) #1: Wed Apr 6 17:51:44 EEST 2011 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 586-class) 499 MHz cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX real mem = 268009472 (255MB) avail mem = 253669376 (241MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: pcibios_get_intr_routing - function not supported pcibios0: PCI IRQ Routing information unavailable. pcibios0: PCI bus #0 is the last bus bios0: ROM list: 0xe/0xa800 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33 glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, address 00:0d:b9:20:95:08 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 vr1 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, address 00:0d:b9:20:95:09 ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 32-bit 3579545Hz timer, watchdog, gpio gpio0 at glxpcib0: 32 pins pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: TS4GCF133 wd0: 1-sector PIO, LBA, 3823MB, 7831152 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) ohci0 at pci0 dev 15 function 4 AMD CS5536 USB rev 0x02: irq 12, version 1.0, legacy support ehci0 at pci0 dev 15 function 5 AMD CS5536 USB rev 0x02: irq 12 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1 isa0 at glxpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com0: console com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo pcppi0 at isa0 port 0x61 spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 usb1 at ohci0: USB revision 1.0 uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1 biomask 7be7 netmask ffe7 ttymask mtrr: K6-family MTRR support (2 registers) nvram: invalid checksum softraid0 at root root on wd0a swap on wd0b dump on wd0b clock: unknown CMOS layout umass0 at uhub0 port 2 configuration 1 interface 0 Western Digital My Book 1130 rev 2.10/10.12 addr 2 umass0: using SCSI over Bulk-Only scsibus0 at umass0: 2 targets, initiator 0 Automatic boot in progress: starting file system checks. /dev/rwd0a: file system is clean; not checking /dev/rwd0e: file system is clean; not checking /dev/rwd0d: file system is clean; not checking mount_ffs: /dev/sd0a on /data: Device not configured setting tty flags pf enabled net.inet.ip.forwarding: 0 - 1 starting network DHCPREQUEST on vr0 to 255.255.255.255 port 67 DHCPACK from 192.168.75.1 (00:1e:58:9f:a5:ff) bound to 192.168.75.66 -- renewal in 21600 seconds. starting system logger starting initial daemons: ntpd. mount_ffs: /dev/sd0a on /data: Device not configured savecore: no core dump checking quotas: done. building ps databases: kvm dev. clearing /tmp starting pre-securelevel daemons:. setting kernel security level: kern.securelevel: 0 - 1 sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed sd0: 953837MB, 512 bytes/sec, 1953458176 sec total ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure services fixed ses0: unable to read enclosure configuration creating runtime link editor directory cache. preserving editor files. starting network daemons: sshd sendmail inetd. starting local daemons:. standard daemons: cron. Mon May 2 09:36:28 EEST 2011 OpenBSD/i386 (asterisk1.my.domain) (tty00)
Re: Choosing a window manager...
On Tue, 15 Mar 2011 19:50:50 +0100, marc li...@drwx.org wrote: Hi all, Subject: Choosing a window manager... All of you - you are completely misguided. The redmoondian horror misled you to use crude stuff. (Hey, if you're american: crude is *not* a noun here!!!) 'Cause there is one, and only *one* real and functioning window manager on this whole small planet! And it is ahwm. (http://people.cs.uchicago.edu/~ahiorean/ahwm/) Free at last, free at last, oh how i wished i would be free at last. And it is ahwm. -- Steffen sdao...@gmail.com
Re: How to mount usb disk at boot
On Mon, May 02, 2011 at 12:31:47PM +0300, Ivo Chutkin wrote: Hello misc, I have problem mounting usb disk at boot time (namely Western Digital My Book 1130) on Alix2d2 board, dmesg below. I am getting this message and the disk is not mounted: mount_ffs: /dev/sd0a on /data: Device not configured It seems the boot does not wait for every possible USB device before mounting from /etc/fstab Try the mount option 'noauto' and mount the drive through hotplugd(8) if you need automatic mount. also: r...@asterisk1.my.domain ~ # mount /dev/wd0a on / type ffs (local) /dev/wd0e on /home type ffs (local, nodev, nosuid) /dev/wd0d on /mfs type ffs (local, nodev, nosuid) After boot, I can mount it by hand without problem issuing: r...@asterisk1.my.domain ~ # mount /dev/sd0a /data and: r...@asterisk1.my.domain ~ # mount /dev/wd0a on / type ffs (local) /dev/wd0e on /home type ffs (local, nodev, nosuid) /dev/wd0d on /mfs type ffs (local, nodev, nosuid) /dev/sd0a on /data type ffs (local) My fstab is: /dev/wd0a / ffs rw 1 1 /dev/wd0e /home ffs rw,nodev,nosuid 1 2 /dev/wd0d /mfs ffs rw,nodev,nosuid 1 2 /dev/sd0a /data ffs rw,nodev 0 0 How can I mount this disk at boot? Thanks for the help, Ivo Dmesg: OpenBSD 4.8-stable (GENERIC) #1: Wed Apr 6 17:51:44 EEST 2011 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 586-class) 499 MHz cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX real mem = 268009472 (255MB) avail mem = 253669376 (241MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: pcibios_get_intr_routing - function not supported pcibios0: PCI IRQ Routing information unavailable. pcibios0: PCI bus #0 is the last bus bios0: ROM list: 0xe/0xa800 cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33 glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, address 00:0d:b9:20:95:08 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 vr1 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, address 00:0d:b9:20:95:09 ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 32-bit 3579545Hz timer, watchdog, gpio gpio0 at glxpcib0: 32 pins pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: TS4GCF133 wd0: 1-sector PIO, LBA, 3823MB, 7831152 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) ohci0 at pci0 dev 15 function 4 AMD CS5536 USB rev 0x02: irq 12, version 1.0, legacy support ehci0 at pci0 dev 15 function 5 AMD CS5536 USB rev 0x02: irq 12 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1 isa0 at glxpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com0: console com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo pcppi0 at isa0 port 0x61 spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 usb1 at ohci0: USB revision 1.0 uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1 biomask 7be7 netmask ffe7 ttymask mtrr: K6-family MTRR support (2 registers) nvram: invalid checksum softraid0 at root root on wd0a swap on wd0b dump on wd0b clock: unknown CMOS layout umass0 at uhub0 port 2 configuration 1 interface 0 Western Digital My Book 1130 rev 2.10/10.12 addr 2 umass0: using SCSI over Bulk-Only scsibus0 at umass0: 2 targets, initiator 0 Automatic boot in progress: starting file system checks. /dev/rwd0a: file system is clean; not checking /dev/rwd0e: file system is clean; not checking /dev/rwd0d: file system is clean; not checking mount_ffs: /dev/sd0a on /data: Device not configured setting tty flags pf enabled net.inet.ip.forwarding: 0 - 1 starting network DHCPREQUEST on vr0 to 255.255.255.255 port 67 DHCPACK from 192.168.75.1 (00:1e:58:9f:a5:ff) bound to 192.168.75.66 -- renewal in 21600 seconds. starting system logger starting initial daemons: ntpd. mount_ffs: /dev/sd0a on /data: Device not configured savecore: no core dump checking quotas: done. building ps databases: kvm dev. clearing /tmp starting pre-securelevel daemons:. setting kernel security level: kern.securelevel: 0 - 1 sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed sd0: 953837MB, 512 bytes/sec, 1953458176 sec total ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure services fixed ses0: unable to read enclosure configuration
Listino Prezzi
Potete trovare il ns. listino rivenditori su: http://www.vegastore.it/default.asp?idA=4cmd=pageSXcmdID=2 Cordiali Vegastore S.r.l.
Re: How to mount usb disk at boot
On Mon, May 2, 2011 at 11:31, Ivo Chutkin open...@bgone.net wrote: Hello misc, I have problem mounting usb disk at boot time (namely Western Digital My Book 1130) on Alix2d2 board, dmesg below. I am getting this message and the disk is not mounted: mount_ffs: /dev/sd0a on /data: Device not configured [snip] Dmesg: OpenBSD 4.8-stable (GENERIC) #1: Wed Apr 6 17:51:44 EEST 2011 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC [snip] Automatic boot in progress: starting file system checks. /dev/rwd0a: file system is clean; not checking /dev/rwd0e: file system is clean; not checking /dev/rwd0d: file system is clean; not checking mount_ffs: /dev/sd0a on /data: Device not configured [snip] sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed sd0: 953837MB, 512 bytes/sec, 1953458176 sec total [snip] OpenBSD/i386 (asterisk1.my.domain) (tty00) Hello, your sd0 disk is discovered later in the boot process. Have a look at hotplugd(8) to mount your disk as soon as it's discovered : Regards, -- Thomas Jeunet
Re: 4.8 and 4.9 panic on Supermicro P8SCi
On 02/05/11 13:14, Ivo Chutkin wrote: On 2.5.2011 P3. 12:31 Q., Kapetanakis Giannis wrote: On 02/05/11 12:07, Ivo Chutkin wrote: Hi Owain, I was not able to disable it by config -e /bsd, it keeps panic. I just compile new kernel with inteldrm disabled and it OK. Thanks for the help, Ivo You should do config -ef /bsd disable inteldrm quit If you are not using /bsd kernel replace first line with the appropriate kernel. Hi Giannis, I did exactly this but it seems not to work # config -e /bsd config -ef /bsd
Re: How to mount usb disk at boot
On Mon, May 02, 2011 at 12:31:47PM +0300, open...@bgone.net wrote: Dmesg: OpenBSD 4.8-stable (GENERIC) #1: Wed Apr 6 17:51:44 EEST 2011 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 586-class) 499 MHz [snip] mount_ffs: /dev/sd0a on /data: Device not configured [snip] sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed sd0: 953837MB, 512 bytes/sec, 1953458176 sec total ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure Your USB disk seems to take a lot of time to start and it is discovered after /etc/rc issues the 'mount -a' command. Try to put a 'sleep 10' before mounting the FS. -- Olivier Cherrier - Symacx.com mailto:o...@symacx.com
xenocara doesn't build correctly on 4.9-stable/hppa
Hi, I noticed something strange while building xenocara on 4.9-stable on an hppa-system. One of the files in the xbase49.tgz file set (from 4.9-release) is /usr/X11R6/lib/libfontconfig.so.7.0. After 'make build', there's a libfontconfig.so.5.4 in /usr/X11R6/lib/ that is identical to the 7.0 file from -release. When I do 'make release', only the 5.4 file ends up in /usr/dest/ , resulting in a missing libfontconfig.so file in the xbase49.tgz file set (the maketars script expects that libfontconfig.so.7.0 is there, but it isn't). So for some reason, the libfontconfig.so.x.y file has the wrong name. I tried to find the cause, but I get lost in Makefiles and configure scripts. BTW: I followed the exact steps from the FAQ (section 5.5), with the xenocara source tree on an NFS server. The build / release process works without a hitch on other architectures that use the same NFS server for the source tree. Does anyone know what is going on and, even better, how to fix it? Thanks, Maurice
IPSEC tunnels failing intermittently
Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652
Hybrid graphics and OpenBSD
Hi, all. Does OpenBSD has any equivalent of vga_switcheroo? Say, I have HP Envy 13 laptop. It has Intel GMA 4500MHD and ATI Radeon HD4330. Both are supported by the respective open source drivers. In theory (ok, in Windows) I should be able to switch between more power-efficient Intel IGP and more potent ATI dedicated GPU. In Linux (and in OpenBSD) by default both cards will be turned on (so both of them will drain battery(, but only Intel will work. Unless you use vga_switcheroo, which does a switch and can turn the unused card off Does OpenBSD have anything like this? Thanks for any advice.
Re: IPSEC tunnels failing intermittently
I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... (and this setup has always been post-4.4 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652
Re: bsd.rd and (automated) upgrading
I use remote IP KVM to do my upgrades. Occasionally, I can't get my keybord input to get boot bsd.rd fast enough, so I just replace bsd with bsd.rd and reboot. Voila! I get bsd.rd without a hitch. If that were to be a problem, I can just kick down to shell, mv bsd back and reboot. All works just fine. Chris Bennett
Re: IPSEC tunnels failing intermittently
Stuart Henderson(s...@spacehopper.org) on 2011.05.02 13:30:34 +: I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... I have seen this too, two times in 3 weeks, with 7 subnets between two endpoints. Haven't made a bug report yet because i want to update first ... /Benno
Re: Hybrid graphics and OpenBSD
On Mon, May 02, 2011 at 04:29:08PM +0400, Ilya Ilembitov wrote: Hi, all. Does OpenBSD has any equivalent of vga_switcheroo? Say, I have HP Envy 13 laptop. It has Intel GMA 4500MHD and ATI Radeon HD4330. Both are supported by the respective open source drivers. In theory (ok, in Windows) I should be able to switch between more power-efficient Intel IGP and more potent ATI dedicated GPU. In Linux (and in OpenBSD) by default both cards will be turned on (so both of them will drain battery(, but only Intel will work. Unless you use vga_switcheroo, which does a switch and can turn the unused card off Does OpenBSD have anything like this? Sorry, for the time being we have no such feature. There is a lot of code still to be written before it can be supported. Thanks for any advice. -0- -- Graduate life: It's not just a job. It's an indenture.
Re: Hybrid graphics and OpenBSD
On Mon, 2 May 2011 16:29:08 +0400 Ilya Ilembitov wrote: In Linux (and in OpenBSD) by default both cards will be turned on (so both of them will drain battery This seems silly, you'd still be wasting power untill your driver loaded or whatever. Does your motherboards bios not have the ability to switch one off. Some switch off the intel automatically when an addon card is put in.
XEN-Guest
I think about installing an OpenBSD-guest on a XEN-Host (Debian Squeeze), all OS as 64bit-version alias amd64. Are there any experiences with OpenBSD as Dom-U? The guest will be a firewalling-router with ospfd, bind, openvpn and 6 ethernet-interfaces. Any comments are welcome! Regards, Tobias.
Re: IPSEC tunnels failing intermittently
Hi, Same here, but between 2 hosts in the same subnet (very basic network setup). I was also waiting for 4.9 (and time to investigate...) kind regards, Robert On Mon, 2 May 2011 13:30:34 + (UTC) Stuart Henderson s...@spacehopper.org wrote: I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... (and this setup has always been post-4.4 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652
Re: XEN-Guest
On Mon, May 02, 2011 at 05:21:11PM +0200, Tobias Crefeld wrote: I think about installing an OpenBSD-guest on a XEN-Host (Debian Squeeze), all OS as 64bit-version alias amd64. Are there any experiences with OpenBSD as Dom-U? It's probably much more straightforward to run kvm-qemu instead of XEN. OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which supports hardware virtualization (egrep svm|vmx /proc/cpuinfo). On the first boot after install, boot into ukc and disable mpbios. Afterwards, disable mpbios in /bsd with 'config' and it should work fine. The guest will be a firewalling-router with ospfd, bind, openvpn and 6 ethernet-interfaces. I've successfully run IPSEC (iked and isakmpd both work), bridging and various network services this way. Any comments are welcome! Regards, Tobias. John
Re: XEN-Guest
On Mon, May 2, 2011 at 5:21 PM, Tobias Crefeld t...@cataneo.eu wrote: I think about installing an OpenBSD-guest on a XEN-Host (Debian Squeeze), all OS as 64bit-version alias amd64. Are there any experiences with OpenBSD as Dom-U? The guest will be a firewalling-router with ospfd, bind, openvpn and 6 ethernet-interfaces. Any comments are welcome! http://marc.info/?l=openbsd-miscm=129051611606830w=2 http://marc.info/?l=openbsd-miscm=126328361516932w=2 Regards, B Tobias.
Re: IPSEC tunnels failing intermittently
On 05/02/11 18:08, Robert wrote: Hi, Same here, but between 2 hosts in the same subnet (very basic network setup). I was also waiting for 4.9 (and time to investigate...) We see same behaviour on 4.9 so upgrading will not help. On Mon, 2 May 2011 13:30:34 + (UTC) Stuart Henderson s...@spacehopper.org wrote: I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... (and this setup has always been post-4.4 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652 -- Do you consider your e-mail important? BSDLabs AB Registered in Solna, Sweden SE556759765201 http://www.bsdlabs.com
Re: XEN-Guest
I use kvm/qemu on a Debian Squeeze box to virtualize all of my OpenBSD stuff and it works extremely well (my only wish is that OpenBSD could support Dom0 or the kvm/qemu equivalent). If you decide to go this route, you need to make certain to disable MPBIOS after installing OpenBSD on a guest or else the guest will hang on startup at Setting TTYs. On Mon, May 02, 2011 at 05:21:11PM +0200, Tobias Crefeld wrote: I think about installing an OpenBSD-guest on a XEN-Host (Debian Squeeze), all OS as 64bit-version alias amd64. Are there any experiences with OpenBSD as Dom-U? It's probably much more straightforward to run kvm-qemu instead of XEN. OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which supports hardware virtualization (egrep svm|vmx /proc/cpuinfo). On the first boot after install, boot into ukc and disable mpbios. Afterwards, disable mpbios in /bsd with 'config' and it should work fine. The guest will be a firewalling-router with ospfd, bind, openvpn and 6 ethernet-interfaces. I've successfully run IPSEC (iked and isakmpd both work), bridging and various network services this way. Any comments are welcome! Regards, Tobias. John
Re: IPSEC tunnels failing intermittently
On Mon, May 2, 2011 at 7:28 AM, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: tunnels started failing, seemly at random intervals. Similar problem here with -current. Log entries like: Apr 25 01:07:33 hostname isakmpd[995]: message_recv: invalid cookie(s) 77081dce1d157a88 689ce96611c630c2 Apr 25 01:07:33 hostname isakmpd[995]: dropped message from 62.41.252.83 port 500 due to notification type INVAL ID_COOKIE Happens quite often. Sometimes the tunnel will start back up on its own, maybe always so if one can wait long enough. Sometimes waiting is not possible and isakmpd must be restarted.
Re: IPSEC tunnels failing intermittently
Per olof Ljungmark wrote: On 05/02/11 18:08, Robert wrote: Hi, Same here, but between 2 hosts in the same subnet (very basic network setup). I was also waiting for 4.9 (and time to investigate...) We see same behaviour on 4.9 so upgrading will not help. On Mon, 2 May 2011 13:30:34 + (UTC) Stuart Henderson s...@spacehopper.org wrote: I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... (and this setup has always been post-4.4 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652 FWIW, I have the following number of flows and tunnels using OpenBSD 4.8 at the moment. I have not seen any problems when both peers are OpenBSD servers. Mon May 02 11:57:12 CPU@36.0C # ipsecctl -sa | grep -c flow 160 Mon May 02 11:57:21 CPU@36.0C # ipsecctl -sa | grep -c tunnel 254 Approximately two months ago I had a similar situation to what you described and sort of narrowed it down to the following: The peer site had Cisco ASA VPN concentrator and they had different subnets with 172.16.0.0/24, 172.16.1.0/24, and so on to different customer networks. At our end with OpenBSD, we had a subnet of 172.16.0.0/21 for our internal network. Because the Cisco end could not change their subnet mask, we changed the subnet mask on the OpenBSD box to 172.16.1.0/24 and allowed access only to a few hosts with the address 172.16.1.xx and set up static routes from those boxes to go through the OpenBSD box. The problems seemed to be isolated to the internal hosts at the Cisco end that were NAT'ed out to a DMZ and were accessing our network from the the ASA box located in their DMZ. We reconfigured our firewall rules to allow all traffic to their network to flow through and the problems stopped for a full three weeks. Unfortunately, (apparently) they said that intermittent drops started again (even though we had not made any changes at our end once everything was working properly), blamed me for this problem and asked us to use a Cisco PIX router instead of the OpenBSD box just for their access. So that is what we ended up doing since I had no access to their Cisco gear and they did not have time to troubleshoot. -- Vijay Sankar, M.Eng., P.Eng. ForeTell Technologies Limited 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6 Phone: (204) 885-9535, E-Mail: vsan...@foretell.ca
Sun Ultra45 4.9R crashes loading kernel...
Hi, trying to boot my Sun Ultra45 workstation from install49.iso results in this: ok reset-all Sun Ultra 45 Workstation, No Keyboard Copyright 2006 Sun Microsystems, Inc. All rights reserved. OpenBoot 4.22.19, 8192 MB memory installed, Serial #69377208. Ethernet address 0:14:4f:22:9c:b8, Host ID: 84229cb8. ok boot cdrom Boot device: /pci@1e,60/pci@0/pci@1/pci@0/ide@1f/cdrom@0,0:f File and args: OpenBSD IEEE 1275 Bootblock 1.3 .. OpenBSD BOOT 1.4 Trying bsd... Booting /pci@1e,60/pci@0/pci@1/pci@0/ide@1f/cdrom@0,0:f/bsd 3785400@0x100+7496@0x139c2b8+3255032@0x180+939272@0x1b1aaf8 symbols @ 0xfefbc240 65 start=0x100 console is /ebus@1f,464000/serial@2,80 Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2011 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.9 (RAMDISK) #517: Wed Mar 2 07:49:10 MST 2011 dera...@sparc64.openbsd.org:/usr/src/sys/arch/sparc64/compile/RAMDISK real mem = 8589934592 (8192MB) avail mem = 8447508480 (8056MB) mainbus0 at root: Sun Ultra 45 Workstation cpu0 at mainbus0: SUNW,UltraSPARC-IIIi (rev 3.4) @ 1600 MHz cpu0: physical 32K instruction (32 b/l), 64K data (32 b/l), 1024K external (64 b/l) memory-controller at mainbus0 not configured pyro0 at mainbus0: Fire, rev 3, ign 780, bus A 2 to 12 pyro0: dvma map c000- pci0 at pyro0 ppb0 at pci0 dev 0 function 0 PLX PEX 8532 rev 0xaa pci1 at ppb0 bus 3 ppb1 at pci1 dev 1 function 0 PLX PEX 8532 rev 0xaa pci2 at ppb1 bus 4 ppb2 at pci2 dev 0 function 0 Acer Labs M5249 PCI-PCI rev 0x00 pci3 at ppb2 bus 5 ohci0 at pci3 dev 28 function 0 Acer Labs M5237 USB rev 0x03: ivec 0x780, version 1.0, legacy support ohci1 at pci3 dev 28 function 1 Acer Labs M5237 USB rev 0x03: ivec 0x780, version 1.0, legacy support ohci2 at pci3 dev 28 function 2 Acer Labs M5237 USB rev 0x03: ivec 0x780, version 1.0, legacy support ehci0 at pci3 dev 28 function 3 Acer Labs M5239 USB2 rev 0x01: ivec 0x781 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Acer Labs EHCI root hub rev 2.00/1.00 addr 1 Acer Labs M5455 Audio rev 0x21 at pci3 dev 29 function 0 not configured Acer Labs M7101 Power rev 0x00 at pci3 dev 30 function 1 not configured pciide0 at pci3 dev 31 function 0 Acer Labs M5229 UDMA IDE rev 0xc8: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide0: using ivec 0x784 for native-PCI interrupt atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: MATSHITA, DVD-RAM UJ-845S, D100 ATAPI 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 disabled (no drives) usb1 at ohci0: USB revision 1.0 uhub1 at usb1 Acer Labs OHCI root hub rev 1.00/1.00 addr 1 usb2 at ohci1: USB revision 1.0 uhub2 at usb2 Acer Labs OHCI root hub rev 1.00/1.00 addr 1 usb3 at ohci2: USB revision 1.0 uhub3 at usb3 Acer Labs OHCI root hub rev 1.00/1.00 addr 1 ppb3 at pci1 dev 2 function 0 PLX PEX 8532 rev 0xaa pci4 at ppb3 bus 6 ppb4 at pci4 dev 0 function 0 ServerWorks PCIE-PCIX rev 0xb3 pci5 at ppb4 bus 7 bge0 at pci5 dev 4 function 0 Broadcom BCM5715 rev 0xa2, BCM5715 A1 (0x9001): ivec 0x796, address 00:14:4f:22:9c:b8 brgphy0 at bge0 phy 1: BCM5714 10/100/1000baseT/SX PHY, rev. 0 bge1 at pci5 dev 4 function 1 Broadcom BCM5715 rev 0xa2, BCM5715 A1 (0x9001): ivec 0x797, address 00:14:4f:22:9c:b9 brgphy1 at bge1 phy 1: BCM5714 10/100/1000baseT/SX PHY, rev. 0 ppb5 at pci1 dev 3 function 0 PLX PEX 8532 rev 0xaa: ivec 0x796 pci6 at ppb5 bus 8 ppb6 at pci1 dev 8 function 0 PLX PEX 8532 rev 0xaa: ivec 0x794 pci7 at ppb6 bus 9 ppb7 at pci1 dev 9 function 0 PLX PEX 8532 rev 0xaa pci8 at ppb7 bus 10 ppb8 at pci8 dev 0 function 0 Intel 41210 PCIE-PCIX rev 0x09 pci9 at ppb8 bus 11 mpi0 at pci9 dev 1 function 0 Symbios Logic SAS1064 rev 0x02: ivec 0x78f scsibus1 at mpi0: 63 targets sd0 at scsibus1 targ 0 lun 0: SEAGATE, ST914602SSUN146G, 0603 SCSI3 0/direct fixed sd0: 140009MB, 512 bytes/sec, 286739329 sec total ppb9 at pci8 dev 0 function 2 Intel 41210 PCIE-PCIX rev 0x09 pci10 at ppb9 bus 12 radeonfb0 at pci10 dev 2 function 0 ATI Radeon VE rev 0x00 radeonfb0: SUNW,375-3290, 1152x900 wsdisplay0 at radeonfb0 wsdisplay0: screen 0 added (std, sun emulation) pyro1 at mainbus0: Fire, rev 3, ign 7c0, bus B 2 to 255 pyro1: dvma map c000- pci11 at pyro1 ebus0 at mainbus0: ign 7c0 flashprom at ebus0 addr 0-1f not configured rtc0 at ebus0 addr 10-1f: bq4802 com0 at ebus0 addr 80-87 ivec 0x8: st16650, no working fifo com0: console com1 at ebus0 addr 0-7 ivec 0x8: st16650, no working fifo env-monitor at ebus0 addr 0-41 not configured i2c at ebus0 addr 80-81 ivec 0x1 not configured power at ebus0 addr e0-e1 ivec 0x3 not configured i2c at mainbus0 not configured i2c at mainbus0 not configured i2c at mainbus0 not configured ppm at mainbus0 not configured data error type 32 sfsr=80800c sfva=4004fba0001 afsr=1008000500 afva=7f8100012c0
Re: XEN-Guest
Am Mon, 2 May 2011 11:15:57 -0500 schrieb John Jackson open...@lacutt.com: It's probably much more straightforward to run kvm-qemu instead of XEN. Hm, I'll consider this alternative. Till now our test-LAN ran on VMware but for some reasons we want to get away from VMware. OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which supports hardware virtualization (egrep svm|vmx /proc/cpuinfo). This egrep isn't successful on my host but this might be due to the fact that it's an AMD-Opteron (Lisbon) and not a Intel-machine. After enabling virtualizing support in BIOS (+ enabling IOMMU) /proc/cpuinfo shows these flags: $ grep flags /proc/cpuinfo |head -1 flags : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext 3dnow constant_tsc rep_good nonstop_tsc extd_apicid pni cx16 popcnt hypervisor lahf_lm cmp_legacy extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch nodeid_msr I've successfully run IPSEC (iked and isakmpd both work), bridging and various network services this way. I moved from IPSEC to SSL/OpenVPN some years ago because it's more robust against packet loss but in combination with routing protocols like OSPF OpenVPN seems to be a bad choice as it keeps the tunnel-interfaces AKA link-states always UP even if the tunnel is down. Is there a way IPSEC can handle link-state-protocols better? Regards, Tobias.
suspend resume trouble with pms0
Hello, when resuming i get an pms0: enable error. Other than that everything that matters to me is working. Running/not running wmoused makes no difference. Googlevise it seems to be a fairly unusual problem. Just shoot if you need more info. Any ideas worth testing? The machine is a couple of years old now but i just kind of like it anyways.. :-) Thanks for a great OS! / Kalle Info about the machine in case of interest: Fujitsu-Siemens Amilo Pro v3205 acpidump available on http://tomta.mine.nu/temp/v3205.tar.gz dmesg and pcidump -v follows. OpenBSD 4.9-current (GENERIC.MP) #91: Sat Apr 23 12:17:33 MDT 2011 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM real mem = 1063415808 (1014MB) avail mem = 1035853824 (987MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 02/14/07, BIOS32 rev. 0 @ 0xfd580, SMBIOS rev. 2.4 @ 0xdc010 (29 entries) bios0: vendor Phoenix version 1.20 date 02/14/2007 bios0: FUJITSU SIEMENS AMILO Pro V3205 acpi0 at bios0: rev 0 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP APIC HPET MCFG APIC BOOT SLIC SSDT acpi0: wakeup devices LID_(S3) HDEF(S3) PXS1(S4) PXS2(S4) PXS3(S4) USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB7(S3) LANC(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 166MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpihpet0 at acpi0: 14318179 Hz acpimcfg0 at acpi0 addr 0xe000, bus 0-255 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEGP) acpiprt2 at acpi0: bus 1 (RP01) acpiprt3 at acpi0: bus 3 (RP02) acpiprt4 at acpi0: bus 5 (RP03) acpiprt5 at acpi0: bus 7 (PCIB) acpiec0 at acpi0 acpicpu0 at acpi0: C3, C2, C1, PSS acpicpu1 at acpi0: C3, C2, C1, PSS acpitz0 at acpi0: critical temperature 100 degC acpibtn0 at acpi0: PWRB acpibtn1 at acpi0: SLPB acpiac0 at acpi0: AC unit offline acpibat0 at acpi0WARN: not buffer WARN: not buffer WARN: not buffer WARN: not buffer WARN: not buffer : BAT1 model MWL32b serial type LION oem SANYO acpibtn2 at acpi0: LID_ acpidock0 at acpi0: DCK1 not docked (0) acpivideo0 at acpi0: VGA_ acpivideo1 at acpi0: GFX0 bios0: ROM list: 0xc/0xe600! 0xdc000/0x4000! cpu0: Enhanced SpeedStep 1664 MHz: speeds: 1667, 1333, 1000 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82945GM Host rev 0x03 vga1 at pci0 dev 2 function 0 Intel 82945GM Video rev 0x03 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) intagp0 at vga1 agp0 at intagp0: aperture at 0xc000, size 0x1000 inteldrm0 at vga1: apic 1 int 16 drm0 at inteldrm0 Intel 82945GM Video rev 0x03 at pci0 dev 2 function 1 not configured azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x02: apic 1 int 22 azalia0: codecs: Conexant CX20549 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x02: apic 1 int 17 pci1 at ppb0 bus 1 wpi0 at pci1 dev 0 function 0 Intel PRO/Wireless 3945ABG rev 0x02: apic 1 int 16, MoW2, address 00:19:d2:35:6f:7d ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 1 int 16 pci2 at ppb1 bus 3 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x02: apic 1 int 18 pci3 at ppb2 bus 5 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x02: apic 1 int 23 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x02: apic 1 int 19 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x02: apic 1 int 18 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x02: apic 1 int 16 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x02: apic 1 int 23 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xe2 pci4 at ppb3 bus 7 fxp0 at pci4 dev 8 function 0 Intel PRO/100 VM rev 0x02, i82562: apic 1 int 20, address 00:16:36:f2:56:f7 inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0 Ricoh 5C832 Firewire rev 0x00 at pci4 dev 9 function 0 not configured sdhc0 at pci4 dev 9 function 1 Ricoh 5C822 SD/MMC rev 0x19: apic 1 int 21 sdmmc0 at sdhc0 Ricoh 5C843 MMC rev 0x01 at pci4 dev 9 function 2 not configured Ricoh 5C592 Memory Stick rev 0x0a at pci4 dev 9 function 3 not configured Ricoh 5C852 xD rev 0x05 at pci4 dev 9 function 4 not configured
Re: XEN-Guest
On 2011-05-02, Tobias Crefeld t...@cataneo.eu wrote: I've successfully run IPSEC (iked and isakmpd both work), bridging and various network services this way. I moved from IPSEC to SSL/OpenVPN some years ago because it's more robust against packet loss but in combination with routing protocols like OSPF OpenVPN seems to be a bad choice as it keeps the tunnel-interfaces AKA link-states always UP even if the tunnel is down. Is there a way IPSEC can handle link-state-protocols better? gre(4), which you can run inside ipsec, can do keepalives which will bring the link-state down when the tunnel is down. support for this was added to OpenBSD in 4.8.
Re: em(4) is just 10baseT
On 2010-11-17, Jochen Fabricius jfabric...@web.de wrote: On Tue, Nov 16, 2010 at 11:24:37PM +0100, Jochen Fabricius wrote: Hi all, today I discovered that my network connection on an Acer Aspire X3900 is only 10baseT. Never realized it before because the speed is enough (mostly relatively slow internet connection, no large files to/from other machines). System is 4.8-release. I checked: - wiring: even at shortest connection to the switch only 10baseT was available - other switches - other machines with the same cables, same port on switch The PHY is a 82578, and as I understand the commit messages the support is still basic, but shouldn't at least 100baseTX work? That's what all my switches support. I have to check with a 1 GbE switch, but I don't know if I can get one in the next time. Has anyone higher speeds working with this PHY? This is a known issue with the 82578DC (82578DM doesn't show it). It is likely something along the lines of missing workarounds for particular revisions of the phy. I was afraid of that. Is there anything I could do, maybe send some more information (which?) for solving these issues? The following diff was just committed to -current which should fix this. Index: if_em_hw.c === RCS file: /cvs/src/sys/dev/pci/if_em_hw.c,v retrieving revision 1.64 retrieving revision 1.65 diff -u -p -r1.64 -r1.65 --- if_em_hw.c 2 May 2011 12:25:42 - 1.64 +++ if_em_hw.c 2 May 2011 18:16:58 - 1.65 @@ -31,7 +31,7 @@ ***/ -/* $OpenBSD: if_em_hw.c,v 1.64 2011/05/02 12:25:42 jsg Exp $ */ +/* $OpenBSD: if_em_hw.c,v 1.65 2011/05/02 18:16:58 dhill Exp $ */ /* * if_em_hw.c Shared functions for accessing and configuring the MAC */ @@ -9863,20 +9863,6 @@ em_hv_phy_workarounds_ich8lan(struct em_ } if (hw-phy_type == em_phy_82578) { - if (hw-revision_id 3) { - /* PHY config */ - ret_val = em_write_phy_reg(hw, (1 6) | 0x29, - 0x66C0); - if (ret_val) - goto out; - - /* PHY config */ - ret_val = em_write_phy_reg(hw, (1 6) | 0x1E, - 0x); - if (ret_val) - goto out; - } - /* * Return registers to default by doing a soft reset then * writing 0x3140 to the control register.
Re: XEN-Guest
On Mon, May 2, 2011 at 7:40 PM, Tobias Crefeld t...@cataneo.eu wrote: Am Mon, 2 May 2011 11:15:57 -0500 schrieb John Jackson open...@lacutt.com: It's probably much more straightforward to run kvm-qemu instead of XEN. Hm, I'll consider this alternative. Till now our test-LAN ran on VMware but for some reasons we want to get away from VMware. OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which supports hardware virtualization (egrep svm|vmx /proc/cpuinfo). This egrep isn't successful on my host but this might be due to the fact that it's an AMD-Opteron (Lisbon) and not a Intel-machine. After enabling virtualizing support in BIOS (+ enabling IOMMU) /proc/cpuinfo shows these flags: $ grep flags /proc/cpuinfo |head -1 flags B B B B B : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext 3dnow constant_tsc rep_good nonstop_tsc extd_apicid pni cx16 popcnt hypervisor lahf_lm cmp_legacy extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch nodeid_msr you're looking for svm flag which is not in your output however (not sure what's that hypervisor one) I've successfully run IPSEC (iked and isakmpd both work), bridging and various network services this way. I moved from IPSEC to SSL/OpenVPN some years ago because it's more robust against packet loss but in combination with routing protocols like OSPF OpenVPN seems to be a bad choice as it keeps the tunnel-interfaces AKA link-states always UP even if the tunnel is down. Is there a way IPSEC can handle link-state-protocols better? Regards, B Tobias.
Point-to-point without PPPoe
Hi, Is it possible to configure a point-to-point similar connection without using PPPoe protocol, /30 netmask or VPN? I need to autenticate around 1.000 wireless customers, for this I'll be using authpf, but there's a need to isolate each customer in a way that each client PC can't see each other, but only directly communicates with the Firewall, like a ppp connection. Any advice will be appreciated :) Thanks in advance, Fabio Almeida
Re: [Bulk] XEN-Guest
On Mon, 2 May 2011 17:21:11 +0200 Tobias Crefeld wrote: Any comments are welcome! Any comments welcome about a firewall virtualised ontop of debian. Your brave p.s. what's debian required for?
Re: xenocara doesn't build correctly on 4.9-stable/hppa
Maurice Janssen wrote: Hi, I noticed something strange while building xenocara on 4.9-stable on an hppa-system. One of the files in the xbase49.tgz file set (from 4.9-release) is /usr/X11R6/lib/libfontconfig.so.7.0. After 'make build', there's a libfontconfig.so.5.4 in /usr/X11R6/lib/ that is identical to the 7.0 file from -release. When I do 'make release', only the 5.4 file ends up in /usr/dest/ , resulting in a missing libfontconfig.so file in the xbase49.tgz file set (the maketars script expects that libfontconfig.so.7.0 is there, but it isn't). So for some reason, the libfontconfig.so.x.y file has the wrong name. I tried to find the cause, but I get lost in Makefiles and configure scripts. BTW: I followed the exact steps from the FAQ (section 5.5), with the xenocara source tree on an NFS server. The build / release process works without a hitch on other architectures that use the same NFS server for the source tree. Does anyone know what is going on and, even better, how to fix it? After some more testing, it seems that make -j is causing the problem. I thought xenocara was make -j safe, but apparantly there are some corner cases where things can go wrong. I am now doing a make build again (without -j), and it seems that the problem is gone. Maurice
Re: em(4) is just 10baseT
Hi, The following diff was just committed to -current which should fix this. thanks. I will test it in a few days and report. Jochen Fabricius jfabric...@web.de
Re: XEN-Guest
Am Mon, 2 May 2011 19:40:23 +0200 schrieb Tobias Crefeld t...@cataneo.eu: $ grep flags /proc/cpuinfo |head -1 flags : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext 3dnow constant_tsc rep_good nonstop_tsc extd_apicid pni cx16 popcnt hypervisor lahf_lm cmp_legacy extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch nodeid_msr Sorry, the flag list was accidentally taken from a /proc/cpuinfo after booting a XEN-kernel. With a normal kernel its flag list contains AMD's svm: flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm 3dnowext 3dnow constant_tsc rep_good nonstop_tsc extd_apicid pni monitor cx16 popcnt lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs skinit wdt nodeid_msr Regards, Tobias.
Re: Novice browser questions
On 01-May-11 09:35, Charles Blair wrote: Is the absence of a graphical browser from the base system a statement that any attempt to do such things as look at stuff on youtube is inherently unsafe? Browsers take a lot of space on install media We like choice, not everyone wants Firefox/Opera/Conqueror/whatever, so we leave the choice to the user. Is tor considered a safe way to do anonymous browsing, or does openbsd recommend an alternative? Nothing on the internet is anonymous, you can obfuscate your session all to hell, but it will never be anonymous.
Building a Successful Project Management Office seminar (Istanbul Turkey June 5,6,7 2011)
CMCCO, Construction Management Consultant Co. Has the pleasure to invite you to attend a seminar in: Building a Successful Project Management Office Learn From the Real Experts in Project Management Seminar Overview: An effective project management office (PMO) is central to project management success. Building a successful PMO within your organization is important for proper implementation of project management theory and organizational strategy and successful execution and planning of all projects. This course is intended to guide management staff through the process of creating a PMO within their own organizations. Click for Seminar Outline This unique seminar will be held in Beautiful Istanbul - Turkey this June 5, 6, 7, 2011 Don't miss the chance, reserve your attendance ASAP, Places are limited!! Our training seminars are the fruit of long years of experience and effort of our company, one of the few Lebanese Project Management Within this seminar, this direct experience of CMCCOs PMO will be used for case studies and help material. Seminar Objectives: Identify PMO capabilities Determine the appropriate PMO structure for your organization Determine which PMO functions are required to fulfill your project management support requirements Customize standards for project management methodologies, processes and procedures Overcome barriers related to PMO implementation Create a preliminary PMO implementation plan Align project selection criteria with strategic organizational objectives Provide ongoing project management support through mentoring and coaching. Learn how to create and implement a PROJECT MANAGEMENT MANUAL for your PMO. Who Should Attend: Project managers, program managers, directors, team leaders and all senior management staff. Individuals who need to gain understanding of the PMO and learn how to plan and implement an appropriate PMO within their own organization. Beirut Head Office: Tell: 00961-1-736171 Tel/Fax: 00961-1-744049 Cell: 00961-3-644526 E-mail: i...@cmcco.com, hr...@cmcco.com Webpage: http://www.cmcco.com/ If you are not interested receiving further Newsletters click here to remove
Help finding file-analysis tool?
Sorry to bother you all, but I'm failing miserably at searching for a tool to help analyze the structure of arbitrary files (prefereably one which runs on OpenBSD). I've got a device which exports data in a undocumented format and the only program available to use that data doesn't do what I need, so I need to figure out the file formats so I can communicate with the device the way I need to. What I'm looking for is an interactive program which makes it easy to look at selected parts of a file (individual items, sets of items located at regular intervals, sets of items linked by pointers or offsets, etc) in any of many formats (ascii, unicode, int, double float, etc) and either endianness, store comments about items or sets of items in an aux file, store names for various values in particular items and display those items values using those names, search for patterns at regular intervals or linked by pointers or offsets, etc, etc, etc; all those things which make it easier to discover and keep track of the structure of an unknown file. It's hard to believe that nobody has ever written such a program, but I've been unable to find one. Any suggestions for effective searches or for suitable programs would be appreciated. Thanks, Dave -- Dave Anderson d...@daveanderson.com
Re: IPSEC tunnels failing intermittently
On 5/2/2011 12:13 PM, Vijay Sankar wrote: Per olof Ljungmark wrote: On 05/02/11 18:08, Robert wrote: Hi, Same here, but between 2 hosts in the same subnet (very basic network setup). I was also waiting for 4.9 (and time to investigate...) We see same behaviour on 4.9 so upgrading will not help. On Mon, 2 May 2011 13:30:34 + (UTC) Stuart Henderson s...@spacehopper.org wrote: I see something similar which I've been trying to track down but not really succeeding. The thing we have in common is multiple subnets, I wonder if this is a factor... (and this setup has always been post-4.4 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote: Hi, I am getting some strange problems with IPSEC tunnels. There are 5 sites connected using IPSEC tunnels, which used to work perfectly, but since upgrading to 4.8 (from 4.4), tunnels started failing, seemly at random intervals. To investigate I set up two machines in the lab and they exhibit the same behavior: After a seemingly random amount of time, when there is a renegotiation of an SA due to its lifetime expired, traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat -rn' shows everything as normal. When that SA lifetime expires and a new SA is negotiated it comes back again. I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1 and when it fails I get 'esp_input_cb(): authentication failed for packet in SA xxx.xxx.xxx.97/6e68c6ae' The machines are installed with stock OpenBSD 4.8, nothing special about the configuration. ipsec.conf is very simple, just one line: ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99 Public keys copied across, isakmpd started with flags -K -v Does anyone have any ideas about this? Thank you Jakob Alvermark jakob.alverm...@bsdlabs.com BSDLabs AB Solna, Sweden 556759-7652 FWIW, I have the following number of flows and tunnels using OpenBSD 4.8 at the moment. I have not seen any problems when both peers are OpenBSD servers. Mon May 02 11:57:12 CPU@36.0C # ipsecctl -sa | grep -c flow 160 Mon May 02 11:57:21 CPU@36.0C # ipsecctl -sa | grep -c tunnel 254 Approximately two months ago I had a similar situation to what you described and sort of narrowed it down to the following: The peer site had Cisco ASA VPN concentrator and they had different subnets with 172.16.0.0/24, 172.16.1.0/24, and so on to different customer networks. At our end with OpenBSD, we had a subnet of 172.16.0.0/21 for our internal network. Because the Cisco end could not change their subnet mask, we changed the subnet mask on the OpenBSD box to 172.16.1.0/24 and allowed access only to a few hosts with the address 172.16.1.xx and set up static routes from those boxes to go through the OpenBSD box. The problems seemed to be isolated to the internal hosts at the Cisco end that were NAT'ed out to a DMZ and were accessing our network from the the ASA box located in their DMZ. We reconfigured our firewall rules to allow all traffic to their network to flow through and the problems stopped for a full three weeks. Unfortunately, (apparently) they said that intermittent drops started again (even though we had not made any changes at our end once everything was working properly), blamed me for this problem and asked us to use a Cisco PIX router instead of the OpenBSD box just for their access. So that is what we ended up doing since I had no access to their Cisco gear and they did not have time to troubleshoot. I am also experiencing random drops that last for approximately 14 minutes. This is between two OpenBSD 4.8 boxes. Pinging devices through the IPSec tunnel begins to fail but pinging the external IP address works fine during the outages. I'm new to tunnels so I'm not sure how to troubleshoot exactly. I have multiple subnets on both sides of the f/ws. I was getting cookie errors in /var/log/messages but I don't see them in my recent logs and my log files have turned over.
Re: problems configuring wireless adapter on ThinkPad T-23
On 1 May 2011 22:48, Dale Scott dalesc...@shaw.ca wrote: Hi Fred, thanks for helping. What happens when you do an ifconfig rtw0 scan? Do you see your access point? It looks like I see my access point, as well as one neighbor's (see below). Fyi, I went through config for both wired and wireless interfaces when I installed OpenBSD 4.8, but didn't know how to specify the WEP key for rtw0. Is it possible to config both fxp0 and rtw0 simultaneously? I typically use a wired connection in my study (convenience and because Wireless signal level is low), but use wireless everywhere else. # ifconfig rtw0 scan rtw0: flags=8863UP,BROADCAST,NOTRAILERS,RUNNING,SIMPLEX,MULTICAST mtu 1500 lladdr 00:09:5b:e2:15:2b priority: 4 groups: wlan media: IEEE802.11 autoselect (DS1 mode 11b) status: no network ieee80211: nwid sundancer chan6 bssid 00:13:46:fa:9b:56 127dB nwkey 0xXX nwid sundancer chan 6 bssid 00:13:46:fa:9b:56 127dB 54M privacy,short_preamble,short_slottime lladdr 00:23:7d:05:94:69 127dB 11M ibss cache nwid TELUS3645 chan 1 bssid 00:26:88:e7:e9:30 126dB 54M privacy,short_slottime # Dale Hi Dale, It looks like you have successfully configured your interface, but then you need to get an IP address, so you need an: /sbin/dhclient rtw0 You can do this automatically in a hostname.if file (see man hostname.if), but it should look something like: dhcp \ nwid sundancer nwkey 0xYourHexPassword hth Fred
Re: Openbsd 4.9 released May 1, 2011
On Sun, 1 May 2011 08:16:26 -0600 (MDT) Bob Beck b...@cvs.openbsd.org wrote: May 1, 2011. We are pleased to announce the official release of OpenBSD 4.9. This is our 29th release on CD-ROM (and 30th via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.9 provides significant improvements, including new features, in nearly all areas of the system: thank you developers and people involved for another fine release!
PrevenciĆ³n de Demandas Laborales este 16 de Mayo 2011
[IMAGE] Pms Capacitacisn Efectiva de Mixico presenta: Acciones Preventivas contra las Demandas Laborales Exclusiva presentacisn 16 de Mayo en la Ciudad de Mixico Expositor: Mtro. Alberto Ledesma Gonzalez 10 horas de entrenamiento Empresa Registrada ante la STPS Reg. COLG640205CP30005 Smguenos en Twitter@pmscapacitacion o bien en Facebook PMS de Mixico Mayores informes responda este correo electrsnico con los siguientes datos. Empresa: Nombre: Telifono: Email: Nzmero de Interesados: Y en breve le haremos llegar la informacisn completa del evento. O bien comunmquense a nuestros telifonos un ejecutivo con gusto le atendera Tels. (33) 8851-2365, (33)8851-2741. Copyright (C) 2010, PMS Capacitacisn Efectiva de Mixico S.C. Derechos Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas registradas. ADVERTENCIA PMS de Mixico no cuenta con alianzas estratigicas de ningzn tipo dentro de la Republica Mexicana. NO SE DEJE ENGAQAR - DIGA NO A LA PIRATERIA. Todos los logotipos, marcas comerciales e imagenes son propiedad de sus respectivas corporaciones y se utilizan con fines informativos solamente. Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de Mixico o bien un usuario le refiris para recibir este boletmn. Como usuario de Pms de Mixico, en este acto autoriza de manera expresa que Pms de Mixico le puede contactar vma correo electrsnico u otros medios. Si usted ha recibido este mensaje por error, haga caso omiso de el y reporte su cuenta respondiendo este correo con el subject BAJADEMANDAS Unsubscribe to this mailing list, reply a blank message with the subject UNSUBSCRIBE BAJADEMANDAS Tenga en cuenta que la gestisn de nuestras bases de datos es de suma importancia y no es intencisn de la empresa la inconformidad del receptor. [demime 1.01d removed an attachment of type image/jpeg which had a name of demandaspromo.jpg]
Re: Samsung Galaxy S USB Tethering (patch)
On Sat, Apr 30, 2011 at 04:08:35PM -0600, Erik Mugele wrote: The following patch against -current enables the Samsung Galaxy S Android device (Samsung Captivate with ATT) to be be used for USB tethering. [snip] Index: if_urndis.c === RCS file: /cvs/src/sys/dev/usb/if_urndis.c,v retrieving revision 1.29 diff -u -r1.29 if_urndis.c --- if_urndis.c 25 Jan 2011 20:03:35 - 1.29 +++ if_urndis.c 30 Apr 2011 19:02:43 - @@ -135,7 +135,8 @@ * Supported devices that we can't match by class IDs. */ static const struct usb_devno urndis_devs[] = { - { USB_VENDOR_HTC, USB_PRODUCT_HTC_ANDROID } + { USB_VENDOR_HTC, USB_PRODUCT_HTC_ANDROID }, + { USB_VENDOR_SAMSUNG2, USB_PRODUCT_SAMSUNG2_ANDROID } }; usbd_status Index: usbdevs === RCS file: /cvs/src/sys/dev/usb/usbdevs,v retrieving revision 1.544 diff -u -r1.544 usbdevs --- usbdevs 24 Apr 2011 02:55:50 - 1.544 +++ usbdevs 30 Apr 2011 19:02:50 - @@ -3269,6 +3269,7 @@ /* Samsung products */ product SAMSUNG2 RT2870_10x2018 RT2870 product SAMSUNG2 I3300x8001 I330 +product SAMSUNG2 ANDROID 0x6881 Android Phone USB Tethering product SAMSUNG SWL2100W 0xa000 SWL-2100U /* ScanLogic products */ Original message and patch at http://marc.info/?l=openbsd-miscm=130420171126624w=2 The following patch updates the urndis(4) man page to add the Samsung Galaxy S and cooresponds to the aforementioned original patch if/when it is committed. I'm not sure if the Samsung *Nexus* S on this man page refers to another device or is a typo for the Samsung Galaxy S, but the Galaxy S was not supported by urndis(4) before. Index: urndis.4 === RCS file: /cvs/src/share/man/man4/urndis.4,v retrieving revision 1.8 diff -u -r1.8 urndis.4 --- urndis.429 Apr 2011 17:04:33 - 1.8 +++ urndis.43 May 2011 01:20:45 - @@ -61,6 +61,8 @@ HTC Wildfire .It Samsung Nexus S +.It +Samsung Galaxy S .El .Pp The Erik
Re: Samsung Galaxy S USB Tethering (patch)
On Sat, Apr 30, 2011 at 18:08, Erik Mugele e...@teuton.org wrote: The following patch against -current enables the Samsung Galaxy S Android device (Samsung Captivate with ATT) to be be used for USB tethering. With or without this patch, the device can still act as a modem and can be used with PPP. With this patch, the device can be used as an IP router over USB the same way that the Mobile AP mode works. A new USB device shows up when USB tethering is enabled on the Galaxy S. [big snip] Erik, great work and great patch... I, too, have a Samsung Galaxy S. Your patch did not apply correctly, so here is my version of it.I've also attached a diff of usbdevs.h . Index: if_urndis.c === RCS file: /cvs/src/sys/dev/usb/if_urndis.c,v retrieving revision 1.29 diff -N -u if_urndis.c --- if_urndis.c 25 Jan 2011 20:03:35 - 1.29 +++ if_urndis.c 3 May 2011 00:14:49 - @@ -135,7 +135,8 @@ * Supported devices that we can't match by class IDs. */ static const struct usb_devno urndis_devs[] = { - { USB_VENDOR_HTC, USB_PRODUCT_HTC_ANDROID } + { USB_VENDOR_HTC, USB_PRODUCT_HTC_ANDROID }, + { USB_VENDOR_SAMSUNG2, USB_PRODUCT_SAMSUNG2_ANDROID } }; usbd_status Index: usbdevs === RCS file: /cvs/src/sys/dev/usb/usbdevs,v retrieving revision 1.544 diff -N -u usbdevs --- usbdevs 24 Apr 2011 02:55:50 - 1.544 +++ usbdevs 3 May 2011 00:15:01 - @@ -3269,6 +3269,7 @@ /* Samsung products */ product SAMSUNG2 RT2870_1 0x2018 RT2870 product SAMSUNG2 I330 0x8001 I330 +product SAMSUNG2 ANDROID 0x6881 Android Phone USB Tethering product SAMSUNG SWL2100W 0xa000 SWL-2100U /* ScanLogic products */ Index: usbdevs.h === RCS file: /cvs/src/sys/dev/usb/usbdevs.h,v retrieving revision 1.554 diff -N -u usbdevs.h --- usbdevs.h 24 Apr 2011 02:56:01 - 1.554 +++ usbdevs.h 3 May 2011 00:15:11 - @@ -3276,6 +3276,7 @@ /* Samsung products */ #defineUSB_PRODUCT_SAMSUNG2_RT2870_1 0x2018 /* RT2870 */ #defineUSB_PRODUCT_SAMSUNG2_I330 0x8001 /* I330 */ +#defineUSB_PRODUCT_SAMSUNG2_ANDROID0x6881 /* Android USB Tether */ #defineUSB_PRODUCT_SAMSUNG_SWL2100W0xa000 /* SWL-2100U */ /* ScanLogic products */
Re: IPSEC tunnels failing intermittently
I see nearly identical results between two hosts running 4.8-stable. I believe it started after upgrading to 4.8. I see nothing in the logs during the outage. I have two tunnels, inside - inside and inside - outside. I can see the outage via gaps in Cacti graphs. To help me troubleshoot during the outage, I configured ifstated on the Cacti host (not an IPSEC endpoint) with a ping test to the inside of the remote gateway. This is supposed to alert me when the tunnel has issues. Interestingly, while the Cacti graphs shows gaps, the ifstated ping test has never failed. -Steve S. -Original Message- From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of MG Sent: Monday, May 02, 2011 3:59 PM To: misc@openbsd.org Subject: Re: IPSEC tunnels failing intermittently ... I am also experiencing random drops that last for approximately 14 minutes. This is between two OpenBSD 4.8 boxes. Pinging devices through the IPSec tunnel begins to fail but pinging the external IP address works fine during the outages. I'm new to tunnels so I'm not sure how to troubleshoot exactly. I have multiple subnets on both sides of the f/ws. I was getting cookie errors in /var/log/messages but I don't see them in my recent logs and my log files have turned over.
Tome Acciones Preventivas contra Demandas Laborales
[IMAGE] Acciones Preventivas Contra las Demandas Laborales 16 de Mayo / Mixico, D.F. PMS Capacitacisn Efectiva de Mixico . Le presenta este exclusivo seminario, debemos de tomar en cuenta que una demanda es el inicio de un juicio laboral, en la cual se dirige a los miembros de la Junta Especial de Conciliacisn y Arbitraje, ya sea local o federal, en donde el trabajador, quien normalmente es quien promueve, manifiesta su inconformidad con su patrsn mediante la vma legal, reclamando diversas prestaciones, las cuales pueden ser justificadas o no. Esto le representa una considerable perdida de tiempo y recursos en caso de no tener una correcta cultura preventiva. Beneficios para usted: -Desarrolle Mecanismos de Prevencisn de Demandas Laborales para la proteccisn de su empresa u organizacisn. -Conozca los alcances de los recursos legales del Patrsn y csmo aprovechar los mismos. -Aprenda a ejecutar acciones contundentes y eficaces en esta materia. Ventajas de asistir a nuestro seminario: Es la forma mas efectiva para mantenerse a la vanguardia, le brindara estrategias aplicables en su organizacisn, y una excelente retroalimentacisn con los asistentes de diferentes empresas. Duracisn: 10 Horas de entrenamiento. Presentado por el experto consultor: Lic. Alberto Ledesma G. !Promociones Especiales para Grupos! Mayores informes responda este correo electrsnico con los siguientes datos. Empresa: Nombre: Telifono: Email: Nzmero de Interesados: Y en breve le haremos llegar la informacisn completa del evento. O bien comunmquense a nuestros telifonos un ejecutivo con gusto le atendera Tels. (33) 8851-2365, (33)8851-2741. Copyright (C) 2010, PMS Capacitacisn Efectiva de Mixico S.C. Derechos Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas registradas. ADVERTENCIA PMS de Mixico no cuenta con alianzas estratigicas de ningzn tipo dentro de la Republica Mexicana. NO SE DEJE ENGAQAR - DIGA NO A LA PIRATERIA. Todos los logotipos, marcas comerciales e imagenes son propiedad de sus respectivas corporaciones y se utilizan con fines informativos solamente. Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de Mixico o bien un usuario le refiris para recibir este boletmn Como usuario de Pms de Mixico, en este acto autoriza de manera expresa que Pms de Mixico le puede contactar vma correo electrsnico u otros medios. Si usted ha recibido este mensaje por error, haga caso omiso de el y reporte su cuenta respondiendo este correo con el subject BAJADEMANDAS Unsubscribe to this mailing list, reply a blank message with the subject UNSUBSCRIBE BAJADEMANDAS Tenga en cuenta que la gestisn de nuestras bases de datos es de suma importancia y no es intencisn de la empresa la inconformidad del receptor. [demime 1.01d removed an attachment of type image/jpeg which had a name of image001pmsjpg.jpg]