Re: wifi firmware for lenovo thinkpad E420

[Siju George]

On Fri, May 4, 2012 at 5:39 PM, Stuart Henderson s...@spacehopper.org wrote:

 Realtek 8188CE rev 0x01 at pci4 dev 0 function 0 not configured

 urtwn(4) is for USB-attached devices, your wlan controller is an
 unsupported PCIE device.


Any idea if it will get supported in the near future
Is this a class of device for which no documentation is available or something?

Thanks :-)

Siju

Re: slightly OT be my own dyndns provider

[richo]

DNS.he.net is free, dynamic and full access.

Girish Venkatachalam girishvenkatacha...@gmail.com wrote:

Dear misc,

How are you guys doing?

I have a practical requirement.

IPv4 address space is fast depleting as you all know and dynamic DNS
RFC2136 is helping us out but...

I dunno how to obtain access to my resolver records. I have registered
with net4india and I dunno
 if they will give me access to their master records. They have an
option to create a child NS.

Using that will I be able to push changes using nsupdate?

In short I want to be my own dyn dns provider. Once I get that far I
can easily script to update the
 A record myself.

Will any registrar like register.com or godaddy give this facility?

They all give a web interface which does not help us to do this.

What do you folks do?

Thanks for your time. In case you are wondering why I need this, it is
for VPN. :)

I have multiple VPN nodes connecting to a static IP,but how can
someone from the wild connect to the
 VPN client?

-Girish

--
Gayatri Hitech
http://gayatri-hitech.com

--
Sent from my Android phone with K-9 Mail. Please excuse my brevity.

TCP Out-of-order packets on a machine behind an OpenBGPd based router

[bernd]

Hi misc,

I'm about to set up two OpenBGPd machines. At the moment they are each
connected to two different upstream providers running OpenBGPd (and
OpenOSFPd on the internal interfaces). Operating system is

OpenBSD test-a.openbgp.bla.com 5.0 GENERIC.MP#0 amd64

(dmesg below)

On a host reserved for testing (CentOS 6.2 x86_64), which sits 
logically

(seen from the internet) behind those machines, in a otherwise empty
/22, I see weird network problems (tcpdumping traffic on port 25, and
loading it into wireshark for further analysis):

Receiving mails (port 25, plain SMTP, a 3MiByte attachment) from an
external mail server, which comes in via one of the new BGP machines, I
see massive 'TCP out of order' messages in wireshark, as well as 'TCP
Dup ACK' messages. This is on the testbed machine itself.

On the OpenBGPd router, captured exactly the same traffic, all seems
perfect.

There are two Cisco switches sitting between test-a.openbgp.bla.com and
the testbed mail server, all interfaces perfectly clean, no duplex
problems, no underruns, no runts, nothing -- perfect.

Traffic within my AS is also absolutely no problem, the Linux machine
runs here perfectly as well.

Any idea where to look?

Thanks,

Bernd

$ dmesg

OpenBSD 5.0-stable (GENERIC.MP) #0: Mon Mar 19 08:29:55 CET 2012
r...@bla.bla.bla:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4285071360 (4086MB)
avail mem = 4156882944 (3964MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.6 @ 0x9f000 (74 entries)
bios0: vendor American Megatrends Inc. version 1.0c date 05/27/2010
bios0: Supermicro X8SIE
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP APIC MCFG OEMB HPET GSCI SSDT EINJ BERT ERST 
HEST

acpi0: wakeup devices P0P1(S4) P0P3(S4) P0P4(S4) P0P5(S4) P0P6(S4)
BR1E(S4) PS2K(S4) PS2M(S4) USB0(S4) USB1(S4) USB2(S4) USB3(S4) USB4(S4)
USB5(S4) USB6(S4) GBE_(S4) BR20(S4) BR21(S4) BR22(S4) BR23(S4) BR24(S4)
BR25(S4) BR26(S4) BR27(S4) EUSB(S4) USBE(S4) SLPB(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Xeon(R) CPU X3430 @ 2.40GHz, 2400.35 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,NXE,LONG
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Xeon(R) CPU X3430 @ 2.40GHz, 2400.00 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,NXE,LONG
cpu1: 256KB 64b/line 8-way L2 cache
cpu2 at mainbus0: apid 4 (application processor)
cpu2: Intel(R) Xeon(R) CPU X3430 @ 2.40GHz, 2400.00 MHz
cpu2:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,NXE,LONG
cpu2: 256KB 64b/line 8-way L2 cache
cpu3 at mainbus0: apid 6 (application processor)
cpu3: Intel(R) Xeon(R) CPU X3430 @ 2.40GHz, 2400.00 MHz
cpu3:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,NXE,LONG
cpu3: 256KB 64b/line 8-way L2 cache
ioapic0 at mainbus0: apid 7 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 1, remapped to apid 7
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (P0P1)
acpiprt2 at acpi0: bus 1 (P0P3)
acpiprt3 at acpi0: bus -1 (P0P6)
acpiprt4 at acpi0: bus 7 (BR1E)
acpiprt5 at acpi0: bus 2 (BR20)
acpiprt6 at acpi0: bus 3 (BR24)
acpiprt7 at acpi0: bus 4 (BR25)
acpiprt8 at acpi0: bus 5 (BR26)
acpiprt9 at acpi0: bus 6 (BR27)
acpicpu0 at acpi0: C3, C2, C1, PSS
acpicpu1 at acpi0: C3, C2, C1, PSS
acpicpu2 at acpi0: C3, C2, C1, PSS
acpicpu3 at acpi0: C3, C2, C1, PSS
acpibtn0 at acpi0: SLPB
acpibtn1 at acpi0: PWRB
ipmi at mainbus0 not configured
cpu0: Enhanced SpeedStep 2400 MHz: speeds: 2401, 2400, 2267, 2133, 
2000,

1867, 1733, 1600, 1467, 1333, 1200 MHz
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 Intel Core DMI rev 0x11
ppb0 at pci0 dev 3 function 0 Intel Core PCIE rev 0x11: msi
pci1 at ppb0 bus 1
em0 at pci1 dev 0 function 0 Intel PRO/1000 (82576) rev 0x01: msi,
address 00:1b:21:b7:29:bc
em1 at pci1 dev 0 function 1 Intel PRO/1000 (82576) rev 0x01: msi,
address 00:1b:21:b7:29:bd
Intel Core Management rev 0x11 at pci0 dev 8 function 0 not 
configured

Intel Core Scratch rev 0x11 at pci0 dev 8 function 1 not configured
Intel Core Control rev 0x11 at pci0 dev 8 function 2 not configured
Intel Core Misc rev 0x11 at pci0 dev 8 function 3 not configured
Intel Core QPI Link 

Apache won't start after pecl-imagick installation

[Mik J]

Hello,


I'm reinstalling my system from 4.9 to 5.1
I have installed
pecl-imagick and stopped/started Apache but I have a seg fault (core dumped).
If I uninstall this package Apache stops/starts nicely.

I have read this page
http://www.openbsd.org/faq/upgrade50.html#Pkgup
The last point talks about my
problem and advices to add in /etc/login.conf
httpd:\
 :setenv=LD_PRELOAD=/usr/lib/libpthread.so:\
 :tc=daemon:

This doesn't help,
I still have the same problem with Apache. Also /usr/lib/libpthread.so doesn't
exist so I replaced it with /usr/lib/libpthread.so.13.3 but still no success.
Maybe I didn't understand something on this page. Can someone clarifies what I
have to do because I feel that I followed the documentation without success.
Thank you

Problems with Dell ALPS touchpad on -current

[Nils Reuße]

I did some more research and got the following (including vendor and
product ids) from my Arch Linux installation:

$ uname -rsm
Linux 3.3.4-2-ARCH x86_64


$ cat /proc/bus/input/devices
[...]
I: Bus=0011 Vendor=0002 Product=0008 Version=
N: Name=DualPoint Stick
P: Phys=isa0060/serio1/input1
S: Sysfs=/devices/platform/i8042/serio1/input/input7
U: Uniq=
H: Handlers=mouse0 event7
B: PROP=0
B: EV=7
B: KEY=7 0 0 0 0
B: REL=3

I: Bus=0011 Vendor=0002 Product=0008 Version=7326
N: Name=AlpsPS/2 ALPS DualPoint TouchPad
P: Phys=isa0060/serio1/input0
S: Sysfs=/devices/platform/i8042/serio1/input/input8
U: Uniq=
H: Handlers=mouse1 event8
B: PROP=8
B: EV=b
B: KEY=e420 7 0 0 0 0
B: ABS=2608103
[...]


$ lsinput
[...]
/dev/input/event7
   bustype : BUS_I8042
   vendor  : 0x2
   product : 0x8
   version : 0
   name: DualPoint Stick
   phys: isa0060/serio1/input1
   bits ev : EV_SYN EV_KEY EV_REL

/dev/input/event8
   bustype : BUS_I8042
   vendor  : 0x2
   product : 0x8
   version : 29478
   name: AlpsPS/2 ALPS DualPoint TouchPad
   phys: isa0060/serio1/input0
   bits ev : EV_SYN EV_KEY EV_ABS
[...]


Does this help? lsinput comes from
http://www.kraxel.org/releases/input/ and is available in
debian/ubuntu.

Best regards,
Nils

Re: Huawei EM770W modem in GPS mode

[Fred Crowson]

On 7 May 2012 08:10, Baurzhan Muftakhidinov baurthefi...@gmail.com wrote:
 Will try latest snapshot to see how it works.

 For those who interested in Huawei EM770W GPS function:
 I finally managed to make GPS work in Linux.
 Direct echo 'AT^WPDGP'  /dev/ttyUSB0 did not work, so I used wvdial to pass
 this command to device.
 so, /dev/ttyUSB3 is your GPS device.

 Cheers,


Have you tried getting it to work with pppd?

hth

Fred

Re: slightly OT be my own dyndns provider

[Stuart Henderson]

On 2012-05-08, Girish Venkatachalam girishvenkatacha...@gmail.com wrote:
 I dunno how to obtain access to my resolver records. I have registered
 with net4india and I dunno
  if they will give me access to their master records. They have an
 option to create a child NS.

One method is to run your own name server and have a way to update the
zone database with your dynamically updated entries. Might be simplest
with an authoritative DNS server that can work directly from a database
(like powerdns), though I have no idea how these work with replication
and zone transfers, so you might need to run the same software on any
secondary servers.

Another option is to use generated zone files, and some normal server
software like NSD or BIND. You could have secondary servers who receive
updates to distribute the query load. As a dynamic DNS service has to
use low TTLs there could be quite a lot of traffic for updates so look
into software and providers that can do IXFR not just AXFR. This way
you could use a standard secondary-DNS service (various free/commercial
ones available).

Alternatively outsource DNS hosting to a provider who has an API
for making updates to zones (thinking something like amazon route 53
or dyn.com, *but* be aware that the ones I know of do not have good
geographic distribution of servers outside of Europe and USA;
nothing currently in or particularly close to India, though it is
planned for dyn).

Or you could do a blend, serve things locally at your own server/s
and also push updates to an API-based provider if they need to be
served globally..

Re : Ftpd chroot in a user folder name

[Mik J]

Hello,
Not exactly the accurate answer to your question but I use pure-ftpd.
It does exactly what you want: A user is chrooted and cannot see other users
directories (which are not within the user's tree)



- Mail original
-
 De : Wesley open...@e-solutions.re
 @ : Nicolai
nicolai-om...@chocolatine.org
 Cc : misc@openbsd.org
 Envoyi le : Lundi 7
mai 2012 19h44
 Objet : Re: Ftpd chroot in a user folder name
 
 I already
read man pages of ftpd ;-)
 All are well explained. Need to play with
/etc/ftpchroot and /etc/ftpusers, 
 /etc/login.conf (ftp-dir and ftp-chroot)
 
 I can chroot to for example /var/www/htdocs but all users will see the
others 
 folders, it is a problem.
 I just want that for example user named
: site1 can access (chroot) 
 only his folder /var/www/htdocs/site1
 It is
why i tried something like : ftp-dir=/var/www/htdocs/%u (but the 
 %u is
misunderstood)
 
 Any idea ? or a better way to achieve this ?
 
 Thank
you very much.
 
 --
 Wesley
 
  The ftpd manpage says
 
  
ftp-chroot  A boolean value.  If set, users in this class will be
  
 automatically chrooted to the user's login directory.
 
  ftpd wants
to chroot to the user's login directory... so what is the
  login
directory?  Is ftpd chrooting to the user's home directory?  If
  so, it is
doing exactly what you told it to do.
 
  Nicolai

Programa de Cursos de Capacitación Mayo 2012

[Antonio Robles M.]

Programa de Cursos para el Mes de Mayo de 2012

Coaching y Multihabilidades Gerenciales
17 de Mayo Cd. de Mixico
El Nuevo concepto de Coaching y Multihabilidades le ayudara a mejorar y
aumentar su capacidad de trabajo, con las ticnicas mas modernas y efectivas
que usted necesita para destacar en su organizacisn.

Administracisn y Optimizacisn del Tiempo
18 de Mayo Cd. de Mixico
Comprenda el concepto de administracisn del tiempo y productividad personal y
aprendan a manejar modelos y herramientas para incrementarla.

Como Pagar y Motivar a la Fuerza de Ventas
22 de Mayo Cd de Mixico
Una visisn integral a travis de los diferentes modelos de pago, con el fin de
instrumentar un esquema que motive al equipo de ventas y permita alcanzar los
objetivos.

Estrategia del Ociano Azul
23 de Mayo Cd de Mixico
Desarrolle estrategias y propuestas de valor para generar demandas latentes y
de alto valor con una orientacisn a los no clientes.

Formacisn Profesional para Asistentes Ejecutivas y Secretarias
25 de Mayo Cd de Mixico
Identifique las competencias basicas en la funcisn de asistentes ejecutivas y
secretarias, practicando herramientas que les permitan optimizar su trabajo y
mejorar su calidad de servicio.

Inteligencia Emocional y Manejo del Estris
28 de Mayo Cd de Mixico
El ixito profesional, independientemente de la profesisn, esta definido en 80%
por la inteligencia emocional y en 20% por el CI.

Marketing Estratigico
28 de Mayo Cd de Mixico
Conozca los fundamentos de la planificacisn empresarial, asm como los
conceptos del marketing estratigico, de cara a establecer estrategias que le
permitan maximizar el beneficio de su empresa.

Ortografma y Redaccisn para Ejecutivos
29 de Mayo Cd de Mixico
Desarrolle habilidades y ticnicas que le permitiran una comunicacisn escrita
eficaz para expresarse correctamente.

El Arte de Saber Servir al Cliente
29 de Mayo Cd de Mixico
Reafirma la importancia y conveniencia de otorgar servicios y atencisn de alta
calidad a los clientes, tanto internos como externos.

La Prospeccisn Profesional
30 de Mayo Cd de Mixico
Conozca por que la Prospeccisn en un factor clave en la carrera de todo
vendedor profesional

Mercadotecnia Moderna de las 4 P a las 4 C
30 de Mayo Cd de Mixico
Los esfuerzos de las empresas ahora no solo se orientan a ofrecer un buen
producto, sino un buen servicio.

Organizacisn y Conservacisn de Archivos Oficiales
31 de Mayo Cd de Mixico
Aprenda a archivar y servir los documentos de una forma ticnica y
estandarizada de acuerdo a los lineamientos de la Ley de Transparencia.


. Todos los Derechos Reservados ) TIEM Talento e Innovacisn Empresarial de
Mixico

Polmtica de Privacidad TIEM de Mixico

Re: ipsec.conf ,routers and endpoints - third try

[Stuart Henderson]

On 2012-05-08, shadrock shadr...@ntlworld.com wrote:
 hi stuart
 thanks for your answer and advice,
 i am working on a modified ddns update script to signal a restart of 
 isakmpd when the dynamic ip changes, will implement isakmpd else will 
 follow your suggestion and use openvpn for my net to net link, i had 
 already planned to use openvpn for my roadwarriors.
 shadrock



The problem is that when the address of one side changes, it's the *other*
side that you need to restart. so you might want a regularly-run script to
do a lookup to work out when this needs doing, although in practice I don't
think VM change addresses all that often so it might be good enough to have
the update script email/text you to tell you to update the other side...

(there is a 'static IP' option on VM business services but afaict they
are just about as likely to change addresses on you as the standard service,
just that they try and tell you about it beforehand).

Re: Problems with Dell ALPS touchpad on -current

[Martin Pieuchot]

On 08/05/12(Tue) 13:53, Nils ReuCe wrote:
 I did some more research and got the following (including vendor and
 product ids) from my Arch Linux installation:

 [...]

 I: Bus=0011 Vendor=0002 Product=0008 Version=7326
   

If you look at /sys/dev/pckbc/pms.c you'll find:

#if 0
 { 0x7326, 0, 0 },   /* XXX Uses unknown v3 protocol */
#endif

Your touchpad uses a different protocol and is currently not supported
under OpenBSD. But if like you said Linux now supports this version of
ALPS touchpads, it should be possible to learn this protocol from their
driver.

If you have some diffs, don't hesitate to contact me.

Martin

Re: slightly OT be my own dyndns provider

[Simon Perreault]

On 2012-05-08 08:09, Stuart Henderson wrote:

One method is to run your own name server and have a way to update the
zone database with your dynamically updated entries.[...]

Another option is to use generated zone files  [...]

Alternatively outsource DNS hosting  [...]

Or you could do a blend, serve things locally at your own server/s
and also push updates to an API-based provider[...]


Why not nsupdate(8)?

Simon

Re: Ftpd chroot in a user folder name

[Stuart Henderson]

On 2012-05-07, Wesley open...@e-solutions.re wrote:
 Test it, the chroot is not possible, the %u is not accepted.

Why would %u be accepted? Nowhere is this given in documentation.

ftp-chroot  A boolean value.  If set, users in this class will be
 automatically chrooted to the user's login directory.

 ftp-dir A path to a directory.  This value overrides the login
 directory for users in this class.  A leading tilde (`~') in
 ftp-dir will be expanded to the user's home directory based
 on the contents of the password database.

So the easy way is to change the user's home dir in /etc/master.passwd
to wherever you want them chrooted to (i.e. /var/www/whatever) and just
set 'ftp-chroot'.

Or if you want them to have a *different* home directory than
ftp-directory you can have their home dir in master.passwd set how
you like it, and put each user in a separate class with an override
for ftp-dir (though this would be pretty insane).

 and cap_mkdb /etc/login.conf

Running cap_mkdb on /etc/login.conf is for special cases. From login.conf
with my highlighting:

Sites with VERY LARGE /etc/login.conf files may wish to create a database
 version of the file, /etc/login.conf.db, for improved performance.  USING
 A DATABASE VERSION FOR SMALL FILES DOES NOT RESULT IN A PERFORMANCE
 IMPROVEMENT.  To build /etc/login.conf.db from /etc/login.conf the
 following command may be used:

   # cap_mkdb /etc/login.conf

 Note that cap_mkdb(1) must be run after each edit of /etc/login.conf to
 keep the database version in sync with the plain file.

The risk of not updating login.conf.db far outweighs the time saving unless
you truly have a very large login.conf file and frequent logins. I suggest
deleting it.

Re: Ftpd chroot in a user folder name

[Wesley]

Thank you very much for your explanation. I understand better.
I finally use sftp using this in the file /etc/ssh/sshd_config :
...
Match User site1
ChrootDirectory /var/www/htdocs/website1
ForceCommand internal-sftp
PasswordAuthentication yes

Match User site2
ChrootDirectory /var/www/htdocs/website2
ForceCommand internal-sftp
PasswordAuthentication yes
--EOF

And in each chroot there's a folder 'site'.
Your method using ftpd is easiest to achieve the goal, i will probably 
apply it later.


Cheers,

Wesley.


Le 2012-05-08 16:48, Stuart Henderson a C)critB :

On 2012-05-07, Wesley open...@e-solutions.re wrote:

Test it, the chroot is not possible, the %u is not accepted.


Why would %u be accepted? Nowhere is this given in documentation.

ftp-chroot  A boolean value.  If set, users in this class will 
be
 automatically chrooted to the user's login 
directory.


 ftp-dir A path to a directory.  This value overrides the 
login
 directory for users in this class.  A leading tilde 
(`~') in
 ftp-dir will be expanded to the user's home 
directory based

 on the contents of the password database.

So the easy way is to change the user's home dir in 
/etc/master.passwd
to wherever you want them chrooted to (i.e. /var/www/whatever) and 
just

set 'ftp-chroot'.

Or if you want them to have a *different* home directory than
ftp-directory you can have their home dir in master.passwd set how
you like it, and put each user in a separate class with an override
for ftp-dir (though this would be pretty insane).


and cap_mkdb /etc/login.conf


Running cap_mkdb on /etc/login.conf is for special cases. From 
login.conf

with my highlighting:

Sites with VERY LARGE /etc/login.conf files may wish to create a
database
 version of the file, /etc/login.conf.db, for improved
performance.  USING
 A DATABASE VERSION FOR SMALL FILES DOES NOT RESULT IN A 
PERFORMANCE
 IMPROVEMENT.  To build /etc/login.conf.db from /etc/login.conf 
the

 following command may be used:

   # cap_mkdb /etc/login.conf

 Note that cap_mkdb(1) must be run after each edit of 
/etc/login.conf to

 keep the database version in sync with the plain file.

The risk of not updating login.conf.db far outweighs the time saving 
unless
you truly have a very large login.conf file and frequent logins. I 
suggest

deleting it.

Re: FYA: problem with a few mirrors + SHA256 question + rsync + missing package signings

[Stuart Henderson]

On 2012-05-07, Gasko, Peter gaskopeter0...@postafiok.hu wrote:

 FYA (I have to post here, because I can't find e-mail address to these
 mirrors):
 -

 # having install50.iso
 ftp://ftp2.eu.openbsd.org/pub/OpenBSD/5.1/amd64/install50.iso

I notified the mirror maintainer, he is fixing it.

 # not having 5.1
 ftp://ftp.arcane-networks.fr/pub/OpenBSD/5.1/amd64/
 ftp://ftp.irisa.fr/pub/OpenBSD/5.1/amd64/
 ftp://ftp.bytemine.net/pub/OpenBSD/5.1/amd64/
 ftp://mirror.yongbok.net/pub/OpenBSD/5.1/amd64/
 ftp://ftp.piotrkosoft.net/pub/OpenBSD/5.1/amd64/
 ftp://ftp.lambdaserver.com/pub/OpenBSD/5.1/amd64/

At least one of these does have 5.1, and there are others which don't.
I'll give them a while longer to catch up (release wasn't very long
ago and it is ~120GB or so) I'll go through and start removing sites
from ftp.html in a week or so if 5.1 is still missing.


 Question#1: What is the /pub/OpenBSD/5.1/packages/amd64/SHA256? Can
 anyone tell?

SHA256 hashes of the packages in base-64 format. Works with cksum -c.

 Question#2: Can rsync work with ssh? Or just rsync?

 rsync -v -e ssh rsync://ftp5.eu.openbsd.org/OpenBSD/5.1/packages/amd64/SHA256
 .
 u...@ftp5.eu.openbsd.org's password:

Sure rsync can work with ssh. but do you really expect to have a login
account on a public mirror to run it?!

 Question#3: Why are package signings missing?
 -

 Why aren't the packages from ex.:
 ftp2.eu.openbsd.org/pub/OpenBSD/5.1/packages/amd64/ signed? Would it
 be a big deal to give out a few extra commands? :O :\
 AFAIK pkg_add checks the keys of the downloaded packages if the
 package is signed (FIXME).

OpenBSD doesn't do that. I'm sure this has come up on the lists already
quite a few times. You can download the packages manually and check
the SHA256 signatures if you like (I would suggest downloading the
SHA256 file from a different mirror or ftp.openbsd.org), and the
package has internal SHA256 signatures in the packing list which will
detect broken transfers and corruption in-transit, but if you want more
reassurance than that, build your own packages. See 'man dpb'.

Re: Problems with Dell ALPS touchpad on -current

[Nils Reuße]

Hi Martin, thank you for the hint. Unfortunately, I have no experience
with driver programming, so I won't be able to provide diffs :(

Best regards,
Nils



2012/5/8 Martin Pieuchot mpieuc...@nolizard.org:
 On 08/05/12(Tue) 13:53, Nils Reu_e wrote:
 I did some more research and got the following (including vendor and
 product ids) from my Arch Linux installation:

 [...]

 I: Bus=0011 Vendor=0002 Product=0008 Version=7326
   

 If you look at /sys/dev/pckbc/pms.c you'll find:

#if 0
 { 0x7326, 0, 0 },   /* XXX Uses unknown v3 protocol */
#endif

 Your touchpad uses a different protocol and is currently not supported
 under OpenBSD. But if like you said Linux now supports this version of
 ALPS touchpads, it should be possible to learn this protocol from their
 driver.

 If you have some diffs, don't hesitate to contact me.

 Martin

Re: TCP Out-of-order packets on a machine behind an OpenBGPd based router

[Stuart Henderson]

On 2012-05-08, be...@kroenchenstadt.de be...@kroenchenstadt.de wrote:
 Hi misc,

 I'm about to set up two OpenBGPd machines. At the moment they are each
 connected to two different upstream providers running OpenBGPd (and
 OpenOSFPd on the internal interfaces). Operating system is

 OpenBSD test-a.openbgp.bla.com 5.0 GENERIC.MP#0 amd64

 (dmesg below)

 On a host reserved for testing (CentOS 6.2 x86_64), which sits 
 logically
 (seen from the internet) behind those machines, in a otherwise empty
 /22, I see weird network problems (tcpdumping traffic on port 25, and
 loading it into wireshark for further analysis):

 Receiving mails (port 25, plain SMTP, a 3MiByte attachment) from an
 external mail server, which comes in via one of the new BGP machines, I
 see massive 'TCP out of order' messages in wireshark, as well as 'TCP
 Dup ACK' messages. This is on the testbed machine itself.

 On the OpenBGPd router, captured exactly the same traffic, all seems
 perfect.

 There are two Cisco switches sitting between test-a.openbgp.bla.com and
 the testbed mail server, all interfaces perfectly clean, no duplex
 problems, no underruns, no runts, nothing -- perfect.

 Traffic within my AS is also absolutely no problem, the Linux machine
 runs here perfectly as well.

 Any idea where to look?

Is PF in use? if so, have you done anything to make sure that you
aren't running into problems due to stateful firewall only seeing
half the packets (i.e. inbound via one machine, outbound via the
other)?

(Specifically, if this is happening and unavoidable, you could look
at 'defer' in pfsync, or sloppy states in PF).



 Thanks,

 Bernd

 $ dmesg

[ snipped from quote, but thanks for including it :) ]

Re: Apache won't start after pecl-imagick installation

[Stuart Henderson]

On 2012-05-08, Mik J mikyde...@yahoo.fr wrote:
 Hello,


 I'm reinstalling my system from 4.9 to 5.1
 I have installed
 pecl-imagick and stopped/started Apache but I have a seg fault (core dumped).
 If I uninstall this package Apache stops/starts nicely.

 I have read this page
 http://www.openbsd.org/faq/upgrade50.html#Pkgup
 The last point talks about my
 problem and advices to add in /etc/login.conf
 httpd:\
 :setenv=LD_PRELOAD=/usr/lib/libpthread.so:\
 :tc=daemon:

 This doesn't help,
 I still have the same problem with Apache.

How did you start Apache? You will need to use /etc/rc.d/httpd restart
(or reboot) so it's started from the system rc scripts for this to take
effect, apachectl does not handle this.

 Also /usr/lib/libpthread.so doesn't
 exist so I replaced it with /usr/lib/libpthread.so.13.3 but still no success.

No the instructions are correct, use /usr/lib/libpthread.so

Re: TCP Out-of-order packets on a machine behind an OpenBGPd based router

[Bernd]

Am 2012-05-08 16:02, schrieb Stuart Henderson:
On 2012-05-08, be...@kroenchenstadt.de be...@kroenchenstadt.de 
wrote:

Hi misc,

I'm about to set up two OpenBGPd machines. At the moment they are 
each

connected to two different upstream providers running OpenBGPd (and
OpenOSFPd on the internal interfaces). Operating system is

OpenBSD test-a.openbgp.bla.com 5.0 GENERIC.MP#0 amd64

(dmesg below)

On a host reserved for testing (CentOS 6.2 x86_64), which sits
logically
(seen from the internet) behind those machines, in a otherwise empty
/22, I see weird network problems (tcpdumping traffic on port 25, 
and

loading it into wireshark for further analysis):

Receiving mails (port 25, plain SMTP, a 3MiByte attachment) from an
external mail server, which comes in via one of the new BGP 
machines, I
see massive 'TCP out of order' messages in wireshark, as well as 
'TCP

Dup ACK' messages. This is on the testbed machine itself.

On the OpenBGPd router, captured exactly the same traffic, all seems
perfect.

There are two Cisco switches sitting between test-a.openbgp.bla.com 
and

the testbed mail server, all interfaces perfectly clean, no duplex
problems, no underruns, no runts, nothing -- perfect.

Traffic within my AS is also absolutely no problem, the Linux 
machine

runs here perfectly as well.

Any idea where to look?


Is PF in use? if so, have you done anything to make sure that you
aren't running into problems due to stateful firewall only seeing
half the packets (i.e. inbound via one machine, outbound via the
other)?


That's a point, I do have asymmetric routing at the moment, as only the 
(now active) Ciscos announce the /22 in question to the rest of the 
world. So, ingress traffic crosses my OpenBSD machine, while egress 
traffic does not.


However, the problem remains if I issued 'pfctl -d'.


(Specifically, if this is happening and unavoidable, you could look
at 'defer' in pfsync, or sloppy states in PF).




Thanks,

Bernd

$ dmesg


[ snipped from quote, but thanks for including it :) ]

Re: Flashboot for OpenBSD 5.1 is now available

[Johan Ryberg]

I forgot to mention one thing. I'm for sure glad to be in the project but
it's not my project so I don't want to take any credit for it. I have just
made some adjustments to make it build the latest versions of OpenBSD with
help from others.

Best regards Johan Ryberg


On May 8, 2012 7:27 AM, Johan Ryberg jo...@securit.se wrote:

 Yes.  I will fix this within the next 24 hours. I fully understand the
 concerns and the reason.

 Best regards Johan Ryberg
 On May 8, 2012 4:25 AM, Nick Holland n...@holland-consulting.net
 wrote:

 On 05/07/12 00:52, Johan Ryberg wrote:
  Hi.
 
  Not stupid at all.
 
  Flashboot is not intended to replace a standard OpenBSD installation
 and if
  you want to use a normal installation on a USB stick then you are
 probably
  best off with the installation process that you described.
 
  Flashboot is made for appliances with sd-card from 128 Mb (64 Mb with
  little work). The entire file system is mounted as read only and the
  sd-card will not wear out. The update process is also simplified since
 you
  only has to replace the kernel (ramdisk with entire userlard) and you
 are
  up and running a new version of OpenBSD in minutes.
 
  Later some new scripts has been added to simplify and the script that
 makes
  a bootable usb image of the install51.iso is one example of that but
 that
  is not the Flashboot core, just a little tool.
 
  Best regards Johan Ryberg

 Any possibility we could request that the project description make it
 more clear that this is NOT a mainstream, here is how you should run
 OpenBSD from flash media solution?  And hopefully, a this is NOT
 supported by the OpenBSD project notice, too?

 The problem is, a lot of people seem to find your project and decide,
 oh, this is how I should run OpenBSD from flash media, and then force
 fit a Flashboot install into a tiny 2GB flash media, instead of just
 doing a normal install and getting a normal system.

 I'm not denying there are places where either tiny amounts of storage
 are available or where the ability to wack a power switch and have ZERO
 concern for file system integrity (or waiting for an fsck after such an
 event) are highly beneficial, but there are an awful lot of people who
 believe this is The Way Things Should Be Done, then shoot themselves in
 the foot because they have no idea what they are doing or how to support
 the thing they have made.  And then they run to the OpenBSD lists
 looking for support, confusing based on OpenBSD with is OpenBSD.

 Nick.

  On May 7, 2012 12:31 AM, cody chandler cody.a.chand...@gmail.com
 wrote:
 
  Hello,
 
  I have a possible stupid question.  How is the install hard if I simply
  direct the install drive to /dev/sd0?  I have a 32Gb usb stick and have
  11Gigs for OBSD and the rest is fat32.  I'm not seeing how the default
  installer is lacking options for install.
 
  Thank you
  Cody
  On May 6, 2012 6:09 PM, Johan Ryberg jo...@securit.se wrote:

Re : Apache won't start after pecl-imagick installation

[Mik J]

Thank you for your answer.
I did use apachectl but after your email I followed
your suggestions and it works.
I have notice now that the command apachectl
doesn't work at all now, when I read your email I thought that it wouldn't
work for the first time only.
I'm wondering if the apachectl command will end
being deprecated if it doesn't allow apache to restart without us wondering if
it has to pre load some libraries or not.
Have a good day



- Mail
original -
 De : Stuart Henderson s...@spacehopper.org
 @ :
misc@openbsd.org
 Cc : 
 Envoyi le : Mardi 8 mai 2012 16h06
 Objet : Re:
Apache won't start after pecl-imagick installation
 
 On 2012-05-08, Mik J
mikyde...@yahoo.fr wrote:
  Hello,
 
 
  I'm reinstalling my system
from 4.9 to 5.1
  I have installed
  pecl-imagick and stopped/started
Apache but I have a seg fault (core 
 dumped).
  If I uninstall this
package Apache stops/starts nicely.
 
  I have read this page

http://www.openbsd.org/faq/upgrade50.html#Pkgup
  The last point talks about
my
  problem and advices to add in /etc/login.conf
  httpd:\

:setenv=LD_PRELOAD=/usr/lib/libpthread.so:\
  :tc=daemon:
 
  This
doesn't help,
  I still have the same problem with Apache.
 
 How did you
start Apache? You will need to use /etc/rc.d/httpd 
 restart
 (or reboot)
so it's started from the system rc scripts for this to take
 effect,
apachectl does not handle this.
 
  Also /usr/lib/libpthread.so doesn't
  exist so I replaced it with /usr/lib/libpthread.so.13.3 but still no 

success.
 
 No the instructions are correct, use /usr/lib/libpthread.so

Re: Ftpd chroot in a user folder name

[Alexander Hall]

Wesley open...@e-solutions.re wrote:


Thank you very much for your explanation. I understand better.
I finally use sftp using this in the file /etc/ssh/sshd_config :
...
Match User site1
ChrootDirectory /var/www/htdocs/website1
ForceCommand internal-sftp
PasswordAuthentication yes

Match User site2
ChrootDirectory /var/www/htdocs/website2
ForceCommand internal-sftp
PasswordAuthentication yes
--EOF


Here, otoh, %u works... meaning you could even do:

Match Group sites
ChrootDirectory /var/www/htdocs/web%u
ForceCommand internal-sftp
PasswordAuthentication yes

and while at it, don't forget to disable X, agent and TCP forwarding, 
should it be enabled.


Another thing worth noting is that the ChrootDirectory target may be a 
symlink, if one or more sftp roots differs from the rest.



And in each chroot there's a folder 'site'.
Your method using ftpd is easiest to achieve the goal, i will probably
apply it later.


I'd say the above is by far the easiest.

/Alexander

Watchdog timeout reset in 5.1 on intel nic:s

[Per-Olov Sjöholm]

Hi

I have an OpenBSD 4.9 i386 stable (patched to aug 19 2011) running as virtual
in KVM with VTd  (PCI passthrough by using pci-stub) for two intel NICs. It's
running flawless. The KVM host (fully patched Redhat 6.2) have two extra
Intel PRO/1000 MT (82574L) that is given out to the OpenBSD virtual host.
The OpenBSD virtual host sees and uses the physical nic:s directly. As said,
it run flawless

The working solution dmesg can be seen here
http://www.incedo.eu/~sjoholmp/misc_internet_links/timer_problem_openbsd/dmes
g-4.9i386-stable+patches-to-20110819_running_in_KVM.txt



Now... I wanted to upgrade to OpenBSD 5.1. I installed a new virtual OpenBSD
5.1 i386 stable. I patched it to may 8 2012. When I run it, I cannot get any
traffic through it and the console says what can be seen here in this png
screenshot...
http://www.incedo.eu/~sjoholmp/misc_internet_links/timer_problem_openbsd/KVM_
Screenshot_5.1_stable+patches-to-may-8-2012.png

It says em1: watchdog timeout -- resetting

more info...
- mpbios is disabled on both OpenBSD installations as the KVM shutdown wont
work on the virtual host otherwise...
- Uses uniprocessor kernel as I have measured it gives better throughput than
MP



Any suggestions of where to look for a possible solution would be very much
appreciated.


Tnx in advance
P-O

Re: Watchdog timeout reset in 5.1 on intel nic:s

[Simon Perreault]

On 2012-05-08 19:08, Per-Olov Sjvholm wrote:

It says em1: watchdog timeout -- resetting


aol
I saw the same on an amd64 VPS from arpnetworks.com. Network was not 
functional. Backed out. Did not investigate further.

/aol

Simon

Пора уезжать из этой страны.... Оформление ПМЖ.Пре =?UTF-8?B?0LTQu9Cw0LPQsNC10Lwg0L/QvtC00LHQvtGAINC90LXQtNCy0LjQttC40LzQvtGB0YLQuC4g0J/QvtC80L7RidGMINC/0YDQ

[Эмиграционный Менеджер]

PQP5P4P;P0P3P0P5P P?PP4P1PQ P=P5P4P2P8P6P8PPQ
QP8 P!P5P2P5QP=PP3P
PP8P?QP0 PQ P7P0Q
QQPP9Q   P8P:P0. PQP5P4P8Q PQ 6
%.PP8P=P8PP0P;QP=QP9 P?P0P:P5Q P4PP:QPP5P=QPP2(QPP;QP:P
P7P0P3QP0P=.P?P0Q
P?PQQ)
PPPPQ   Q P8 PQP3P0P=P8P7P0QP8Q P?P5QP5P5P7P4P0 P8 P8 P?PP:QP?P:P8
P=P5P4P2P8P6P8PPQ
QP8.
PPPPQ   Q P2 PQPQPP;P5P=P8P8 PPP  P!P5P2P5QP=QP9 PP8P?Q.
PQ
QQP5QP0 P2 P0Q
QPP?PQQQ. PPP=Q
QP;QQP0QP8P8 P?P P2Q
P5P
P2PP?QPQ
P0P.(P#Q
QP0P=PP2P:P0 PP,P8P=QP5QP=P5Q, P2QP1PQ
PP5P1P5P;P8, P1QQPP2PP9 QP5QP=P8P:P8)
PP0 P!P5P2P5QP=PP PP8P?QP5 P?QP0P:QP8QP5Q
P:P8 PQQ
QQQ
QP2QP5Q
P?QP5Q
QQP?P=PQ
QQ. PP0P;P8QP8P5 PP2QPP?P5P9Q
P:P8Q P2QQ
QP8Q
QQP5P1P=QQ P7P0P2P5P4P5P=P8P9-P;QQQP8P9 P2QP1PQ P4P;Q
PPP;PP4P5P6P8! (PP5P6P4QP=P0QPP4P=QP9 P4P8P?P;PP PP1
PP1QP0P7PP2P0P=P8P8).
PQP5P=Q PQP3P:P8P9 P:P;P8PP0Q (P7P8PPP9 QP5PP?P5QP0QQQP0
+15,QP8Q
QP5P9QP5P5 P!QP5P4P8P7P5PP=PP5 PPQP5).
PP0QP8 QQ
P;QP3P8:
PQPP4P0P6P0 P8 P0QP5P=P4P0 P0P?P0QQP0PP5P=QPP2, P2P8P;P;,
P:5QQP5Q
P:PP9 P=P5P4P2P8P6P8PPQ
QP8 P8 P7P5PP5P;QP=QQ
QQP0Q
QP:PP2
P.QP8P4P8QP5Q
P:P8P5 P:PP=Q
QP;QQP0QP8P8 P?P P?PP:QP?P:P5
P=P5P4P2P8P6P8PPQ
QP8
PPP=Q
QP;QQP0QP8P8 P?P P?PP;QQP5P=P8Q QP0P1PQP8Q P2P8P7,
P2P8P4P0 P=P0 P6P8QP5P;QQ
QP2P P8 P3QP0P6P4P0P=Q
QP2P0
P.QP8P4P8QP5Q
P:P0Q P?QPP2P5QP:P0 P=P5P4P2P8P6P8PPQ
QP8 (P:PPQ
PP=P0 P?QP8P=P0P4P;P5P6P8Q, P=P5 P=P0QPP4P8QQ
Q P;P8 P2 P7P0P;PP3P5,
QP2P;QP5QQ
Q P;P8 P7P0P:PP=P=QP P4P0P=P=PP5
Q
QQPP8QP5P;QQ
QP2P)
PQPQPP;P5P=P8P5 QP0P7QP5QP5P=P8P9 P=P0 P?QP8PP1QP5QP5P=P8P5
P=P5P4P2P8P6P8PPQ
QP8 P2 P3PQ
QP4P0QQ
QP2P5P=P=QQ PQP3P0P=P0Q
PQPP5P:QP8QPP2P0P=P8P5, P4P8P7P0P9P= P8 Q
QQPP8QP5P;QQ
QP2P
P=P5P4P2P8P6P8PPQ
QP8 (PQ 500 P4PP;P;P0QPP2 P7P0 P:P2P0P4QP0QP=QP9
PP5QQ B+P?PP4 P:P;QQB;)
PP=P2P5Q
QP8QP8PP=P=QP5 P?QPP5P:QQ
P P5P3P8Q
QQP0QP8Q PP5Q
QP=QQ P8 PQQQPQP=QQ P:PPP?P0P=P8P9
PQPP4P0P6P0 P8 P0QP5P=P4P0 P3PQPP2PP3P P1P8P7P=P5Q
P0
PPP8Q
P: P1P8P7P=P5Q
-P?P0QQP=P5QPP2
P#Q
P;QP3P8 P?P5QP5P2PP4QP8P:P0
P!P;QP6P1P0 P7P0P1PQQ P P:P;P8P5P=QP0Q



PPP=QP0P:QQ P4P;Q P:PP=Q
QP;QQP0QP8P8:

Skype: dredg88
e-mail: dred...@gmail.com

MPLS setup

[Rafael Zalamena]

Hi misc@,

I'm building a simple MPLS setup to route traffic from one laptop to
my home network, however I'm unable to properly setup something and
I'm not getting a route which pushes a label into an incoming packet.

The whole purpose of the setup is to study MPLS and VPNs over it. I
made a picture of my setup to clarify things: (
http://dl.dropbox.com/u/222135/partial.png ) .

I'm starting with 2 routers, but I intend to use 3 and do a ring
network (there is a TODO code about loops in the ldpd code btw...). I
could use more equipments, but I want to have something small working
first.

I learned a lot of things from: (
http://2011.eurobsdcon.org/papers/jeker/MPLS.pdf )

Configurations:
ALIX1: OpenBSD i386 5.1-current
ifconfig mpe0 192.168.1.130/32 -mplslabel 12345 up
route add default 192.168.1.254
ifconfig vr0 192.168.1.130
ifconfig vr1 10.0.3.1 mpls
ifconfig lo1 10.0.10.1/32
sysctl net.inet.ip.forwarding=1

ospfd.conf EOF
router-id 10.0.10.1

area 0.0.0.0 {
interface vr1
interface lo1
}
EOF

ldpd.conf EOF
router-id 10.0.10.1

interface vr1
EOF

ALIX3: OpenBSD i386 5.1-current
ifconfig mpe0 192.168.10.132/32 -mplslabel 54321 up
ifconfig vr0 192.168.10.132
ifconfig vr2 10.0.3.2 mpls
ifconfig lo1 10.0.10.3/32
sysctl net.inet.ip.forwarding=1

ospfd.conf EOF
router-id 10.0.10.3

area 0.0.0.0 {
interface vr2
interface lo1
}
EOF

ldpd.conf EOF
router-id 10.0.10.3

interface vr2
EOF

What am I missing??

Re: MPLS setup

[Rafael Zalamena]

On Tue, May 8, 2012 at 11:38 PM, Rafael Zalamena rzalam...@gmail.com wrote:
 Hi misc@,

 I'm building a simple MPLS setup to route traffic from one laptop to
 my home network, however I'm unable to properly setup something and
 I'm not getting a route which pushes a label into an incoming packet.

 ...

Here is the route output:
ALIX1:

# route -n show -inet
Routing tables

Internet:
DestinationGatewayFlags   Refs  Use   Mtu  Prio Iface
default192.168.1.254  UGS00 - 8 vr0
10.0.1/24  link#3 C  00 - 4 vr2
10.0.3/24  link#2 UC 20 - 4 vr1
10.0.3/24  10.0.3.1   UG 00 -32 vr1
10.0.3.1   00:0d:b9:27:b8:ed  UHLc   10 - 4 lo0
10.0.3.2   00:0d:b9:27:ba:f5  UHLc   1  927 - 4 vr1
10.0.10.1  10.0.10.1  UH 10 33196 4 lo1
127/8  127.0.0.1  UGRS   00 33196 8 lo0
127.0.0.1  127.0.0.1  UH 10 33196 4 lo0
192.168.1/24   link#1 UC 20 - 4 vr0
192.168.1.20   90:e6:ba:06:f6:55  UHLc   4 4501 - L   4 vr0
192.168.1.254  link#1 UHLc   20 - 4 vr0
224/4  127.0.0.1  URS00 33196 8 lo0
# route -n show -mpls
Routing tables

MPLS:
In label  Out label Op GatewayFlags   Refs  Use
Mtu  Prio Interface
16- LOCAL  10.0.10.1  UGT00
33196 4 lo1
17- LOCAL  192.168.1.254  UGT00
 - 8 vr0
12345 - POPmpe0   UT 00
 - 4 mpe0

ALIX3:

# route -n show -inet
Routing tables

Internet:
DestinationGatewayFlags   Refs  Use   Mtu  Prio Iface
10.0.2/24  link#3 C  00 - 4 vr1
10.0.3/24  link#2 UC 20 - 4 vr2
10.0.3/24  10.0.3.2   UG 00 -32 vr2
10.0.3.1   00:0d:b9:27:b8:ed  UHLc   3  330 - 4 vr2
10.0.3.2   00:0d:b9:27:ba:f5  UHLc   10 - 4 lo0
10.0.10.1/32   10.0.3.1   UGT00 -32 vr2
10.0.10.3  10.0.10.3  UH 10 33196 4 lo1
127/8  127.0.0.1  UGRS   00 33196 8 lo0
127.0.0.1  127.0.0.1  UH 10 33196 4 lo0
192.168.10/24  link#1 UC 10 - 4 vr0
192.168.10.99  e8:9a:8f:5e:c6:ec  UHLc   0 8654 - 4 vr0
224/4  127.0.0.1  URS00 33196 8 lo0
# route -n show -mpls
Routing tables

MPLS:
In label  Out label Op GatewayFlags   Refs  Use
Mtu  Prio Interface
1616SWAP   10.0.3.1   UGT00
 -32 vr2
17- LOCAL  10.0.10.3  UGT00
33196 4 lo1
54321 - POPmpe0   UT 00
 - 4 mpe0


dmesg ALIX1:

OpenBSD 5.1-current (GENERIC) #210: Thu Apr 26 01:36:40 MDT 2012
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD
586-class) 499 MHz
cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX,MMXX,3DNOW2,3DNOW
real mem  = 267976704 (255MB)
avail mem = 252768256 (241MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xe/0xa800
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10,
address 00:0d:b9:27:ba:f4
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI
0x004063, model 0x0034
vr1 at pci0 dev 10 function 0 VIA VT6105M RhineIII rev 0x96: irq 11,
address 00:0d:b9:27:ba:f5
ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI
0x004063, model 0x0034
vr2 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15,
address 00:0d:b9:27:ba:f6
ukphy2 at vr2 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI
0x004063, model 0x0034
glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3,
32-bit 3579545Hz timer, watchdog, gpio, i2c
gpio0 at glxpcib0: 32 pins
iic0 at glxpcib0
maxtmp0 at iic0 addr 0x4c: lm86
pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 

Re: MPLS setup

[Hendrik Meyburgh]

Hi Rafael,

In your ldpd.conf you are missing your lo interfaces.

Is OSPF fully functioning with all the routes?

I used the below link as a guide for my setup:

http://kerneltrap.org/mailarchive/openbsd-misc/2010/5/24/3327/thread

It is a bit different because of BGP and rdomains but it should help you.

On 09 May 2012, at 4:55 AM, Rafael Zalamena wrote:

 On Tue, May 8, 2012 at 11:38 PM, Rafael Zalamena rzalam...@gmail.com
wrote:
 Hi misc@,

 I'm building a simple MPLS setup to route traffic from one laptop to
 my home network, however I'm unable to properly setup something and
 I'm not getting a route which pushes a label into an incoming packet.

 ...

 Here is the route output:
 ALIX1:

 # route -n show -inet
 Routing tables

 Internet:
 DestinationGatewayFlags   Refs  Use   Mtu  Prio
Iface
 default192.168.1.254  UGS00 - 8 vr0
 10.0.1/24  link#3 C  00 - 4 vr2
 10.0.3/24  link#2 UC 20 - 4 vr1
 10.0.3/24  10.0.3.1   UG 00 -32 vr1
 10.0.3.1   00:0d:b9:27:b8:ed  UHLc   10 - 4 lo0
 10.0.3.2   00:0d:b9:27:ba:f5  UHLc   1  927 - 4 vr1
 10.0.10.1  10.0.10.1  UH 10 33196 4 lo1
 127/8  127.0.0.1  UGRS   00 33196 8 lo0
 127.0.0.1  127.0.0.1  UH 10 33196 4 lo0
 192.168.1/24   link#1 UC 20 - 4 vr0
 192.168.1.20   90:e6:ba:06:f6:55  UHLc   4 4501 - L   4 vr0
 192.168.1.254  link#1 UHLc   20 - 4 vr0
 224/4  127.0.0.1  URS00 33196 8 lo0
 # route -n show -mpls
 Routing tables

 MPLS:
 In label  Out label Op GatewayFlags   Refs  Use
 Mtu  Prio Interface
 16- LOCAL  10.0.10.1  UGT00
 33196 4 lo1
 17- LOCAL  192.168.1.254  UGT00
 - 8 vr0
 12345 - POPmpe0   UT 00
 - 4 mpe0

 ALIX3:

 # route -n show -inet
 Routing tables

 Internet:
 DestinationGatewayFlags   Refs  Use   Mtu  Prio
Iface
 10.0.2/24  link#3 C  00 - 4 vr1
 10.0.3/24  link#2 UC 20 - 4 vr2
 10.0.3/24  10.0.3.2   UG 00 -32 vr2
 10.0.3.1   00:0d:b9:27:b8:ed  UHLc   3  330 - 4 vr2
 10.0.3.2   00:0d:b9:27:ba:f5  UHLc   10 - 4 lo0
 10.0.10.1/32   10.0.3.1   UGT00 -32 vr2
 10.0.10.3  10.0.10.3  UH 10 33196 4 lo1
 127/8  127.0.0.1  UGRS   00 33196 8 lo0
 127.0.0.1  127.0.0.1  UH 10 33196 4 lo0
 192.168.10/24  link#1 UC 10 - 4 vr0
 192.168.10.99  e8:9a:8f:5e:c6:ec  UHLc   0 8654 - 4 vr0
 224/4  127.0.0.1  URS00 33196 8 lo0
 # route -n show -mpls
 Routing tables

 MPLS:
 In label  Out label Op GatewayFlags   Refs  Use
 Mtu  Prio Interface
 1616SWAP   10.0.3.1   UGT00
 -32 vr2
 17- LOCAL  10.0.10.3  UGT00
 33196 4 lo1
 54321 - POPmpe0   UT 00
 - 4 mpe0


 dmesg ALIX1:

 OpenBSD 5.1-current (GENERIC) #210: Thu Apr 26 01:36:40 MDT 2012
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
 cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD
 586-class) 499 MHz
 cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX,MMXX,3DNOW2,3DNOW
 real mem  = 267976704 (255MB)
 avail mem = 252768256 (241MB)
 mainbus0 at root
 bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
 pcibios0 at bios0: rev 2.1 @ 0xf/0x1
 pcibios0: pcibios_get_intr_routing - function not supported
 pcibios0: PCI IRQ Routing information unavailable.
 pcibios0: PCI bus #0 is the last bus
 bios0: ROM list: 0xe/0xa800
 cpu0 at mainbus0: (uniprocessor)
 pci0 at mainbus0 bus 0: configuration mode 1 (bios)
 pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
 glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
 vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10,
 address 00:0d:b9:27:ba:f4
 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI
 0x004063, model 0x0034
 vr1 at pci0 dev 10 function 0 VIA VT6105M RhineIII rev 0x96: irq 11,
 address 00:0d:b9:27:ba:f5
 ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI
 0x004063, model 0x0034
 vr2 at pci0 dev 11 function 0 VIA