Re: www.openbsd.org down?

2013-06-25 Thread Yusof Khalid - FreeBSD / OpenBSD 
Yeah can't access from here (Kuala Lumpur, MY)


On Tue, Jun 25, 2013 at 5:43 PM, Alan Cheng  wrote:

> I can't access www.openbsd.org right now.
> http://www.downforeveryoneorjustme.com/www.openbsd.org shows it's down.
>
>


-- 
--
7.2-RELEASE-p6

Re: Is openbsd.org down??

2013-06-17 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Sorry for the noise, the site look ok for now.. openDNS detect the site
still down.. hmm awkward.

Cheers!


On Mon, Jun 17, 2013 at 3:35 PM, Yusof Khalid - FreeBSD / OpenBSD <
frysha...@gmail.com> wrote:

> Hi,
>
> The site (openbsd.org) still can't access from here (Malaysia).
>
> Just to report :)
>
>
> On Fri, Jun 14, 2013 at 12:32 AM, Nicolai 
> wrote:
>
>> It appears www.openbsd.org may have been down for a while.  I had errors
>> downloading some spamd files for a stretch of time in the last 10 hours.
>> Seems fine now.
>>
>> Nicolai
>>
>>
>
>
> --
> --
> 7.2-RELEASE-p6
>



-- 
--
7.2-RELEASE-p6

Re: Is openbsd.org down??

2013-06-17 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

The site (openbsd.org) still can't access from here (Malaysia).

Just to report :)


On Fri, Jun 14, 2013 at 12:32 AM, Nicolai wrote:

> It appears www.openbsd.org may have been down for a while.  I had errors
> downloading some spamd files for a stretch of time in the last 10 hours.
> Seems fine now.
>
> Nicolai
>
>


-- 
--
7.2-RELEASE-p6

Re: ordered OBSD cd set.

2013-01-22 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

My first order was version 5.2 and delivered to Malaysia. I've received
about 2 3 weeks after officially released.

I think you should blame the postal service :)


On Tue, Jan 22, 2013 at 6:55 PM, Otto Moerbeek  wrote:

> On Tue, Jan 22, 2013 at 08:37:41AM -0200, Friedrich Locke wrote:
>
> > I order from my home, in Brasil!
> >
> > None of my orders arrive! Then the folks at calgary store send a
> > replacement. The day they post the replacement i get the original one.
> Did
> > this already happens with anyone else ?
>
> First you say your orders do not arrive. Next thing you say it did
> arrive, only late. Likely you get the replacement as well. So you end
> up with two CD sets while you ordered one.
>
> What is your problem? It is known that postal services can be slow.
>
> -Otto
>
> >
> > []s
> >
> > On Tue, Jan 22, 2013 at 8:30 AM, Peter N. M. Hansteen  >wrote:
> >
> > > On Tue, Jan 22, 2013 at 08:22:24AM -0200, Friedrich Locke wrote:
> > > > Hi Folks,
> > > >
> > > > has anyone already had problems related to delivery of OBSD CD set ?
> > >
> > > It would probably help debugging the situation if you tell us where you
> > > ordered from and to where (country or region).  Some countries or
> > > territories
> > > have odd postal or customs services, for example.
> > >
> > > for my own part, any delays in deliveries from .ca to .no have been
> just
> > > that kind, but fortunately most of the time delivery has been quite
> speedy.
> > >
> > > - Peter
> > > --
> > > Peter N. M. Hansteen, member of the first RFC 1149 implementation team
> > > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
> > > "Remember to set the evil bit on all malicious network traffic"
> > > delilah spamd[29949]: 85.152.224.147: disconnected after 42673
> seconds.
>
>


-- 
--
7.2-RELEASE-p6

Re: virtualization

2013-01-04 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Virtualbox is the best from my experience.Just make sure your processor
have VT enable for virtualization. Some old proc can't do virtualization
On 5 Jan 2013 07:44, "Friedrich Locke"  wrote:

Wireless Atheros chipset compatibility

2013-01-01 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi misc,

Just want to know if someone has been successfully using this device on
OpenBSD.

Model : TL-WN751ND
Chipset : Atheros

One of my client would like to setup a wireless network with small range of
users connect to the wifi network.

Thanks in advance.

-- 
--
7.2-RELEASE-p6

Re: Request improvement for faq 15.2

2012-12-27 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

As stated

"It's usually a good idea to add a line similar to the above examples to
your ~/.profile."

The above line should be ok to understand.. IMHO :) or did you miss the
line ?

On Thu, Dec 27, 2012 at 11:10 PM, Live user  wrote:

> I think 15.2.2 should go before 15.1.1, since if there's no point in
> running pkg_* when the PKG_PATH is empty, which is after installing using
> the interactive method.
>
> Furthermore, using 'export PKG_PATH=' sets a volatile variable, which in
> blank again after restarting. I think the faq may include the guideline to
> make it persistent as well.
>
>


-- 
--
7.2-RELEASE-p6

Re: SSHD doesn't honor login.conf's setenv

2012-12-11 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Can those variable set in .profile ?

I'm still new too but just a suggestion :)

On Tue, Dec 11, 2012 at 6:44 PM, Martijn van Duren wrote:

> Dear misc,
>
> I'm a new to OpenBSD and BSD in general.
>
> On my new install I found that it is possible to set environment
> variables via the login.conf file. When trying I found out that those
> variables aren't honored if I log in via ssh. Setting the variables via
> setusercontext in a test-application and via the login command does
> work.
>
> Am I somehow missing a setting in sshd_config that ignores these
> settings or do I need to report this as a bug?
>
> Sincerely,
>
> Martijn van Duren
>
>


-- 
--
7.2-RELEASE-p6

Re: reading FreeBSD fs

2012-11-17 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

There's existing file that I need to retrieve.

Looks like I have to mount them in other machine. Is there any recommend
work around that I can read / modify the disk label so that I can read it
from OpenBSD?

Thanks in advance.

reading FreeBSD fs

2012-11-17 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi list,

I just migrated one of my client gateway to OpenBSD, and got 1 extra disk
which is freebsd filesystem. I've search around the net and found
some difficulty to read the filesystem from OpenBSD. Is there any chance
that I can get access to those freebsd filesystem ?

disklabel ?

Thanks in advance.

-- 
--
7.2-RELEASE-p6

Re: Last i386 snapshot broken ?

2012-10-11 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Confirm the iso is somehow got problem. I've tried with my virtualbox.
Stuck at

CD-ROM:E0
Loading /5.2/I386/CDBOOT

On Thu, Oct 11, 2012 at 9:14 PM, Erling Westenvik <
erling.westen...@gmail.com> wrote:

> On Thu, Oct 11, 2012 at 08:19:48AM -0400, Kenneth R Westerback wrote:
> >
> > Snaps are built almost everyday. You seem to have hit something in
> > the current effort to improved the boot blocks. Wait a day or so
> > and try the latest snapshot then.
> >
>
> In the meanwhile I can confirm that the snapshot as a whole upgraded
> without any problems from my previously installed October 3rd-snapshot
> to todays current. i386. Blessed be the bsd.rd.
>
>


-- 
--
7.2-RELEASE-p6

Re: happy alix user ?

2012-09-27 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Thanks for lighten me for the right choice, maybe alix build for
gateway/firewall ONLY is just good to go. Other services should be left to
other devices. I agreed samba and squid need a more efficient disk and that
is one of my concern.

My bad if my question disturb others topic -_-

Re: openbsd router performance (i know.. again)

2012-09-26 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi list,

Any happy ALIX user here ? I plan to deploy alix board on 2 of my client..
currently serving as gateway/firewall/squid and a little bit of samba.

On Thu, Sep 27, 2012 at 4:05 AM, rik  wrote:

> Hi,
> at the moment we have the default configuration, beside the increase of
> net.inet.ip.ifq.maxlen to 500 (I trust OpenBSD programmers more than I
> trust myself about tuning).
> I haven't had yet the opportunity to upgrade it to -current, I'll do in the
> next few days.
> Just a small punctualization about the pps, I have 22-24k in total, 10-12k
> per card (internet facing and LAN facing)
> Thanks again
> Alessandro
>
>
> On Wed, Sep 26, 2012 at 5:31 PM, noah pugsley  >wrote:
>
> > What is your performance like with -current and no knob twisting?
> >
> > On Wed, Sep 26, 2012 at 4:45 AM, rik  wrote:
> >
> >> Hi,
> >> I'm a happy Openbsd "user"; we've beeing using it since 2001 as
> >> router/firewall in our datacenter facility (we host as ONG some no
> profit
> >> project and website).
> >> At the moment we're using a couple of SuperMicro with the following
> specs:
> >> OpenBSD 5.0 (GENERIC.MP) #59: Wed Aug 17 10:19:44 MDT 2011
> >> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
> >> cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz ("GenuineIntel" 686-class) 2.98
> >> GHz
> >> cpu0:
> >>
> >>
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,
> >> MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,PDCM
> >> real mem  = 3890663424 (3710MB)
> >> avail mem = 3816964096 (3640MB)
> >> ppb3 at pci0 dev 28 function 4 "Intel 82801G PCIE" rev 0x01: apic 2 int
> 17
> >> em0 at pci4 dev 0 function 0 "Intel PRO/1000MT (82573E)" rev 0x03: msi,
> >> address 00:30:xx:xx:xx:xx
> >> ppb4 at pci0 dev 28 function 5 "Intel 82801G PCIE" rev 0x01: apic 2 int
> 16
> >> em1 at pci5 dev 0 function 0 "Intel PRO/1000MT (82573L)" rev 0x00: msi,
> >> address 00:30:xx:xx:xx:xx
> >>
> >> the netcard are on-board.
> >> Unfortunately we're a bit straggling with the performances as we have
> >> almost 100% interrupt with 110Mbps and 12k pps
> >> We've already increased net.inet.ip.ifq.maxlen to 500 in order to avoid
> >> packet loss and also disabling pf has no influence.
> >> Do you think these performances are fair and we have to upgrade to
> better
> >> hardware to have higher pps and Mpbs?
> >> Beside trying to upgrade to the last stable and not use MP we have no
> idea
> >> how to procede
> >> Thanks for your help
> >> Alessandro
>
>


-- 
--
7.2-RELEASE-p6

Re: Ports security updates in 5.1 or 5.2

2012-09-18 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

You can export PKG_PATH in your  .profile if you want.
 On 18 Sep 2012 01:59, "Alessandro Baggi" 
wrote:

> Hi list,
> sorry for late, but you are talking about update, and I've a question
> about this.
>
> I'm installing software precompiled using pkg_add -r
>
ftp://ftp.openbsd.org/../**openvpn-version.tgz
>
> How to see if there are update/security fix for openvpn?
>
> From "Ports" ml?
>
> Thanks in advance.
>
>
>
> On 09/01/2012 07:26 AM, Tomas Bodzar wrote:
>
>> On Fri, Aug 31, 2012 at 6:06 PM, Sébastien Marie
>>   wrote:
>>
>>> On Thu, Aug 30, 2012 at 06:52:15PM +, Stuart Henderson wrote:
>>>
 On 2012-08-30, Sébastien
Marie>
  wrote:

> I not used all pervious ports, and some are used in "safe" usage (like
>
 using postgresql ports, but not for server). It just a question to
>> known what
>> follow, in order to keep updated...
>>
>>> really, in order to keep updated, following -current is a good policy.

>>> sure, updates in -current are more "fresh" ! but the investissement may
>>> be
>>>
>> important, as it is required to upgrade the system before add or upgrade
>> ports...
>>
>>> I think I will consider installing -current on an external disk, in
>>> order to
>>>
>> "see and learn" upgrade process (via snapshots) before definitively
>> switch to
>> -current on my laptop.
>>
>> You will find it very quick and easy:
>>
>> boot bsd.rd and choose (U)pgrade
>> reboot
>> sysmerge -s $ -x $
>> maybe reboot
>> check current.html for possible manual steps
>> pkg_add -ui
>>
>> It's possible to have modest machine to be completely updated in about
>> 10 minutes completely binary way.
>>
>>  Thanks Stuart.
>>> --
>>> Sebastien Marie

Re: OpenBSD 5.1 match rule with squid

2012-09-11 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

Thanks Stuart! now my squid is working with transparent mode :)

Just add :

pass in quick log inet proto tcp to port 80 divert-to 127.0.0.1 port 3127

Refer :

/usr/local/share/doc/pkg-readmes/squid-2.7.STABLE9p15

On Tue, Sep 11, 2012 at 3:42 PM, Stuart Henderson wrote:

> On 2012-09-11, Yusof Khalid - FreeBSD / OpenBSD 
> wrote:
> > Hi,
> >
> > I've trying to get my rules running for my transparent squid running on
> > port 3129. My NAT is working fine, even I'm not using squid the internel
> > network can browse the internet. The problem is on that match rules for
> the
> > squid. As I'm referring
> > http://wiki.squid-cache.org/ConfigExamples/Intercept/OpenBsdPf , it's
> tell
> > that to divert-to on match rules, but when I test, there's an error said
> > that ' divert is not supported on match rules'. Is there any mistake ?
>
> These instructions are incorrect, see the pkg-readme file that comes
> with the port instead.
>
>


-- 
--
7.2-RELEASE-p6

OpenBSD 5.1 match rule with squid

2012-09-11 Thread Yusof Khalid - FreeBSD / OpenBSD 
Hi,

I've trying to get my rules running for my transparent squid running on
port 3129. My NAT is working fine, even I'm not using squid the internel
network can browse the internet. The problem is on that match rules for the
squid. As I'm referring
http://wiki.squid-cache.org/ConfigExamples/Intercept/OpenBsdPf , it's tell
that to divert-to on match rules, but when I test, there's an error said
that ' divert is not supported on match rules'. Is there any mistake ?

My rules :

int_if="em1"
ext_if="em0"

tcp_services="{ 22 }"
icmp_types="echoreq"

set block-policy return
set loginterface egress

set skip on lo

anchor "ftp-proxy/*"
pass in quick on $int_if inet proto tcp to port 21 divert-to 127.0.0.1 port
8021

match out on egress inet from !(egress:network) to any nat-to (egress:0)

*match in inet proto tcp from $int_if to any port 80 divert-to
192.168.1.124 port 3129*

block in log
pass out quick

antispoof quick for { lo $int_if }

pass in on egress inet proto tcp from any to (egress) \
port $tcp_services

pass in quick on $int_if
pass in quick on $ext_if

*pass in on $ext_if inet proto tcp from any to 192.168.1.124 port 80
divert-to 192.168.1.124 port 3129*

block in on ! lo0 proto tcp to port 6000:6010

p/s : I'm using Squid Cache: Version 2.7.STABLE9

Your help is appreciated :)
-- 
--
7.2-RELEASE-p6