Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
rt
AddressFamily
ListenAddress
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
I am trying to setup IPSec tunnel between VirtualBox gues (FreeBSD 10.4)
on one side and AWS EC3 AMI (FreeBSD 10.4) on other side.
Both sides have kernel with IPSEC and IPSEC_NAT_T but I am not able to
make it work.
It works if I make similar setup with two VirtualBox instances (no NAT),
but
debugging was a pain because we don't have access to the other end.
On the other hand customers with OpenVPN works in a minute. Just send or
receive openvpn.conf, set some variables in rc.conf and VPN is up and
running. So I prefer OpenVPN whenever possible.
Mirosl
r. So at least the root
zone trust-anchor keys need to persist across restarts and not
be reset to their initial state.
I think keys can be updated by updating the port or by some dedicated
periodic script. It seems safer to me.
Miroslav Lachman
___
f
one with the wrong settings you have from rc.conf?
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
: 1000
And you can change it in /boot/loader.conf if you need.
echo 'kern.hz="999"' >> /boot/loader.conf
shutdown -r now
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-net
To u
/bugzilla/show_bug.cgi?id=165174
I don't understand why such useful patches are left uncommited and
without any comments in PR for years.
Thank you for the link!
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman
problem?
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
Julian Elischer wrote:
On 5/13/14, 6:54 AM, Miroslav Lachman wrote:
I originaly posted this to virtualization@ list week ago. I didn't
recieved any answer, so maybe this list is better for questions like
the following.
I would like to ask some really experienced person - what is the best
way
in guest OS tried to change MAC od IP, I would like to disallow
that or do not allow any offending traffic to reach outside network or
any other guest running on the same machine.
Guests can be VirtualBox, Bhyve or anything else.
I really appreciate any help or ideas.
--
Miroslav Lachman
it on the right side to:
block in on le0 proto tcp from 10.1.1.1/32 to any
pass in proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
YongHyeon PYUN wrote:
On Wed, Feb 27, 2013 at 12:09:28PM +0100, Miroslav Lachman wrote:
[...]
I can provide you full access to this machine (if you want) or let me
know, what version I should check. Older versions (6.x - 8.3) are
working fine with hw.bge.allow_asf=1 in loader.conf. I didn't
Andrey Zonov wrote:
Hi,
What do you think about adding fib support for rc.subr like we got one
for nice?
There are PRs with patches for rc.subr for a long time without attention.
Same as with PR's adding suport for cpuset.
I don't understand why we are having some really useful tools in base
by
default.
Is it possible that something similar is needed for bce too?
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
There were some reports about freezes with bge_allow_asf=1.
I am using hw.bge.allow_asf=1 in loader.conf for a few years on our Sun
Fire X2100 M2 machines without any problems.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http
.
There were some attempts to add setfib support to rc.subr, but it was
not committed:
http://www.freebsd.org/cgi/query-pr.cgi?pr=conf/132483
I don't know the reason.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman
change the
permissions:
# ls -al /dev/bpf0
crw--- 1 root wheel0, 170 Aug 25 2009 /dev/bpf0
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail
UDP traffic on igb interfaces emits
messages GET BUF: dmamap load failure - 12 and later results in kernel
panic.
We have not received any response to this report.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman
The following reply was made to PR kern/140970; it has been noted by GNATS.
From: Miroslav Lachman 000.f...@quip.cz
To: bug-follo...@freebsd.org, korm...@itm.tum.de
Cc:
Subject: Re: kern/140970: [bce] The two NetXtreme II BCM5709S NICs on our
HP Bl460c G1 Blade can't be accessed on FreeBSD 7.2
The following reply was made to PR kern/140684; it has been noted by GNATS.
From: Miroslav Lachman 000.f...@quip.cz
To: bug-follo...@freebsd.org, mksm...@adhost.com
Cc:
Subject: Re: kern/140684: [bce] Broadcom NetXtreme II BCM5709 1000Base-T -
fail after soft reboot
Date: Tue, 01 Dec 2009 15
, 1000baseT,
1000baseT-FDX, auto
No more PHY write timeout messages on shutdown or bootup.
So problem seems solved by 7-STABLE.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe
this issue?
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
the drift file from /etc to /var/db or
/var/db/ntp,
not the file name.
Also note that /var/db/ntpd.drift is specified as flags in
defaults/rc.conf (I don't know if it is good or bad thing :])
# grep drift /etc/defaults/rc.conf
ntpd_flags=-p /var/run/ntpd.pid -f /var/db/ntpd.drift
Miroslav
, there is different libc.so version, different threading
library, etc.
So you can't run MySQL daemon build on different major version OS.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
and MRTG can be configured to use these.
netstat is in bytes AFAIK.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to [EMAIL PROTECTED]
jail_samba_interface=rl0 for auto aliasing and add
ifconfig_rl0_alias0=inet 192.168.15.201 netmask 255.255.255.0
This should give you
inet 192.168.15.201 netmask 0x broadcast 192.168.15.255
in the ifconfig output (after restart)
Miroslav Lachman
___
freebsd
Nejc Škoberne wrote:
Hey,
ifconfig_rl0_alias0=192.168.15.201 netmask 255.255.255.0
the mask of an alias ipadres needs to be 32 bits.
I do not now if this solves your problem but it needs to be 32 bits.
ifconfig_rl0_alias0=192.168.15.201 netmask 255.255.255.255
Can you explain why it needs
create
# ifconfig lo1 inet 172.16.16.2 netmask 255.255.255.0
Is this expected behavior or should I file a PR?
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail
have
run ipfw zero a few times, but have not run netstat -z
at all. Let me know if you have any ideas about this.
Counter resets itself after 4GB (it is not a bug, it is feature of 32bit
counter as mentioned by Max Laier)
Miroslav Lachman
___
freebsd
and routes it
like route-to. The original packet gets routed as it normally would.
Miroslav Lachman
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to [EMAIL PROTECTED]
31 matches
Mail list logo
