Re: Hardware recommendation for firewalls (more than 4 NICs)

I just spent some time on this and got a working image for the Watchguard Firebox X 500-2500 platforms. For more info about it, I'm keeping track of everything in a forum here: http://www.thewaffle.org/Forum/viewforum.php?f=6st=0sk=tsd=dstart=0 While I was at it, I pulled out an old Watchguard

Re: How to copy an entire directory to my home directory

* Pedro Martelletto wrote: On Thu, Aug 14, 2008 at 12:40:38PM -0700, Johan Beisser wrote: man cp(1) You're all apparently missing out on a great tool called GHome Mover (http://www.brookepeig.com/ghomemover/). I know the guy said he is logging in from remote, but it is definitely worth the

Re: Using PF to NAT internal addresses over an IPSec link

On Fri, Aug 15, 2008 at 01:24:59PM +0900, william dunand wrote: Hi, I tried to reproduce what you want in my testing environment and managed to make it work. What you have to do is : - In your ipsec.conf, add an rule from your local network to the distant 172.25.0.1 (this rule is needed

Re: Using PF to NAT internal addresses over an IPSec link

Of course, as it is a testing environment it is a lot easier to make it work for me... On the remote side, a configured something like this (I suppose they have something of this kind on the other side) : ike passive esp from 172.25.0.1 to A.B.C.D And on the local server side, all I have is : ike

Re: PPPoE - Connection reset by peer

Warning: disable lcp: Invalid command Warning: disable lcp: Failed 1 Brainfart, sorry. I confused it with disable lqr which had fixed a different problem for me. No idea for your problem. Sorry for posting noise.

Re: Using PF to NAT internal addresses over an IPSec link

On Fri, Aug 15, 2008 at 05:09:08PM +0900, william dunand wrote: Of course, as it is a testing environment it is a lot easier to make it work for me... On the remote side, a configured something like this (I suppose they have something of this kind on the other side) : ike passive esp from

Re: Using PF to NAT internal addresses over an IPSec link

Toby, Actually, I was initially using my local subnet address rather than any, but I realized that if did so, this address could be seen on the remote vpn server by looking at the flows table. After setting the from any rule, I realized that, yes it was more or less working as expected, but it

Re: [OOT]a way to gather AS numbers ?

I was wondering if there is a way to collect all of the european AS numbers ? I took a look at the RIPE website, and I found nothing close to what I want to do. whois(1) was not of much help either. http://iana.org/assignments/as-numbers/ Grep for RIPE. The ultimate goal is to have a list

Re: [OOT]a way to gather AS numbers ?

2008/8/14 dermiste [EMAIL PROTECTED]: I was wondering if there is a way to collect all of the european AS numbers ? Relevancy link (for the archives): http://en.wikipedia.org/wiki/Autonomous_system_(Internet)

You may wish to add /usr/local/jdk-1.7.0/man to /etc/man.conf ?

how? jdk-1.7.0.00b24p2: complete --- jdk-1.7.0.00b24p2 --- You may wish to add /usr/local/jdk-1.7.0/man to /etc/man.conf

load balancing traffic destined for the webserver with router and openbsd

Hallo! I use ip-based load balancing with carp on two-sided firewall, no nat, just routing and it works like this internet --- router -- 172.16.5.118:firewall:192.168.222.189 --- web server I tried this setup with two and more firewalls, where 5.118 is ip address assigned to outer

Not updating .libs1-gettext-0.16.1, remember to clean it

how?

Re: You may wish to add /usr/local/jdk-1.7.0/man to /etc/man.conf ?

On Fri, Aug 15, 2008 at 02:40:07PM -0600, macintoshzoom wrote: how? jdk-1.7.0.00b24p2: complete --- jdk-1.7.0.00b24p2 --- You may wish to add /usr/local/jdk-1.7.0/man to /etc/man.conf You're asking a question about manpages and it doesn't come to mind to actually try using

Re: Not updating .libs1-gettext-0.16.1, remember to clean it

On Fri, Aug 15, 2008 at 02:44:36PM -0600, macintoshzoom wrote: how? Please, try doing a bit of homework before posting one-word questions. This is OpenBSD, we have manpages. Read them, you'll find them quite informative (and less belligerent). Try pkg_add(1) and pkg_delete(1) on for size.

Re: Not updating .libs1-gettext-0.16.1, remember to clean it

macintoshzoom wrote: how? http://marc.info/?l=openbsd-miscm=120345554523124w=2

Re: Not updating .libs1-gettext-0.16.1, remember to clean it

You know, if you go on like that, you're going to end up in my killfile, and a lot of other people as well.

[landisk] problem installing Aug 8th, snapshot

I haven't worked on any of my Plextors in awhile so I decided to install the Aug 11, 2008 snapshot. I kept having issues after dd'ng the miniroot, the boot loader would load then No OS Found. I kept thinking it was related to how I had the hard drive connected to boot strap system. So I kept at

OpenBSD at Defcon 16

OpenBSD is trusted to handle and defense Defcon network!! Nice!! DefCon 16: Hackers and a Gag Order in Sin City Posted by Scott_Ruecker on Aug 15, 2008 11:11 PM UTC LXer Linux News; By Derek Knowlton http://lxer.com/module/newswire/view/107146/ Quote: DefCon produces the most hostile network

Re: OpenBSD at Defcon 16

This was posted up on Wired.com a few days ago. Both posts are interesting, but it might have been far more interesting to show something of the network diagram along with the pf.conf file. What could we learn from it? On Fri, Aug 15, 2008 at 9:58 PM, World of Open Source [EMAIL PROTECTED]