Hi
First, thank you Paul and Andy for your input! I'm very thankful for
your effort!
On Thu, 2014-10-09 at 16:08 +0100, Andy wrote:
I have seen this when the allowed number or states is too low and PF
clears the idle states too early..
See http://www.openbsd.org/faq/pf/options.html;
set
Hello,
I'm looking for performance indicators to be warned if my PF firewall is about
to be overwhelmed.
I heard about congestion in pfctl -si, net.inet.ip.ifq.drops and
kern.netlivelocks.
I searched the man pages pfctl(8) and sysctl(3), but I didn't found a clear
explanation of what these
I'm running 5.6-current on a Alix 2c3. The box is connected
via pppoe(4) and VDSL 50Mbit down/10Mbit up - max-mss is set
to 1440.
Running a few speed tests, i get almost always 50.000kbit/s
down, but not more than 400-600kbit/s up.
Just for testing purposes, i started httpd(8) and tried to
On Fri, Oct 10, 2014 at 12:23:36PM +0200, Mark Patruck wrote:
I'm running 5.6-current on a Alix 2c3. The box is connected
via pppoe(4) and VDSL 50Mbit down/10Mbit up - max-mss is set
to 1440.
Running a few speed tests, i get almost always 50.000kbit/s
down, but not more than 400-600kbit/s
I also get around 6MB/s when using the Alix 2c3 as a simple
router. Problem seems to be the combination...
vr2 - vlan7 (vlandev vr2) - pppoe0 (dev vlan7)
I also don't thing the Alix is too slow. As i said...50.000kbit/s
down via pppoe0 works w/o issues.
On Fri, Oct 10, 2014 at 01:10:39PM
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 10/08/14 21:44, Henning Brauer wrote:
* Harald Dunkel ha...@afaics.de [2014-10-07 13:46]:
A related question: I wonder how well (self) and (group) perform,
compared to tables listing IP addresses? Is (self) evaluated every time for
each
On Fri, 10 Oct 2014 13:19:00 +0200 Mark Patruck m...@wrapped.cx wrote:
I also get around 6MB/s when using the Alix 2c3 as a simple
router. Problem seems to be the combination...
vr2 - vlan7 (vlandev vr2) - pppoe0 (dev vlan7)
vr + vlan makes me think of this:
Hey folks,
I'm experiencing some really bizarre behavior with tar when trying to
pass it a list of files with the -I option, and I want to look at the
source code but alas it is not in the tree that I can find.
Yet the machine having the issue was built on this very same build machine.
I'd
Hi,
This is the first time when I try to install OpenBSD on a such hardware.
I used bsd.rd to install it on a usb flash drive. After reboot I choose
to boot from the usb drive.
Bootloader can't load bsd kernel and the laptop restarts without error.
If I change SATA mode in BIOS from AHCI to IDE
/usr/src/bin/pax/
On Fri, Oct 10, 2014 at 2:29 PM, Alan McKay alan.mc...@gmail.com wrote:
Hey folks,
I'm experiencing some really bizarre behavior with tar when trying to
pass it a list of files with the -I option, and I want to look at the
source code but alas it is not in the tree that I can find.
Yet the
ln /bin/pax /bin/tar?
Aha, should have figured to look for a link!
Anyway, I solved my problem without looking at source code.
There was a blank line in the file I was using with -I, and that
caused tar/pax to barf.
Hi,
I have an old MSI Wind U100 netbook that currently runs Debian and I
want to replace it with an OpenBSD installation. Debian currently
handles nicely all the devices that I need in order to use the netbook.
I am OK with any of it (even the crucial ones) being unsupported on
OpenBSD. This is
On 2014-10-10 10:17, Adam Wolk wrote:
...In order to prepare for such circumstances I wanted to grab as much
information as possible that could help me diagnose and work on any
missing device support. My ideas so far are grabbing:
- lspci -vvv
- lsmod
- lsusb
- dmesg -k
- /proc/cpuinfo
- dpkg
On Fri, Oct 10, 2014 at 4:17 PM, Adam Wolk adam.w...@koparo.com wrote:
Hi,
I have an old MSI Wind U100 netbook that currently runs Debian and I
want to replace it with an OpenBSD installation.
This is one of the best supported machines I own.
Seriously.
Ciao,
David
--
If you try a few times
Cacti magically started showing the recent data, even though 'rrdtool dump'
shows dates that are quite wrong. I'm wondering nfsen breaking is related...
-Steve S.
-Original Message-
From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of
Steven Surdock
Sent:
Anybody successfully using nfsen?
It was working on 5.4 (except for the portTracker plugin) and now under 5.5
the rrd's are not being updated. I uninstalled and re-initialized and still
no luck.
-Steve S.
Hi,
I have an X31 ThinkPad on which I've installed OpenBSD. Everything
seems to be working fine, with the exception of suspend to RAM.
cat /etc/rc.conf.local
apmd_flags=-C
Upon issuing the `zzz` command, the screen turns off, the machine
spins down and the little crescent-moon sleep
On Fri, Oct 10, 2014 at 10:01:18AM -0700, John Magolske wrote:
Hi,
I have an X31 ThinkPad on which I've installed OpenBSD. Everything
seems to be working fine, with the exception of suspend to RAM.
cat /etc/rc.conf.local
apmd_flags=-C
Upon issuing the `zzz` command, the screen
On Fri, Oct 10, 2014 at 04:52:18PM +, Steven Surdock wrote:
Anybody successfully using nfsen?
It was working on 5.4 (except for the portTracker plugin) and now under 5.5
the rrd's are not being updated. I uninstalled and re-initialized and still
no luck.
-Steve S.
I've been using
On Fri, Oct 10, 2014 at 01:16:17PM -0400, I wrote:
Your pflow(4) device must use a version of netflow protocol compatible with
nfcapd, which are versions 1,5,7, and 9. The pflow driver supports protocol
versions 5 and 10. Use 5, which is the default.
For clarity, protocol version 9 is still
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
Sent: Friday, October 10, 2014 1:16 PM
To: Steven Surdock
Cc: misc@openbsd.org
Subject: Re: nfsen on 5.5
On Fri, Oct 10, 2014 at 04:52:18PM +, Steven Surdock wrote:
Anybody successfully using nfsen?
It
On Fri, Oct 10, 2014 at 05:46:40PM +, Steven Surdock wrote:
Not chrooted. Flow records are being updated and stored correctly. The
RRD and associated PNGs aren't being updated. I can still use the rrd
generated images to look at flows. I've never gotten PortTracker working
as it
On Oct 10, 2014 12:48 PM, Steven Surdock ssurd...@engineered-net.com
wrote:
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
Sent: Friday, October 10, 2014 1:16 PM
To: Steven Surdock
Cc: misc@openbsd.org
Subject: Re: nfsen on 5.5
On Fri, Oct 10, 2014 at
-Original Message-
From: Stan Gammons [mailto:sg063...@gmail.com]
On Oct 10, 2014 12:48 PM, Steven Surdock ssurd...@engineered-net.com
wrote:
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
On Fri, Oct 10, 2014 at 04:52:18PM +, Steven
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
On Fri, Oct 10, 2014 at 05:46:40PM +, Steven Surdock wrote:
Not chrooted. Flow records are being updated and stored correctly.
The RRD and associated PNGs aren't being updated. I can still use the
rrd
On 2014-10-08, Henning Brauer hb-open...@ml.bsws.de wrote:
* Stuart Henderson s...@spacehopper.org [2014-10-05 22:49]:
Normal PF logging isn't particularly well-suited to CGNAT-type requirements,
in order to record both the internal address and the nat mapping you need
to log both the inbound
On 2014-10-10, Josh Grosse j...@jggimi.homeip.net wrote:
If your webserver is chrooted, rrdtool must be included in the chroot, per
/usr/local/share/doc/pkg-readmes/rrdtool-*. The rrdtool-chroot script
makes this easy.
It seems (from future posts in the thread) that this isn't the case
here,
On 2014-10-09, Nicolas Christener li...@0x17.ch wrote:
Besides those steps we also disabled one of the boxes by stopping ospf
and removing the carp interfaces - however, the disconnects didn't go
away.
I was going to suggest that you might have asymmetric routing causing
split states i.e. one
oops, missed your sysctl -a output (I wasn't expecting to see it,
well done ;-)
net.inet.ip.ifq.drops=140720
You would probably benefit from increasing net.inet.ip.ifq.maxlen,
maybe double it once or twice and see if net.inet.ip.ifq.drops stops
increasing.
On 2014-10-09, Jason Tubnor ja...@tubnor.net wrote:
Hi,
I was just testing upgrades prior to the 5.6 release and noticed items
in the rc.conf.local were being ignored. A bit of digging, I noticed,
rc.subr had some changes and more importantly there were quite a few
changes to rc.conf.
On 2014-10-09, Justin Mayes jma...@careered.com wrote:
Ok I got it working. Here is what I did
Enabled multipath routing (sysctl)
Added the relayd anchor to pf.conf
Created a relayd.conf with this in it
gw1=fxp0
gw2=fxp1
table gateways { $gw1 ip ttl 1, $gw2 ip ttl 1 }
router uplinks {
On 2014-10-09, Andy a...@brandwatch.com wrote:
NB; This is the old syntax for queues and I strongly recommend reading
the 3rd edition of The book of PF (A must read for *anyone* new or old
to OpenBSD and PF) :) and using the new syntax
N.B. the oldqueue syntax goes away in 5.6, if you are
On Fri, Oct 10, 2014 at 5:35 PM, Stuart Henderson s...@spacehopper.org wrote:
Yep. You *have* to run sysmerge for this upgrade or you will have broken rc
scripts.
Note to self ...
--
Don't eat anything you've ever seen advertised on TV
- Michael Pollan, author of In Defense of Food
On 10/10/14 22:35, Stuart Henderson wrote:
Yep. You *have* to run sysmerge for this upgrade or you will have broken rc
scripts.
Just wondering: now that sysmerge seems to the main supported method for
upgrading the etc directories, are there any plans to have it
automagically run at the end of
On Oct 10, 2014 2:16 PM, Steven Surdock ssurd...@engineered-net.com
wrote:
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
On Fri, Oct 10, 2014 at 05:46:40PM +, Steven Surdock wrote:
Not chrooted. Flow records are being updated and stored correctly.
-Original Message-
From: Stan Gammons [mailto:sg063...@gmail.com]
...
%sources = (
);
$low_water = 90;
$syslog_facility = 'local3';
@plugins = (
);
%PluginConf = (
);
$MAIL_FROM = 'ssud...@engineered-net.com';
$SMTP_SERVER = 'localhost';
$MAIL_BODY = q{
On Thu, Oct 09, 2014 at 07:27:37AM -0300, Giancarlo Razzolini wrote:
On 08-10-2014 18:25, stan wrote:
Anyone have any sugestions as to how to make this work?
Did you try the suggestion I gave you off list, of making two ssh
connections? Also, you could provide more details of your setup? Both
-Original Message-
From: Stan Gammons [mailto:sg063...@gmail.com]
On Oct 10, 2014 12:48 PM, Steven Surdock ssurd...@engineered-net.com
wrote:
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
On Fri, Oct 10, 2014 at 04:52:18PM +, Steven
On 10/10/14 20:12, Steven Surdock wrote:
-Original Message-
From: Stan Gammons [mailto:sg063...@gmail.com]
On Oct 10, 2014 12:48 PM, Steven Surdock ssurd...@engineered-net.com
wrote:
-Original Message-
From: Josh Grosse [mailto:j...@jggimi.homeip.net]
On Fri, Oct 10, 2014 at
-Original Message-
From: Stan Gammons [mailto:sg063...@gmail.com]
...
Glad you got it going.
I got rid of the unable to create graph messages, but I still have a
couple of problems I haven't figured out. One being getting php to work
with nginx? Does one need to use php-fpm?
I
I'm trying to follow -stable ports, but CVSWEB appears inconsistent.
If I look at ports/lang/php/5.4 for OPENBSD_5_5
(http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/lang/php/5.4/?only_with_tag=OPENBSD_5_5)
it shows the following:
Makefile 1.16.2.1 4 months jasper security update to
On 10/10/14 22:35, Stuart Henderson wrote:
Yep. You *have* to run sysmerge for this upgrade or you will have broken rc
scripts.
Just wondering: now that sysmerge seems to the main supported method for
upgrading the etc directories, are there any plans to have it
automagically run at the
44 matches
Mail list logo