I’m doing something like this at home.
table persist
### block machines out
block out quick on egress tagged BLOCK
pass out quick on egress from to any nat-to (egress:0) keep
state \
(max-src-conn 1, max-src-conn-rate 1/1, overload
flush global) tag BLOCK
Then I just add IP to , the
On Tue, Mar 07, 2017 at 05:19:29PM +1100, Jonathan Gray wrote:
> On Tue, Mar 07, 2017 at 06:58:25AM +0100, Otto Moerbeek wrote:
> > On Mon, Mar 06, 2017 at 05:58:36PM +1100, Jonathan Gray wrote:
> >
> > > On Mon, Mar 06, 2017 at 07:46:30AM +0100, Otto Moerbeek wrote:
> > > > On Sun, Mar 05, 2017
On Tue, Mar 07, 2017 at 06:58:25AM +0100, Otto Moerbeek wrote:
> On Mon, Mar 06, 2017 at 05:58:36PM +1100, Jonathan Gray wrote:
>
> > On Mon, Mar 06, 2017 at 07:46:30AM +0100, Otto Moerbeek wrote:
> > > On Sun, Mar 05, 2017 at 09:41:27AM -0500, Joe Gidi wrote:
> > >
> > > > I was stuck at that po
On Mon, Mar 06, 2017 at 05:58:36PM +1100, Jonathan Gray wrote:
> On Mon, Mar 06, 2017 at 07:46:30AM +0100, Otto Moerbeek wrote:
> > On Sun, Mar 05, 2017 at 09:41:27AM -0500, Joe Gidi wrote:
> >
> > > I was stuck at that point for a while. Make sure you have everything you
> > > need
> > > to boo
I played a bit with an ikev2 to connection to Azure. It wouldn't connect
until I changed the childsa to aes-256-gcm. Here is a iked.conf config
that will connect. It didn't pass traffic and I stopped playing with it,
so this may not be that useful.
ikev2 passive esp \
from 10.0.0.0/24 to 192.16
Well, is mentioning this even important?
DUID use solves part of the problem, BIOS selection solves other parts
of the problem, and I suspect the remainder of the problem is so
machine-dependent that I wonder why it is documented..
> When first (re-) read I thought 'what? attaching an usb drive c
When first (re-) read I thought 'what? attaching an usb drive cannot
change other drives' - until I figured this was about boot time.
Say so:
Marcus
Index: faq14.html
===
RCS file: /cvs/www/faq/faq14.html,v
retrieving revision 1.352
On Mon, Mar 06, 2017 at 06:22:07PM +0100, Juan Francisco Cantero Hurtado wrote:
> On Mon, Mar 06, 2017 at 10:40:52AM +, C. L. Martinez wrote:
> > Hi all,
> >
> > Where can I see what new features will be released in VMM for OpenBSD 6.1?
> > For example, it could be possible to run linux or f
On Mon, Mar 06, 2017 at 10:40:52AM +, C. L. Martinez wrote:
> Hi all,
>
> Where can I see what new features will be released in VMM for OpenBSD 6.1?
> For example, it could be possible to run linux or freebsd guests apart of
> openbsd guests?
No, vmm will only support OpenBSD in the next r
Is 7 years too long to wait for an answer?
I had been struggling with the same issue/question, and since yours was the
only related post I could find, I figured I'd come back to share what I
found. Try putting a slash and then the creatorid, like this:
I didn't test this on OpenBSD but I did tes
Hello,
I am trying to monitor relayd through snmpd(8).
It seems that a MIB exists :
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share/snmp/OPENBSD-RELAYD-MIB.tx
t?rev=1.3&content-type=text/x-cvsweb-markup
But SNMPwalking these OIDs doesn't work.
snmpctl show mib doesn't show them either.
I trie
>> In the near future, webbrowsers will start to mark the non-https pages
"red".
I don't agree that https everywhere is a good thing for technical and
social reasons (making insecure sites look secure and pandering to
them/avoiding their discovery). I sense I may get even more irritated with
the b
table { 192.168.10.31 }
table { 192.168.10.78 }
http protocol somename {
tcp { nodelay, sack, backlog 1024 }
match header set "Proxy" value "filtered"
match header set "X-Forwarded-For" value "$REMOTE_ADDR"
match header set "X-Forwarded-By" value "$REMOTE_ADDR:$SE
privoxy will be faster I think. as well as footprint on the system.
But both privoxy and squid are a bit different, especially if youâll need to
chain proxies.
> 24 feb. 2017 kl. 17:39 skrev Alan Corey :
>
> I'm looking at privoxy although I'm not sure it's more appropriate
> than squid. I'm h
Just create carp3 and configure it the same way as carp0, except for the
password.
No aliases what so ever. Later in pf.conf do a nat-to from dnz to carp3.
fw1# ifconfig trunk0
trunk0: flags=8943 mtu 1500
lladdr 00:25:90:f9:74:b0
index 7 priority 0 llprio 3
trunk: trunkprot
On 6 March 2017 at 12:35, Marko Cupać wrote:
> Hi,
>
> I'd like to start X immediately after login on certain local tty with
> ksh as a login shell.
>
Hey, the following in .kshrc works for me.
if [ "$(tty)" = /dev/ttyC0 ]; then
startx
fi
But I just type "startx" these days.
Cheers,
Matej
Hi,
I'd like to start X immediately after login on certain local tty with
ksh as a login shell.
In tcsh on FreeBSD I do it by adding the following to my .tcshrc:
if ($tty == ttyv4) then
startx
logout
endif
What would be equivalent in ksh on OpenBSD? Also, should I put it
in .profile or .ksh
Hi all,
Where can I see what new features will be released in VMM for OpenBSD 6.1? For
example, it could be possible to run linux or freebsd guests apart of openbsd
guests?
Many thanks.
--
Greetings,
C. L. Martinez
18 matches
Mail list logo
