Thomas Mullins wrote:
> We have evaluated Dansguardian at work. It did really well.
We've been using DG for years and it has proven stable, highly
configurable and is actively developed.
AV capabilities and so on. You would do well to give it a spin and read
up on all the features, we found thin
Greets
>> Wouldn't distributing a traplist make it prone to being poisoned? i.e. a
>> pissed off spammer adding a legit email to the traplist.
I plugged in the traplist recently while mostly asleep ( late night )
at the keyboard.
Next day I spen an hour and a half examining my mail server beca
Didier Wiroth wrote:
rule 3/(match) block out on pppoe0: 158.64.137.18.5537 >
212.112.228.242.123: v4 client strat 0 poll 0 prec 0 [tos 0x10]
>
> I have the following rule (the entire pf.conf is below):
> pass out quick on $ext_if inet proto udp from ($ext_if) to any \
> keep state
I had
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Demuel I. Bendano, R.E.E wrote:
> The major easy here is on how the voice traffic from OBSD-VPN-A to
> OBSD-VPN-B and vice versa encrypted. That is, an encryption of the voice
> traffic as full-duplex.
Thanks for your response, unfortunately the cli
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greets
I have been trying numerous configs trying to out smart
the inability of VOIP to transfer to UDP encapsulated RTP.
A very common problem as anyone who deals with NAT and VOIP knows.
The outside G729 enabled phone connects nicely to the VOIP n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Edy wrote:
Hi Edy
> Even tho we limit the users to 30Kbps/thread but if we have extra
> bandwidth in the 3Mbps pool, we would like to distribute it evenly.
You would want to be looking at load balancing Edy. Combined with QoS
can do what you want
B
OpenBSD 4.0 stable
Greets
What are some of the failover times people are getting using carp /
pfsync when the plug gets pulled from one of the units.
BobD
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Joachim Schipper wrote:
Hi Joachim
> I don't really get what you want to do. What connects to what, and which
> IP address are we talking about (does the phone get an address from the
> firewall? The firewall from the ISP?)? From which traffic shoul
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greets
I have a client with a single VOIP connection and a dynamic IP
shared with the PC. It works.
What I am looking for and I know I've seen it but haven't been able to
find it again, is to extract the IP address from traffic and put it into
a tabl
> > I need to get all traffic dup-to'd over to a graphing box using only the
> > firewall, now dup-to works fine for the traffic that passes through the
> > firewall but the blocked traffic doesn't get dup-to'd.
>
> route-to blocked traffic.
Sold ! ... to the man with the funny hat!!
That is the
On Monday 27 November 2006 10:43 am, you wrote:
> hi anyone know about openbsd vs other i have to show this information to
> be ablo to use openbsd in our networks
Are there any speific issues you are addressing, i.e. Traffic managment,
Desktop??
Bob D
On Monday 13 November 2006 7:53 pm, you wrote:
> But I don't know what I need to do differently to change the
> situations.
Is pf enabled and blocking perhaps?
Bob D
I had forgotten about this dns cache my 20 PC lab uses.
Did a reinstall last night. All is well
OpenBSD 4.0-current (GENERIC) #1172: Sun Oct 22 20:45:57 MDT 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel OverDrive Pentium (P24T) ("GenuineIntel" 586-class) 84 MHz
cpu
> I am new to the list and I do not fully understand the process either.
> However, I believe that the project gets a large portion of its funding
> from the sale of CDs. So to give added incentive to buy CDs, those who
> pre-order get the release early. I think this is how it works but I could
>
On Monday 16 October 2006 4:28 am, Sideris Michael wrote:
> > does openbsd 4.0 supports intel ac'97 modem and intel ipw2200 on laptop?
It has installed nicely on my notebook with ipw2200, I haven't tried the
modem.
Bob D
ould I keep going lower, or try some other variation?
Certainly try lower, you may find the "magic bullet"
Sonicwall defaults to 1500
If your comfortable with sending your complete ruleset to the list or to me
privately please do so. It is more often than not considerably more helpful.
Thanks Richard
--
Sincerely
Bob DeBolt
On Thursday 02 February 2006 04:20, you wrote:
Greets
> You'd have to manually tune it. There's no way for altq/pf to know what
> speed "you get" on a given day/week/moment, it only knows about the
> physcial speed (or whatever you set manually) for the interface.
Absolutely correct regarding m
Greets
OpenBSD 3.8 stable
Cable connection to remote town
Normal internal network IP's are DT 192.168.10/24, Remote 192.168.8/24
When pinging and endpoint from one end of an IPSec tunnel to the other,
occasionally the ping returns with one of the 10.X.X.X IP's of a router along
the path. The
On Sunday 01 January 2006 18:52, you wrote:
pfstat works well, it may be a nice starting point for you or it may do
everything you want.
Bob
On Wednesday 21 December 2005 02:09, you wrote:
>now I need to nat my internal network
> to appear to be coming from 10.0.20.254
Is this to accommodate a service of some type or what?
Add some more information as there is likely a
bunch of ways to do something depending of the expected or
requi
Greets
I have a scenario that is simple but I am having trouble getting my head
around. Inside a 192.168.10/24 network there exists a 10.4.6/24 network for
VOIP. Everthing works fine.
The issue I have is setting up a route for a third party VOIP management
company who wants to access the VOI
Greets
I have had an issue with a hard drive filling up in a very short time after
upgrading a software package. Although I resolved the issue and all is well
now, I spent more time than I should have looking for files greater than a
certain size.
I tried numerous combinations of "find" switc
I use it fine on 3.8, fresh cvs update for everything stable.
Bob D
On Friday 04 November 2005 14:47, Tobias Walkowiak wrote:
Hi Tobias
> > Other workaround, disable nat-t with the -T option.
It works fine, I have multiple offices with data and VOIP traffic running
through separate tunnels, the -T has allowed the other 3.8.upgrades to wait
until Monday.
Thank
Greets
I too have the same issue. A straight upgrade, there were only a couple of 3.7
to 3.8 syntax corrections to make. I wonder if maybe there is a minor syntax
change somewhere along the way. I am going through the isakmpd.conf and
isakmpd man pages again to see if I may have missed somethin
Greets
I certainly found it worth a read.
http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0
Bob D
Greets
Dell 866MHz 256MB RAM
OpenBSD 3.8 snapshot, or 3.7 GENERIC or 3.5 GENERIC
All three have shown me the same problem.
Three interfaces rl0, rl1 are the internal and external bridge
interfaces, the bridge works just fine on all three OS versions.
FXP0 is the logging interface to another bo
Funny you should bring this up today
I just received a phone call from a headhunter from 3000 miles away who is
looking for couple of people who are opensource security savvy (closer to
the engineering level and C proficient) and the conversation related to his
client who is putting together f
i.e.
and inound ssh connection keep state you are then controlling outbound
traffic based on an inbound connection. A search or the archives will
reveal if it was Daniel or not.
--
Sincerely
Bob DeBolt
Thanks OpenBSD team!!
Sent via wireless
OpenBSD 3.7-current (GENERIC) #109: Sun May 1 13:42:34 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) M processor 1.60GHz ("GenuineIntel" 686-class) 1.60
GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,SEP,MTRR,P
30 matches
Mail list logo