> On 31. May 2021, at 11:03, Otto Moerbeek <mailto:o...@drijf.net>> wrote:
>
> On Mon, May 31, 2021 at 10:32:56AM +0200, Heinrich Rebehn wrote:
>
>> Hi list,
>>
>> My /etc/pf.conf contains a table which is initialized from a file:
>>
Hi list,
My /etc/pf.conf contains a table which is initialized from a file:
tablefile "/root/pf/tables/myservers”
This table ist not referred to in pf.conf, but in an anchor which is loaded
later on.
I found out that even when the anchor is loaded, the table does not exist.
# pfctl -t
> On 29. May 2021, at 23:08, Leon Fischer wrote:
>
>> From: Heinrich Rebehn
>> Date: Sat, 29 May 2021 21:37:40 +0200
>>
>> Hi all,
>>
>> I noticed that OpenBSD 6.8 switched to using less(1) for the manager. While
>> this seems to off
Hi all,
I noticed that OpenBSD 6.8 switched to using less(1) for the manager. While
this seems to offer many new useful options, I really dislike the clrscreen
upon exit.
I browsed through the less(1) manage to find an option to disable this
behavior, but to no avail.
Can anyone tell me how to
icense enterprise Plus (last time i
> checked)
>
> it is a pitty because I do like Vmware and moving off it was tough as
> breaking an addiction...
>
> Hope this helps
>
> Tom Smyth
>
>
>
> On Sun, 29 Nov 2020 at 22:10, Heinrich Rebehn <mailto:heinrich.r
Hi all,
I am trying to setup an OpenBSD 6.7 virtual machine under VMware ESXi 6.7 to
use as a filtering bridge between two virtual networks. I enabled promiscuous
mode for both virtual switches.
One network is the VMnet network, which is connected to the “outside world”.
“A” ——> “B” ——> “R”
“A
Some things I forgot:
All interfaces are UP
pf(4) ist disabled
bridge0 sees a bunch of lladdrs on em0 and one on em1, which is that of “A”
-Heinrich
> On 29. Nov 2020, at 22:29, Heinrich Rebehn wrote:
>
> Hi all,
>
> I am trying to setup an OpenBSD 6.7 virtual machine under
Unfortunately, switching to vmx(4) did *not* do the trick
-Heinrich
> On 29. Nov 2020, at 22:38, Heinrich Rebehn wrote:
>
> Some things I forgot:
>
> All interfaces are UP
> pf(4) ist disabled
> bridge0 sees a bunch of lladdrs on em0 and one on em1, which is that
Hello list,
After upgrading a OpenBSD host running 6.5 to 6.6 using sysupgrade(8), I
received the email below.
It suggests that the upgrade has been aborted upon failure to upgrade
comp66.tgz. This set was not part of the initial installation.
Does this mean that the system is ‘half upgraded’? W
> On 9. Jun 2019, at 19:41, Stuart Henderson wrote:
>
> On 2019/06/07 23:42, Heinrich Rebehn wrote:
>>
>>
>>> On 7. Jun 2019, at 22:38, Stuart Henderson wrote:
>>>
>>> On 2019-06-07, Heinrich Rebehn wrote:
>>>> Hi li
Hi list,
Doing tcpdump(8) on a wireguard tunnel yields:
# tcpdump -n -i tun0 icmp6
tcpdump: listening on tun0, link-type LOOP
18:44:34.742106 2001:470:7653:5::11 > 2001:638:60f:110::1:2: icmp6: echo
request [flowlab
sessioninfo 70b1fa4b721bb9c9332c513227c838a520d2772c
Hi all,
i am trying to limit bandwidth use on a machine using queues.
My pf.conf is:
r...@vpngw.rebehn.net [~] # cat /etc/pf.conf
# $OpenBSD: pf.conf,v 1.53 2014/01/25 10:28:36 dtucker Exp $
#
# See pf.conf(5) for syntax and examples.
# Remember to set net.inet.ip.forwarding=1 and/or net.i
Am 20.05.2009 um 14:13 schrieb LEVAI Daniel:
On Wednesday 20 May 2009 13.53.35 you wrote:
LEVAI Daniel escribis:
Hi!
In console with telnet, when I press the CTRL+] (^]) it should
exit to
telnet's cli, but when I press it, it does nothing. However it is
not
working only in text console, u
Am 06.03.2009 um 22:56 schrieb Toni Mueller:
Hi,
I'm trying to get a VPN connection to work which should actually be a
no-brainer (and I have quite similar things out there, for years):
network 1
|
Linux w/ isakmpd ("u...@road-warrior")
|
|
Internet
|
|
OpenBSD w/ isakmpd ("off
On Dec 3, 2008, at 10:49 AM, Tom Van Looy wrote:
No, check the ksh man page.
Or, you could use the /usr/bin/time command to just avoid the ksh
builtin.
/usr/bin/time java helloWorld >time.report 2>&1
Which works as expected.
Or use
$ (time java helloWorld) >time.report 2>&1
-Heinrich
Just FYI, The problem still persists on 4.4
On Jul 8, 2008, at 5:13 PM, Heinrich Rebehn wrote:
Anyone? Any ideas?
IMHO this seems to be a serious issue.
-Heinrich
Heinrich Rebehn wrote:
Hi list,
when i do a
# pfctl -f /etc/pf.conf
on my diskless (nfsroot) 4.3-stable machine, the machine
Paul de Weerd wrote:
On Thu, Sep 11, 2008 at 11:59:55AM +0200, Paul de Weerd wrote:
| On Thu, Sep 11, 2008 at 11:33:43AM +0200, Heinrich Rebehn wrote:
| > Paul,
| >
| > when you had success with rum(4), did you use wpa? I am having trouble
| > getting a Hercules HWGUSB2-54 under Op
Paul de Weerd wrote:
On Thu, Sep 11, 2008 at 11:33:43AM +0200, Heinrich Rebehn wrote:
Paul,
when you had success with rum(4), did you use wpa? I am having trouble
getting a Hercules HWGUSB2-54 under OpenBSD 4.4 to work with my FritzBox
7220 using wpa(tkip). At start, the association succeeds
OpenBSD wrote:
On Mon, 8 Sep 2008 23:24:26 +0200
Paul de Weerd <[EMAIL PROTECTED]> wrote:
On Mon, Sep 08, 2008 at 01:52:43PM -0700, OpenBSD wrote:
| BTW, do you know 1 USB wireless card that work without firmware, to be used
to install OBSD?
I have a wi(4) that attaches to usb and doesn't nee
= ID_PROT
Transforms = 3DES-SHA-RSA_SIG,AES-SHA-RSA_SIG
This worked w/o problems.
HTH,
Heinrich
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
start the shell. With dev, you get no warning
message and the chrooted environment works as expected, except for the result
from tty(1).
# mkdir -p /tmp/root/var/run
# cp -p /var/run/dev.db /tmp/root/var/run
# chroot /tmp/root sh
# tty
/dev/ttyp0
found with ktrace(1)
Cheers,
Heinrich
--
?
Denis
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
skogzort wrote:
Is it necessary to recompile just to apply a security patch?
Hello,
I know nothing/very little about OpenBSD or UNIX. I have been tasked with
updating our OpenBSD DNS server with a security fix (Vulnerability Note
VU#800113- Multiple DNS implementations vulnerable to cache pois
Jul 24 14:29:48 frw1 last message repeated 4 times
Jul 24 14:29:58 frw1 named[32206]: Binding locally
Is this an error? Or what does it mean?
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax
Anyone? Any ideas?
IMHO this seems to be a serious issue.
-Heinrich
Heinrich Rebehn wrote:
Hi list,
when i do a
# pfctl -f /etc/pf.conf
on my diskless (nfsroot) 4.3-stable machine, the machine hangs and needs
a hard reset.
The interface used for nfsroot is xl0 and i have
set skip on
loading the new
ruleset, making it impossible to read /etc/pf.conf over NFS.
Is my assumption true? Should this be considered a bug?
I remember that this worked with an older (maybe 3.9 or 4.0) version of
OpenBSD.
Kind regards,
Heinrich Rebehn
University of Bremen
Physics / Electrical and
Oops, i forgot to Cc the list!
Imre Oolberg wrote:
Hi!
> (private) HKS wrote:
Your carp interface won't be doing much for you if it doesn't have an
IP address configured.
Yes, i think so, too and i have carp device configured ip aadress.
To present my case more clearly here is my little ex
Paul de Weerd wrote:
On Thu, Mar 13, 2008 at 11:55:53PM +1030, Damon McMahon wrote:
On 13/03/2008, at 7:32 PM, Heinrich Rebehn wrote:
Do i have to enable broadcasts explicitly ? I could not find anything in
the manpages, and googling for "routing broadcasts" or similar yields o
lter is not to blame.
Do i have to enable broadcasts explicitly ? I could not find anything in
the manpages, and googling for "routing broadcasts" or similar yields
only pages dealing with routing protocols.
Thanks for any help!
-Heinrich
Heinrich Rebehn
University of Breme
Hi All,
4.3 works fine on my Notebook except for the thing mentioned in
$subject. These problems also exist with 4.2.
The freeze occurs w/ ACPI enabled when bringing up ral0. Disabling ACPI
solves the freeze problem, but ral0 has difficulties associating with my
Netgear WGT624-v3 WLAN router
Chris wrote:
On Jan 29, 2008 12:24 AM, Chris <[EMAIL PROTECTED]> wrote:
I am trying to use hotplugd(8) to mount my USB flash drive (/dev/sd1i)
automatically in /mn/flash when I plug it it. I enabled hotplugd in
/etc/rc.conf.local and wrote the following script (chmod +x bit set)
#!/bin/sh
I forgot to Cc the list, so i resend it:
Dieter Rauschenberger wrote:
On Sat, Dec 29, 2007 at 05:16:11AM +0100, [EMAIL PROTECTED] wrote:
Either no developer uses aDSL at home (with a ISP forcing him to reconnect
every 24 hours) or nobody uses OpenBSD as router or nobody uses the
connection perm
Matthieu Herrb wrote:
On Nov 28, 2007 5:16 PM, Heinrich Rebehn <[EMAIL PROTECTED]> wrote:
Hi list,
the 26-NOV-2007 snapshot seems to be missing xorgcfg(1).
I installed all distribution sets.
Has it been deprecated?
Yes. It has been deprecated in xserver 1.4. No one has maintain
Hi list,
the 26-NOV-2007 snapshot seems to be missing xorgcfg(1).
I installed all distribution sets.
Has it been deprecated?
-Heinrich
Damon McMahon wrote:
From: Heinrich Rebehn <[EMAIL PROTECTED]>
Date: 29 October 2007 9:14:16 PM
To: OpenBSD
Subject: Hoe to specify multiple transform suites in ipsec.conf(5)
Hello list,
I am trying to move my IPsec configuration from isakmpd.conf to
ipsec.conf.
However i cannot
SUITE
in isakmpd.conf
does not help, because ipsecctl overrides it. Is there a way to tell
ipsecctl to not specify a suite at all, so that the default is used?
BTW, is ipsec.conf meant to ever become a full replacement for isakmpd.conf?
Thanks for any hints.
--
Heinrich Rebehn
University of B
Hi list,
when i try to update my sources using CVS i get e following error:
###
Updating src
M usr.sbin/spamdb/spamdb.c
Updating ports
? editors/fte
cvs [server aborted]: error closing CVS/Entries.Backup: No space left on
d
issing!
The other lines show the transition from MASTER to BACKUP. I have
verified in both cases that *all* carp devices changed state with
ifconfig(8).
Are there known issues with ifstated(8) or kevent(2) about lost events?
As a workaround i will change my $carp_up definition to test if *any* of
he other lines show the transition from MASTER to BACKUP. I have
verified in both cases that *all* carp devices changed state with
ifconfig(8).
Are there known issues with ifstated(8) or kevent(2) about lost events?
As a workaround i will change my $carp_up definition to test if *any* of
Marco Pfatschbacher wrote:
On Tue, Oct 23, 2007 at 11:10:32AM +0200, Heinrich Rebehn wrote:
Googling showed up quite a few posts of people having problems with CARP
and the "incorrect hash" message, but none really helped me.
the most common reason for "incorrect hash" m
Heinrich Rebehn wrote:
Hi All,
i am trying to setup a carp'ed pair of firewalls and am fighting with
strange CARP behavior.
"frw1" is i386, "frw2" is amd64, but both run i386 OpenBSD 4.2
On each machine i have configured 4 vlans on the sk0 interface.
The carp int
really helped me.
[EMAIL PROTECTED] [/etc] # pfctl -sr | grep carp
pass quick proto carp all no state
[EMAIL PROTECTED] [~] # pfctl -sr | grep carp
pass quick proto carp all no state
Any ideas?
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Departme
Landry Breuil wrote:
On 10/19/07, Jan Stary <[EMAIL PROTECTED]> wrote:
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
/usr/ports/packages .. i'd like it to be sh
WHITE, SPAMTRAP, GREY, expire records).
Can i reliably copy /var/db/spamd while spamd/spamlogd are still running
or must they be stopped first?
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
server or
anything else that needs to respond to IP broadcasts.
Is this expected behavior or may this be just a vmware anomaly?
(Yes, i did chmod 666 /dev/vmnet*)
I did not see anything about this in the docs.
Attached is the ifconfig output of one CARP machine plus its dmesg.
--
Heinrich Rebehn
trick
Maybe it's the humidity.
Maybe it's something in your ipsec.conf file.
Based on the info you have provided so far, both seem to be about as
like as each other ;)
ipsec.conf
ifconfig -A
maybe a quote from your dumps
and perhaps a bit of logging info
--
Hein
behavior or may this be just a vmware anomaly?
(Yes, i did chmod 666 /dev/vmnet*)
I did not see anything about this in the docs.
Attached is the ifconfig output of one CARP machine plus its dmesg.
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department
Siju George wrote:
Hi
I wrote a script and am trying to run this command
/usr/bin/ssh 172.16.2.26 -l root diff /usr/logs/fw/squid/access.log
/usr/logs/fw/squid/access.log.bak > /usr/logs/fw/squid/access.log.`date
"+%Y%m%d"`
on 172.16.2.26 from another machine 172.17.2.0
However the file ( acc
Adriaan wrote:
On 8/1/07, Peter N. M. Hansteen <[EMAIL PROTECTED]> wrote:
Adriaan <[EMAIL PROTECTED]> writes:
There are no X installation file sets for i386 snapshots.
Don't slashdot it just yet. I think we can be reasonably sure that
even on i386, OpenBSD 4.2 will ship with installable X bi
Heinrich Rebehn wrote:
Hello list,
after using ipsec for some years now, i never experienced an upgrade
breaking it. But after after moving to 4.1 (new install) i can not get
it to work anymore. I have copied the complete /etc/isakmpd directory
from the 4.0 installation to the new one and
Almir Karic wrote:
pf is probably the problem, 'keep state' is assumed unless
explicitelly stated otherwise.
On 7/6/07, Heinrich Rebehn <[EMAIL PROTECTED]> wrote:
Hello list,
after using ipsec for some years now, i never experienced an upgrade
breaking it. But after after mo
ded, but i am unsure if i can
post the output of "openssl x509 -text ..." of a cert. Would this enable
someone else to use it?
Thanks for any hints
Heinrich
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telec
sec
biomask ff65 netmask ff65 ttymask ffe7
pctr: user-level cycle counter enabled
dkcsum: wd0 matches BIOS drive 0x80
PXE boot MAC address 00:04:76:a0:43:bd, interface xl0
nfs_boot: using interface xl0, with revarp & bootparams
nfs_boot: client_addr=192.168.34.100
nfs_boot: server_addr=
expected behavior? How can i
change that?
I noticed that the route to the 134.102.176.0/24 network points to
vlan0, not carp0. Is this correct?
Thanks for any info,
Heinrich
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of
Stuart Henderson wrote:
On 2007/06/22 12:15, Heinrich Rebehn wrote:
Stuart Henderson wrote:
On 2007/06/22 09:59, Heinrich Rebehn wrote:
i am trying to get my new WRAP board to boot via pxe. pxeboot loads fine
but seems to stall at the point where memory should be probed.
enable the serial
Tom Cosgrove wrote:
>>>> Heinrich Rebehn 25-Jun-07 13:57 >>>
>> Tom Cosgrove wrote:
>>> Sorry, one last thing: I find a dmesg from a (presumably unsuccessful)
>>> boot via xl0.
>>>
>>> Could you post that, too?
>>>
Heinrich Rebehn wrote:
> Reyk Floeter wrote:
>> hi!
>>
>> On Mon, Jun 25, 2007 at 11:50:03AM +0200, Heinrich Rebehn wrote:
>>> I have successfully set up a client for diskless(8) booting.
>>> However, this works only when booting from the first (onboard) nic.
Reyk Floeter wrote:
hi!
On Mon, Jun 25, 2007 at 11:50:03AM +0200, Heinrich Rebehn wrote:
I have successfully set up a client for diskless(8) booting.
However, this works only when booting from the first (onboard) nic.
When i use another nic, the kernel still tries to do revarp from the
first
default search:
/*
* Find a network interface.
*/
if (nfsbootdevname)
ifp = ifunit(nfsbootdevname);
else
...
but where/how can i set nfsbootdevname?
The boot.conf(8) manpage talks about passing options to the kernel via
"set howto". Could i use that?
--
Heinrich Rebehn
University
Stuart Henderson wrote:
On 2007/06/22 09:59, Heinrich Rebehn wrote:
i am trying to get my new WRAP board to boot via pxe. pxeboot loads fine but
seems to stall at the point where memory should be probed.
enable the serial console in $TFTPROOT/etc/boot.conf.
I tried that, but the WRAP does
pci pxe![2.1] <<== stalls here!
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
carlopmart wrote:
Heinrich Rebehn wrote:
carlopmart wrote:
Matthias Bertschy wrote:
carlopmart wrote:
Hi all,
I have a very strange problem. I am using an OpenBSD 4.1 with
isakmpd config (isakmpd.conf and isakmpd.policy) to establish vpn
connections for my roadwarriors clients.
When
carlopmart wrote:
Matthias Bertschy wrote:
carlopmart wrote:
Hi all,
I have a very strange problem. I am using an OpenBSD 4.1 with
isakmpd config (isakmpd.conf and isakmpd.policy) to establish vpn
connections for my roadwarriors clients.
When two roadwarriors clients that use the same pu
Heinrich Rebehn wrote:
Heinrich Rebehn wrote:
Hi list,
I have a VIA EPIA-CN 1EG board with a C7 CPU and i cannot get
sound to work.
Doing a
# cat > /dev/audio
only produces a high sounding beep, the length of which depends on the
size of the file. Using /dev/sound produces the s
Heinrich Rebehn wrote:
Hi list,
I have a VIA EPIA-CN 1EG board with a C7 CPU and i cannot get sound
to work.
Doing a
# cat > /dev/audio
only produces a high sounding beep, the length of which depends on the
size of the file. Using /dev/sound produces the same. I can control
off
outputs.center=255
outputs.center.mute=off
outputs.lfe=255
outputs.lfe.mute=off
outputs.extamp=off
The kernel is GENERIC w/ ACPI enabled. Using GENERIC makes no difference.
Any ideas?
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department
y show "RNG AES" in dmesg, SHA and
RSA are missing. Are these CPUs able to accelerate IPsec at all?
This is quite a few questions, but i have not yet found a comparison of
the CPUs w/r to encryption support :-)
Thanks for any infos or pointers.
--
Heinrich Rebehn
University o
Jonathan Gray wrote:
On Tue, Jan 30, 2007 at 08:50:53AM +0100, Heinrich Rebehn wrote:
attaching the drive to a notebook via a IDE/USB converter easily yields
20 MB/s. So the drive *is* faster. While i could live with 8 MB/s i
cannot accept the high CPU usage. It seems to make the installed
Szentivanyi Matyas wrote:
Hi Heinrich!
I think it's almost the best speed you can achieve from the device. I've
got the same type of Soekris with a SAMSUNG HM080HC HDD (which is the
slave).
This HDD supports perpendicular recording
(http://en.wikipedia.org/wiki/Perpendicular_recording). Highe
kcsum: wd0 matches BIOS drive 0x80
dkcsum: wd1 matches BIOS drive 0x81
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
######
Thanks for any help :-)
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
Heinrich Rebehn wrote:
Hi all,
i just received a Soekris 4801 which i want to use as a file and print
server. However, i cannot get the printer to work. For testing purposes
i am using a HP Deskjet 600 connected via a USB/Parallel cable.
When i connect the printer it shows up as:
ulpt0 at
Christopher Snell wrote:
On 1/15/07, Heinrich Rebehn <[EMAIL PROTECTED]> wrote:
Hi all,
which crypto cards actually work in a soekris 4801 under OpenBSD?
You're going to have a hard time finding supported Mini-PCI cards,
other than the HiFn stuff.
Instead, check out the Commel m
Christian Ney wrote:
Hi Heinrich,
I thought about bying a vpn1411, but have read about problems with
corrupted mac, which don't seem to be resolved so far. This is a bit
confusing: http://www.openbsd.org/i386.html states that the board is
supported, so does the soekris website. However:
http://
n this box
is too slow for my use and i will have to return it to my dealer.
Regards,
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
s saying that this used to
work with 2.8 :-(. The FAQ says nothing about printing at all.
Am i missing something? Anything to configure?
dmesg is attached. Thanks for any help :-)
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommu
Prabhu Gurumurthy wrote:
Heinrich Rebehn wrote:
Hi list,
i am getting a daily insecurity report from my system system saying:
##
Checking special files and directories.
Output format is:
filename:
criteria (shouldbe, reallyis
but then
one cannot as easily see where the link points to.
Sorry if this might sound like nitpicking, but i do not want to get used
to ignoring security warnings.
Thanks for any help,
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department
pn_gw peer $lan_gw \
quick auth $quick_auth \
enc $quick_enc \
psk $psk_ahb
#--#
ahblaptop <- vpn-gw <- ahb64
[snipping dmesg and iperf numbers]
Does anybody know if OpenVPN will also benefit
Martin Gignac wrote:
On 10/23/06, Heinrich Rebehn <[EMAIL PROTECTED]> wrote:
Shouldn't openvpn write to /var/db or /var/log?
I don't know if these locations can be hardcoded at compile time, but
from the stock OpenBSD OpenVPN package that I use (2.0.6) it seems
that fi
is the files "ipp.txt" and "openvpn-status.log".
My question: is it good habit at all to write to /etc?
Since my router is running from USB-flash i normally have the root fs
readonly and only /var, /tmp and /dev on a ramdisk.
Shouldn't openvpn write to /var/db or /var/l
Matthew Closson wrote:
On Tue, 25 Jul 2006, Heinrich Rebehn wrote:
Matthew Closson wrote:
On Mon, 24 Jul 2006, Heinrich Rebehn wrote:
Hi list,
I am running into a strange problem with IPSec, MTU? fragmentation?
which i am unable to resolve.
My Setup:
@home i have one PC which connects
Matthew Closson wrote:
On Mon, 24 Jul 2006, Heinrich Rebehn wrote:
Hi list,
I am running into a strange problem with IPSec, MTU? fragmentation?
which i am unable to resolve.
My Setup:
@home i have one PC which connects to our institute network with
IPSec. The PC connects to the internet
me know.
Thanks for any help,
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
Also, the CM9 seems to use the 5213 chipset, which the manpage does not
mention. Is it also supported?
Or are there better choices?
Thanks for any info,
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218
Heinrich Rebehn wrote:
[EMAIL PROTECTED]@mgEDV.net wrote:
some hints:
- the other switch seems to be cisco, too. (catalyst series, IOS)
- if the trunk contains more lines, check them for physical damage
(maybe 1
fails sometimes, 2 is ok)
- try to setup the cisco-switches for nonegotiate
[EMAIL PROTECTED]@mgEDV.net wrote:
some hints:
- the other switch seems to be cisco, too. (catalyst series, IOS)
- if the trunk contains more lines, check them for physical damage (maybe 1
fails sometimes, 2 is ok)
- try to setup the cisco-switches for nonegotiate-trunking to your box
- setup the
Stuart Henderson wrote:
On 2006/04/04 13:24, Rob Gault wrote:
The first thing I noticed is that SK0 is only at half duplex
OP says the cable is out. However "auto" and "duplex full" are
likely to not be compatible (they aren't for 10/100, though I'm
not sure about gig).
I will double check
lex full
Thanks for any hints,
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
lo0: flags=8049 mtu 33224
groups: lo
inet 127.0.0.1 netmask 0xff00
sk0: flag
at tricky to setup) as well as with
preshared secret.
HTH,
Heinrich
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
rypted?
Which public key is used? Is it sent along with the certificate?
I can post my config and logfiles if required
Thanks for your help,
Heinrich
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone :
Many helpful people wrote:
[snip]
Thanks to all for so many replies :-)
You have convinced me that relying only on Sender/Recipient is really a
bad idea. I will try the mentioned patch(es) that whitelist a complete
/24 subnet.
Regards,
Heinrich
eric wrote:
On Tue, 2005-06-21 at 15:17:14 +0200, Heinrich Rebehn proclaimed...
I have configured spamd with greylisting on our OpenBSD Firewall and it
works very well, spam went close to zero :-). There is one issue though
that can cause long delay of mails:
If a mail is sent via a server
.
I have been browsing through the sources in an attempt to hack this
myself, but my programming experience is as sparse as the comments are
;-). Can someone point me to the exact localtion? Or am i completely on
the wrong trip?
Regards,
Heinrich
--
Heinrich Rebehn
University of
don't want to use the alternative of
untarring the install sets by hand, because this gives me an
unconfigured system with no root pw, no devices, no whatnot...
--
Heinrich Rebehn
University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -
Phone : +49/421/218-4664
Fax :-3341
95 matches
Mail list logo