That was my concern exactly. That I would be unable to put the OS of my
choice on hardware that I bought. This is precisely why I don't own an iPad
or iPhone - I want ownership of what I bought. What good is a full on
desktop computer with the inability to disable secure boot other than for
tho
Absolute rubbish! You want to uninstall OpenBSD, go ahead, it's your risk and
loss.
To: misc@openbsd.org
Sent: Saturday,
October 1, 2011 5:49 PM
Subject: Why I uninstalled OpenBSDb&
http://www.trollaxor.com/2011/10/why-i-uninstalled-openbsd.html
Has anyone been following Microsoft's recent attempts to muscle OEMs into
using the secureboot feature of UEFI or is this just a load of media hot air?
Are there any plans for OpenBSD to support UEFI?
Thanks
Is it possible to use npppd as an L2TP client or in a configuration where both
vpn endpoints are OpenBSD based? Thank you in advance.
I think you have to enable NAT Traversal in your ipsec.conf file. Check the
man page on that one. You could try this but I am not sure it will work.
ike passive from any (public-ip) to any ..
I don't know how adventurous you feel, but as long as the the old gear
supports L2TP pass through, you could consider trying npppd. Although, it
requires some preparation work like adding PIPEX to the generic kernel and
building npppd from the source code. Another option is to investigate using
O
This is also entirely possible with Squid. You could simply use basic
authentication so that you can keep an open wireless access point and people
would have to authenticate in order to surf the web or do anything. Create a
temporary account for each customer and add an expiration time?
To:
mis
I don't see anything really wrong with your configuration. When I used
userland PPP, I had the mtu and mru set to 1492 but you took a known working
configuration from a previous setup. Is there a good reason why you couldn't
use kernel PPP? It is really easy:
cat /etc/hostname.pppoe0:
inet 0.0.
OpenLDAP itself does not automatically increment the uid. You might look into
using ypldap but if you don't want to do that, you would have to script your
own tool.
To: misc@openbsd.org
Sent:
Sunday, May 29, 2011 12:22 PM
Subject: OpenBSD + OpenLDAP
Dear list us
Hello list:
Purely for curiosity, is it possible to enable mpls on a tun(4) interface?
Thanks,
Matt
I have to agree with Theo and I was honestly shocked at your initial email.
You don't bite the hand that is trying to help nor do you bite the hand that
is giving you something for free.
Sent: Wednesday, May 25, 2011 3:22 PM
Subject: Re: ospfd/ospf6d causing denial of service(?)
Theo, come on
Have you tried doing the following:
sysctl net.inet.ip.forwarding=1
This effectively turns OpenBSD into a router. If you also need to handle, IPV6
traffic:
syscttl net.inet6.ip6.forwarding=1
To make this consistent across reboots, edit the sysctl.conf file.
You might try playing with some of OpenBSD's virtual routing capabilities. You
could create a couple of VLANs and test out some of the BGP/MPLS VPN
capabilities within the VLANs.
To: misc@openbsd.org
Sent: Sun, May 15, 2011 9:48:36 AM
Subject: Things to do wi
Are the speed results on Windows more representative of the bandwidth of your
connection? If the Windows results are slow when compared to the total
available bandwidth, I would go out on a limb and state that a network card
might be bad. Have you tried different ethernet cards?
Matt
Have y
I use kvm/qemu on a Debian Squeeze box to virtualize all of my OpenBSD stuff
and
it works extremely well (my only wish is that OpenBSD could support Dom0 or the
kvm/qemu equivalent). If you decide to go this route, you need to make certain
to disable MPBIOS after installing OpenBSD on a guest
I am using kernel pppoe and I would like to know if it is possible to add the
pppoe0 interface to a bridge? If so, how do I do it? Do I need to set a link0
flag?
Thanks
Hello All:
I remember reading a misc@ posting from Claudio back in November about the
possibility of adding L2TPv3 & pseudowire support to OpenBSD. Does anyone out
there know if there are still plans to implement this or if any work has been
done? This promises to continue to propel OpenBSD f
I think I see what is happening here. You have the prefix wrong. Try using
/64
Sent from Yahoo! Mail on Android
Hello @misc
I seem to still be having some problems but I have made progress. The branch
office cannot get out to the internet at large which I think may be a NAT
problem. At least, when changing the default route on the branch office, I
don't lose connectivity to it. On the branch office, t
Thank you for all of the help. I am effectively giving up on doing it this
way. OpenVPN seems to have facilities to make it easier to achieve what I want
to do. I appreciate all of the time and effort spent.
On Wed, 2011-04-13 at 07:34 -0700, Matt S wrote:
> Hi Claudiu:
>
>
&g
You might consider a creative solution with Dead Peer Detection. Per
ipsec.conf(4), you enable Dead Peer Detection by using an ike dynamic statement.
Heya
On Thu, Apr 14, 2011 at 3:09 AM, Scott McEachern wrote:
> On 04/13/11 09:38, Randal L. Schwartz wrote:
>
>
172.16.254.2 A.B.C.D.E
My setup is using a GRE tunnel. I have the GRE Tunnel endpoints configured on
/30 subnet. There might be a gap in my understanding.
Thank you again,
Matt
On 12 April 2011 23:53, Matt S wrote:
> Hello @misc:
>
> I am up against a stumper. I have a Site-to-Site
00:0d:65:ab:c8:bf UHLc 10 - 4 em0
matthew-schwartz.c 52:54:00:27:26:22 UHLc 00 - 4 lo0
BASE-ADDRESS.MCAST localhost URS00 33160 8 lo0
On Tue, 2011-04-12 at 19:53 -0700, Matt S wrote:
> Hello @misc:
>
> I am u
Hello @misc:
I am up against a stumper. I have a Site-to-Site IPSEC VPN working
beautifully.
However, I would like the remote site to route all of its traffic through the
VPN. After googling, I seemed to come up with a suggestion to do a route
change
-net 0.0.0.0/0 which didn't work well.
o gre from any
block log quick from
pass inet proto icmp all icmp-type {echoreq, unreach}
pass in on tun0 inet proto tcp from any to any port ssh keep state (max-src-conn
6, max-src-conn-rate 3/1, overload flush global) rdr-to 10.40.60.1
pass on em0 from to any
Penned by Matt S on 20110411 16:59.0
eed to specifically allow GRE traffic?
Thanks,
Matt
On 04/11/11 23:34, Matt S wrote:
> Hello Everyone:
>
> I am using 4.8 RELEASE. Given the following pf.conf, would anyone be able to
> tell me why gre0 is not being skipped?
>
> set skip on lo
> set skip on gre0
> se
DOH! I was following a how-to that showed two separate statements for set skip
on. Works great now! My apologies for the stupid question.
On Mon, Apr 11, 2011 at 2:34 PM, Matt S wrote:
> Hello Everyone:
>
> I am using 4.8 RELEASE. Given the following pf.conf, would anyone be able
Sorry, I forgot to mention that 10.40.65.0 is the remote network trying to
connect to this machine over the GRE tunnel
From: Matt S
To: misc@openbsd.org
Sent: Mon, April 11, 2011 2:34:58 PM
Subject: pf: set skip option
Hello Everyone:
I am using 4.8 RELEASE
Hello Everyone:
I am using 4.8 RELEASE. Given the following pf.conf, would anyone be able to
tell me why gre0 is not being skipped?
set skip on lo
set skip on gre0
set skip on enc0
anchor "ftp-proxy/*"
block in all
pass out all
antispoof for tun0
table persist
table {10.40.60.0/24, 10.40.6
Hello All:
I have been following npppd and PIPEX with some excitement, especially the
support for L2TP. Do you know if npppd will be ready for OpenBSD 4.9 RELEASE
and enabled in the build?
Thanks very much,
Matt
Hello
I am wondering if anyone whom uses OpenBSD as an IPSEC VPN concentrator
could provide an example configuration. I am planning on using OpenBSD 4.7
to achieve this and I need to be able to support multiple road warrior users
who will have dynamic IP addresses. If possible, I would also like
Hello,
Could someone tell me why, given the following ruleset, I cannot get to my
machine from the outside on ipv6? Obviously, I just masked out the ipv6
address for security. Any insight would be much appreciated. Normally, I
am decent with pf when it comes to ipv4. But, I am utterly lost. P
Hello All,
I want to try to use pppoe with kernel ppp in an attempt to improve
performance. So, I have a pppoe0 device configured and connection
established properly. The box that runs kernel pppoe is obviously my
gateway machine. If I am on the gateway machine, performance is decent. If
I am
Given the following:
[internet - DSL Modem - 192.168.0.1]--[bge0:192.168.0.254 - OpenBSD
4.7 - em0:10.40.60.1]--[Laptop - DHCP]
net.inet.ip.forwarding=1
How can I get my laptop to reach the internet? I kind of figured that all I
would have to do is have forwarding enabled on the
Hello All,
I hope you can provide some insight into this problem. Unfortunately, my
ISP uses PPPoE which makes my setup that much more complex and it is, of
course, a dynamic IP. I have three tunnels: tun0 (PPPoE), tun1 (PPTP), and
gif0 (IPv6). The PPTP tunnel is simply a connection that gives
Claudio, Thank you for clarifying that. I somehow missed that tidbit.
On Tue, Jun 22, 2010 at 9:11 PM, Claudio Jeker wrote:
> On Tue, Jun 22, 2010 at 08:05:31PM -0700, Matt S wrote:
> > I apologize in advance if this subject has been addressed but I was
> unable
> > to turn
I apologize in advance if this subject has been addressed but I was unable
to turn up anything from a Google search and the manual pages did not quite
yield enough information. IPv6 needs aside, what is the primary difference
between tun(4) and gif(4)? When is it preferrable to use gif(4) over
tu
37 matches
Mail list logo
