Any experience with 10Gbe?

managing to get close to line speed above 1 Gbe. I don't want to just buy expensive hardware and hope that it works. Has anyone here been able to get close to 10 Gb/s networking with OpenBSD? I don't need to be able to have more than a few pf-rules. -- Nicholas C. L. Ipsen

Re: WHere to put certificates for IKEDv2?

On Sun, Jun 24, 2018 at 12:42:15PM +0200, C. L. Martinez wrote: > On Sun, Jun 24, 2018 at 08:43:32AM +, Stuart Henderson wrote: > > On 2018-06-23, C. L. Martinez wrote: > > > Hi all, > > > > > > I am using Easy-RSA to manage my home's CA (using ellipti

Re: WHere to put certificates for IKEDv2?

On Sun, Jun 24, 2018 at 08:43:32AM +, Stuart Henderson wrote: > On 2018-06-23, C. L. Martinez wrote: > > Hi all, > > > > I am using Easy-RSA to manage my home's CA (using elliptic curve > > certificates). I have created a certificate for my OpenBSD gw for IK

WHere to put certificates for IKEDv2?

N1_DN ca_validate_cert: /C=ES/... ok Do i need to install user certificates also in OpenBSD gw? thanks -- Greetings, C. L. Martinez

Re: Errors with Php and curl under OpenBSD 6.3

akis wrote: > > Hello, > > try copying cert.pem to the www chroot: > > > > # mkdir -p /var/www/etc; cp /etc/ssl/cert.pem /var/www/etc/ssl > > > > and restart php-fpm. > > > > On Tue (24/04/18), C. L. Martinez wrote: > > > Hi all, > >

Errors with Php and curl under OpenBSD 6.3

Hi all, Since this morning my OpenBSD 6.3 host (with tt-rss installed) returns the following error when I try to add some feeds: Couldn't download the specified URL: ; 77 error setting certificate verify locations: CAfile: /etc/ssl/cert.pem CApath: none It seems some type of problem with

Re: OpenBSD blocks IPsec traffic

> On Wed, 18 Apr 2018 15:01:24 +0200 > "C. L. Martinez" <carlopm...@gmail.com> wrote: > > > Hi all, > > > > I am trying to configure an ipsec tunnel (host-to-host) between two > > hosts that go through an openbsd firewall. Tunnel is established,

OpenBSD blocks IPsec traffic

Hi all, I am trying to configure an ipsec tunnel (host-to-host) between two hosts that go through an openbsd firewall. Tunnel is established, but when I try to, for example, connect via ssh from one host to the other, pf blocks traffic: Apr 18 12:53:00.286351 rule 24/(match) [uid 0, pid 19127]

Migrating nginx config to OpenBSD's httpd

Hi all, I am trying to migrate nginx configuration to OpenBSD's httpd. All it is working ok, except for some proxy reverse config that I use with nginx's config, like for example: server { listen 80; server_name internal.w01.domain.org; location / { proxy_pass

Re: Testing IKEv2 with Android devices

On Wed, Nov 29, 2017 at 9:33 AM, Stuart Henderson <s...@spacehopper.org> wrote: > On 2017-11-26, C. L. Martinez <carlopm...@gmail.com> wrote: >> >> Ok, it is seems the prolem is that iked(8) does not know how to perform >> Diffie-Hellman group negotiation: >&g

Re: Testing IKEv2 with Android devices

On Sun, Nov 26, 2017 at 09:02:46PM +0100, C. L. Martinez wrote: > Hi all, > > I am testing IKEv2 for Android roadwarriors clients ... I have done a very > basic config: > > ikev2 "roadwarriors" passive esp \ > from 0.0.0.0/0 to 172.22.55.0/27 \ >

Testing IKEv2 with Android devices

e SIGNATURE_HASH_ALGORITHMS ikev2_msg_send: IKE_SA_INIT response from 172.17.35.9:500 to 172.17.35.20:500 msgid 0, 451 bytes config_free_proposals: free 0x1ccfc4952580 Android device is a Samsung Galaxy Edge S7 (Adnroid 7.0) and OpenBSD is 6.2 with all patches ... What ma I doing wrong? Thanks. -- Greetings, C. L. Martinez

Re: Problems configuring ifstated with dhcp interfaces /etc/ifstated.conf:4: macro '2' not defined (SOLVED)

On Fri, Nov 10, 2017 at 07:28:19PM +, C. L. Martinez wrote: > Hi all, > > I need to configure ifstated for two public interfaces and one of them is a > dhcp interface. To accomplish this I have configured the following macro in > ifcstated.conf's file: > > wired_ga

Problems configuring ifstated with dhcp interfaces /etc/ifstated.conf:4: macro '2' not defined

onf:4: macro '2' not defined /etc/ifstated.conf:34: macro 'wired_gate_test' not defined /etc/ifstated.conf:34: syntax error ifstated: invalid start state wired From command line, ping command works ... What am I doing wrong? Thanks. -- Greetings, C. L. Martinez

Re: Debugging a php's script startup

te_rss.log" daemon_user="www" . /etc/rc.d/rc.subr pexp="${daemon}${daemon_flags:+ ${daemon_flags}}" rc_bg=YES rc_reload=NO rc_post() { rm -f /var/www/htdocs/rss/lock/update_daemon.lock } rc_cmd $1 Inside .ini I have configured mysqli.default_socket option: mysqli.default_socket = /var/www/var/run/mysql/mysql.sock -- Greetings, C. L. Martinez

Debugging a php's script startup

ar/run/mysql/mysql.sock If I am not wrong, then, how can I configure this startup script? Thanks -- Greetings, C. L. Martinez

About WPA2 compromised protocol

HI all, Regarding WPA2 alert published today: https://www.krackattacks.com/, if I use an IPSec tunnel with shared-key or certifcate or an OpenVPN connection to authenticate and protect clients and hostAP comms, is this vulnerability mitigated? Thanks.

Re: sysmerge is not needed when updating to 6.2?

of the updated system. > Perfect. Many thanks. -- Greetings, C. L. Martinez

sysmerge is not needed when updating to 6.2?

thanks. -- Greetings, C. L. Martinez

Running OpenBSD 6.1 under vmware fusion

Section Section "Device" Identifier "default device" Driver "vmware" EndSection Section "Screen" Identifier "default screen" Device "default device" Monitor "

Re: Problem with key bindings with mutt under OpenBSD 6.1

On Sat, Sep 02, 2017 at 02:48:12PM +0200, Anton Lindqvist wrote: > On Sat, Sep 02, 2017 at 11:01:14AM +0000, C. L. Martinez wrote: > > Hi all, > > > > I have used mutt over several months under FreeBSD and RHEL/CentOS. I have > > migrated my desktop to OpenB

Problem with key bindings with mutt under OpenBSD 6.1

;\CI" or "\CH", for example, works without problems ... Is it "\CO" defined by default under OpenBSD? How can I revert this behavior? Thanks. -- Greetings, C. L. Martinez

Re: After applying patches, kernel version is slower?

On Thu, May 04, 2017 at 07:49:04AM +, Stuart Henderson wrote: > On 2017-05-04, C. L. Martinez <carlopm...@gmail.com> wrote: > > Hi all, > > > > I have applied the recent patches for OpenBSD 6.1 in two hosts and I see a > > strange behavior. In a non-patched O

After applying patches, kernel version is slower?

GENERIC#4 amd64 Any idea why?? -- Greetings, C. L. Martinez

Sysctl options to install IDS software

irst stage :) ... I prefer to do some type of control first and after apply these changes. Any recommendation? Many thanks. -- Greetings, C. L. Martinez

Re: What does it mean this error when I try install a package?

es at > http://ftp.openbsd.org/pub/OpenBSD/6.1/packages/amd64/index.txt > > So, try > > pkg_add -v python-2.7.13p0 > > or, check the -z switch of pkg_add (man pkg_add) > > pkg_add -v -z python-2.7.13 > Yep, undertood. Many thanks. -- Greetings, C. L. Martinez

What does it mean this error when I try install a package?

amd64; -- Greetings, C. L. Martinez

Re: New features in VMM for OpenBSD 6.1?

On Mon, Mar 06, 2017 at 10:55:23AM -0800, Mike Larkin wrote: > On Mon, Mar 06, 2017 at 06:22:07PM +0100, Juan Francisco Cantero Hurtado > wrote: > > On Mon, Mar 06, 2017 at 10:40:52AM +, C. L. Martinez wrote: > > > Hi all, > > > > > > Where can I

New features in VMM for OpenBSD 6.1?

Hi all, Where can I see what new features will be released in VMM for OpenBSD 6.1? For example, it could be possible to run linux or freebsd guests apart of openbsd guests? Many thanks. -- Greetings, C. L. Martinez

Re: How easy is to do a MITM/spoof/etc. a public IP address?

On Thu, Jan 26, 2017 at 10:51:14AM +, Stuart Henderson wrote: > On 2017-01-25, C. L. Martinez <carlopm...@gmail.com> wrote: > > On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote: > >> On 2017-01-25, C. L. Martinez <carlopm...@gmail.com> wrote: >

Re: How easy is to do a MITM/spoof/etc. a public IP address?

On Wed, Jan 25, 2017 at 08:20:32PM +0100, Daniel Gillen wrote: > On 25.01.2017 15:42, C. L. Martinez wrote: > > On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote: > >> On 2017-01-25, C. L. Martinez <carlopm...@gmail.com> wrote: > >>> Hi all,

Re: How easy is to do a MITM/spoof/etc. a public IP address?

On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote: > On 2017-01-25, C. L. Martinez <carlopm...@gmail.com> wrote: > > Hi all, > > > > I have received a (maybe) "stupid" request from one of our customers. > > We have a pair of public Open

How easy is to do a MITM/spoof/etc. a public IP address?

p address) in this scenario? Many thanks. -- Greetings, C. L. Martinez

Re: PCI Express wireless adapter supported under OpenBSD

On Wed 30.Nov'16 at 11:44:13 +0100, Stefan Sperling wrote: > On Wed, Nov 30, 2016 at 10:12:32AM +0000, C. L. Martinez wrote: > > I have discoverd that Asus AC88 AC3100 uses BCM4366 chip, but if I am not > > wrong this chip is not supported under OpenBSD, is it right? > >

Re: PCI Express wireless adapter supported under OpenBSD

On Wed 30.Nov'16 at 10:26:32 +0100, Peter N. M. Hansteen wrote: > On Wed, Nov 30, 2016 at 08:09:24AM +0000, C. L. Martinez wrote: > > I would like to install OpenBSD on a HP Microserver Gen8 to act as a > > firewall and hostap. I am searching what components I need and I have a

Re: PCI Express wireless adapter supported under OpenBSD

On Wed 30.Nov'16 at 10:04:25 +0100, Stefan Sperling wrote: > On Wed, Nov 30, 2016 at 08:09:24AM +0000, C. L. Martinez wrote: > > Hi all, > > > > I would like to install OpenBSD on a HP Microserver Gen8 to act as a > > firewall and hostap. I am searching what c

PCI Express wireless adapter supported under OpenBSD

. -- Greetings, C. L. Martinez

Re: httpd: old behavior returns: Couldn't resolve host (SOLVED)

On Mon 5.Sep'16 at 16:15:12 +, C. L. Martinez wrote: > Hi all, > > I have upgraded my TT-RSS server based on OpenBSD 5.9 to OpenBSD 6.0. All > goes perfect, except when I try to add news feeds. Like I have reported in > the past: http://marc.info/?l=openbsd-misc=1467390246

httpd: old behavior returns: Couldn't resolve host

add a new feed. Like Stuart appoints me in the past, I have copied /etc/hosts and /etc/resolv.conf to /var/www/etc chroot, but in OpenBSD 6.0 doesn't works. Is it a bug or do I need to configure any option inside httpd.conf?? Thanks. -- Greetings, C. L. Martinez

Recommendation about an Alfa usb wireless adapter to use it as HostAP

about which of them can run as a HostAP. Any recommendation? Maybe AWUS036ACH can supports this functionality, but I am not sure ... Thanks. -- Greetings, C. L. Martinez

Re: Encrypting carp traffic with ipsec

On Thu 4.Aug'16 at 12:30:56 +, C. L. Martinez wrote: > On Tue 2.Aug'16 at 7:54:08 +0000, C. L. Martinez wrote: > > On Mon 1.Aug'16 at 7:54:57 +0000, C. L. Martinez wrote: > > > On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote: > > > > On 28/07/

Re: Encrypting carp traffic with ipsec

On Tue 2.Aug'16 at 7:54:08 +, C. L. Martinez wrote: > On Mon 1.Aug'16 at 7:54:57 +0000, C. L. Martinez wrote: > > On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote: > > > On 28/07/16 22:47, C. L. Martinez wrote: > > > > Hi all, > > > >

Re: Encrypting carp traffic with ipsec

On Mon 1.Aug'16 at 7:54:57 +, C. L. Martinez wrote: > On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote: > > On 28/07/16 22:47, C. L. Martinez wrote: > > > Hi all, > > > > > > I will try to encrypt all carp traffic between two OpenBSD 5.9

Re: Encrypting carp traffic with ipsec

On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote: > On 28/07/16 22:47, C. L. Martinez wrote: > > Hi all, > > > > I will try to encrypt all carp traffic between two OpenBSD 5.9 fws > > (fully patched). According to ifconfig(8) man page: > > &

Re: Encrypting carp traffic with ipsec

On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote: > On 28/07/16 22:47, C. L. Martinez wrote: > > Hi all, > > > > I will try to encrypt all carp traffic between two OpenBSD 5.9 fws > > (fully patched). According to ifconfig(8) man page: > > &

Encrypting carp traffic with ipsec

Hi all, I will try to encrypt all carp traffic between two OpenBSD 5.9 fws (fully patched). According to ifconfig(8) man page: carppeer peer_address Send the carp advertisements to a specified point-to-point peer or multicast group instead of sending the messages to the default carp multicast

Using "> /tmp/debug.log 2>&" in a startup script

/debug.log 2>&1" and using the following rc_start options: ${rcexec} "${daemon} ${daemon_flags} ${more_flags} ${_bg}" (rc_bg=YES in the startup script). c/ And tha last try is to use rc_start options: ${rcexec} "${daemon} ${daemon_flags}" > /tmp/debug.log 2

Re: Core dumps with sphinx package

On Fri 8.Jul'16 at 12:40:57 +0200, Adam Wolk wrote: > On Fri, Jul 08, 2016 at 09:16:15AM +0000, C. L. Martinez wrote: > > Hi all, > > > > Once a day, searchd daemon (installed from OpenBSD's packages repository) > > generate a core dump. How can I report thi

Core dumps with sphinx package

Hi all, Once a day, searchd daemon (installed from OpenBSD's packages repository) generate a core dump. How can I report this problem? To openbsd-ports mailing list?? Thanks. -- Greetings, C. L. Martinez

Strange behavior with php config

s were fed into the above file inside of /var/www chroot, and it does. But it does also under system's /tmp directory. In resume, I have two php_errors.log file where I can see all ducplicated errors ... Why?? How can I fix it? Thanks. -- Greetings, C. L. Martinez

Re: Installing NextCloud under OpenBSD 5.9

On Sat 2.Jul'16 at 22:37:49 +0200, Adam Wolk wrote: > On Sat, 2 Jul 2016 19:26:57 + > "C. L. Martinez" <carlopm...@gmail.com> wrote: > > > Hi all, > > > > I am trying to install NextCloud under an OpenBSD 5.9 host using > > OpenBSD's

Installing NextCloud under OpenBSD 5.9

apache on the same host, configure NextCloud on it, and redirect requests from OpenBSD's httpd to apache (listening on localhost only). What do you think? Thanks. -- Greetings, C. L. Martinez

Re: I am not sure if it is a problem with OpenBSD's httpd

On Fri 1.Jul'16 at 16:21:27 +, Stuart Henderson wrote: > On 2016-07-01, C. L. Martinez <carlopm...@gmail.com> wrote: > > Recently, I have installed an OpenBSD virtual machine in my laptop with > > TT-RSS, and all works perfectlly. Until I try to subscribe to a new feed

I am not sure if it is a problem with OpenBSD's httpd

tpd daemon that runs in chroot?? Thanks. -- Greetings, C. L. Martinez

Re: Clean OpenBSD's httpd logs

On Fri 1.Jul'16 at 7:39:13 +, Stuart Henderson wrote: > On 2016-06-30, C. L. Martinez <carlopm...@gmail.com> wrote: > > Hi all, > > > > Sorry if this question sounds stupid, but how can I avoid this type of > > entry in OpenBSD's httpd acce

Re: Clean OpenBSD's httpd logs

On Thu 30.Jun'16 at 15:21:05 +0200, Thuban wrote: > * C. L. Martinez <carlopm...@gmail.com> le [30-06-2016 12:50:36 +]: > > Hi all, > > > > Sorry if this question sounds stupid, but how can I avoid this type of > entry in OpenBSD's httpd access.log: > > &

Clean OpenBSD's httpd logs

Hi all, Sorry if this question sounds stupid, but how can I avoid this type of entry in OpenBSD's httpd access.log: 172.22.55.1:44710 -> 172.22.55.10, /favicon.ico (404 Not Found), [/] [/favicon.ico] ?? Thanks. -- Greetings, C. L. Martinez

Re: OT: Toosl to manage PKI under OpenBSD

On Fri 24.Jun'16 at 18:59:09 -0400, Predrag Punosevac wrote: > > On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote: > > > Am Freitag, den 24.06.2016, 11:45 +0000 schrieb C. L. Martinez: > > > > > > > I would like to deploy/setup a PKI under OpenBSD for

Re: OT: Toosl to manage PKI under OpenBSD

On Sat 25.Jun'16 at 13:56:38 +, Stuart Henderson wrote: > On 2016-06-24, C. L. Martinez <carlopm...@gmail.com> wrote: > > On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote: > >> Am Freitag, den 24.06.2016, 11:45 + schrieb C. L. Martinez: > >> &g

Re: OT: Toosl to manage PKI under OpenBSD

On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote: > Am Freitag, den 24.06.2016, 11:45 + schrieb C. L. Martinez: > > > I would like to deploy/setup a PKI under OpenBSD for my home lab. > > Searching about this topic, I think the best option is to use > > cus

OT: Toosl to manage PKI under OpenBSD

option? Thanks -- Greetings, C. L. Martinez

Error loading pf rules: Device busy

Hi all, I have a strange problem. Every time that I try to reload my pf rules I see the following error message: pfctl: DIOCADDRULE: Device busy. I am using OpenBSD 5.8 amd64 fully patched. Any idea??

Remove "flags S/SA keep state" for tcp packets

Hi all, I am trying to remove "flags S/SA keep state" for tcp packets inside pf.conf and use "keep state" only, as it can do with udp and icmp. According to pf.conf man page, this is possible inserting "no state" in tcp rule, but I can't use keep state. Is it possible to remove "flags S/SA

Re: Remove "flags S/SA keep state" for tcp packets

On Tue, Dec 15, 2015 at 9:49 AM, Peter N. M. Hansteen <pe...@bsdly.net> wrote: > On Tue, Dec 15, 2015 at 09:24:03AM +0000, C. L. Martinez wrote: >> >> I am trying to remove "flags S/SA keep state" for tcp packets inside >> pf.conf and use "keep state"

Re: Remove "flags S/SA keep state" for tcp packets

On Tue, Dec 15, 2015 at 9:56 AM, David Dahlberg <david.dahlb...@fkie.fraunhofer.de> wrote: > Am Dienstag, den 15.12.2015, 09:24 + schrieb C. L. Martinez: >> I am trying to remove "flags S/SA keep state" for tcp packets inside >> pf.conf and use "kee

Re: Captive portal with OpenBSD as a hostap

On Mon, Oct 5, 2015 at 1:26 PM, laudarch wrote: > I made a custom implementation and a diff to authpf, will share that > later just in case anyone wants it. > > I hope this helps you, it pretty simple > http://bastienceriani.fr/?p=70 > Thanks laudarch ... Very close to what I

Re: OT: Exists some problem with dnscrypt-proxy package?

On Mon, Sep 21, 2015 at 1:28 AM, frederick w. soucy wrote: > On 2015.09.20, C.L. Martinez wrote: >> Hi all, >> >> I have installed an openbsd 5.7 VM today to do some tests with pf rules. >> One of the components to I need to enable in this gateway is >> unbound+dnscrypt-proxy. >>

Question about divert-to and divert-reply with pf.conf

Hi all, I have installed a proxy server in a DMZ and I need to redirect all http traffic from my internal lan to this proxy server in my openbsd firewall. Readming pf.conf manual and squid wiki, I see that this can be accomplished using divert-to and divert-reply in pf.conf. Configuration is

Re: Unable to install openbsd 5.6 in a HP Proliant ML115 G5

On Tue, Jan 6, 2015 at 3:07 AM, Steve Shockley steve.shock...@shockley.net wrote: On 1/5/2015 7:52 PM, Stuart Henderson wrote: Some things to try: (Change only 1 thing at a time, and remember what you changed.) Also check the baseboard/system firmware; I didn't see anything specifically

Unable to install openbsd 5.6 in a HP Proliant ML115 G5

Hi all, I am trying to install OpenBSD 5.6 in a HP ProlIant Ml115 G5, but install process doesn't starts ... Stops in USB detection steps. There is no error in console. This server uses Nvidia MCP55 controller device for SATA and USB devices ... Maybe is this the problem?? In OpenBSD's

Re: Unable to install openbsd 5.6 in a HP Proliant ML115 G5

On Mon, Jan 5, 2015 at 1:11 PM, Jiri B ji...@devio.us wrote: On Mon, Jan 05, 2015 at 12:49:34PM +, C. L. Martinez wrote: Hi all, I am trying to install OpenBSD 5.6 in a HP ProlIant Ml115 G5, but install process doesn't starts ... Stops in USB detection steps. There is no error

Re: About special configs to do in OpenBSD for KVM environments

On Fri, Dec 19, 2014 at 7:51 AM, Peter Hessler phess...@theapt.org wrote: On 2014 Dec 19 (Fri) at 07:35:28 + (+), C. L. Martinez wrote: :b) OpenBSD/amd64: set up vio flags to 0x02 The man page for vio(4) says: Setting the bit 0x2 in the flags disables the RingEventIndex feature

Re: About special configs to do in OpenBSD for KVM environments

On Fri, Dec 19, 2014 at 8:04 AM, Peter Hessler phess...@theapt.org wrote: On 2014 Dec 19 (Fri) at 08:01:00 + (+), C. L. Martinez wrote: :On Fri, Dec 19, 2014 at 7:51 AM, Peter Hessler phess...@theapt.org wrote: : On 2014 Dec 19 (Fri) at 07:35:28 + (+), C. L. Martinez wrote

About special configs to do in OpenBSD for KVM environments

Hi all, Please, first of all, I don't want to start a flame or quite similar. I only want to know what problems I can encounter when I need to install OpenBSD in kvm environments (mostly CentOS 6.x servers). Yes, I know, OpenBSD is not supported to run in virtualization environments, but many

Re: Securing communications with OpenBSD

On Thu, Oct 9, 2014 at 7:21 AM, Duncan Patton a Campbell campb...@neotext.ca wrote: On Tue, 7 Oct 2014 07:08:54 + C. L. Martinez carlopm...@gmail.com wrote: On Mon, Oct 6, 2014 at 11:52 PM, Duncan Patton a Campbell campb...@neotext.ca wrote: The most basic consideration in computer

Re: Securing communications with OpenBSD

On Mon, Oct 6, 2014 at 11:52 PM, Duncan Patton a Campbell campb...@neotext.ca wrote: The most basic consideration in computer security has nothing to do with technology and computers. Do the people you need to keep out of the know need to know enough to come and break legs? If so, don't

Securing communications with OpenBSD

Hi all, I appeal to you to see if you can give me some advice. I need to secure communications between my front-end and back-end servers. First, my infrastructure: Internet --- Public OpenBSD Carp'ed fws --- FreeBSD front-end web servers (https) --- Internal OpenBSD Carp'ed fws --- CentOS

Re: Securing communications with OpenBSD

On Mon, Oct 6, 2014 at 2:27 PM, Alan McKay alan.mc...@gmail.com wrote: On Mon, Oct 6, 2014 at 2:00 AM, C. L. Martinez carlopm...@gmail.com wrote: Is my approach correct? Any other better solution? Is it stupid this approach? You did not really state what your goal was. Or what the problem

Re: Does this usb wireless adapter works?

On Fri, Jan 31, 2014 at 6:06 PM, Alexander Pakhomov ker0...@yandex.ru wrote: No, it doesn't. It crashes kernel once a day and deadly hangs till reboot every 30 min. I've send a bug report, but nobody cares. I use RTL8192CU. It crashes kernel once a month. Sorry for this late response ...

Does this usb wireless adapter works?

Hi all, I have installed and OpenBSD 5.4 amd64 host to act as a wifi AP (I know it, it is not a good option to use a usb adapter for this, but It is my only option). I would like to use this usb wireless adapter: AWUS036NHA (http://www.alfa.com.tw/products_show.php?pc=34ps=20) but searching

Re: Does this usb wireless adapter works?

On Fri, Jan 31, 2014 at 2:56 PM, Kirill Bychkov ki...@linklevel.net wrote: On Fri, January 31, 2014 17:50, C. L. Martinez wrote: Hi all, I have installed and OpenBSD 5.4 amd64 host to act as a wifi AP (I know it, it is not a good option to use a usb adapter for this, but It is my only

Re: Does this usb wireless adapter works?

On Fri, Jan 31, 2014 at 3:26 PM, Josh Grosse j...@jggimi.homeip.net wrote: On 2014-01-31 08:50, C. L. Martinez wrote: As you can see, this usb adapter uses an Atheros AR9271 chip ... Works under OpenBSD?? and Can I use it as a hostap under openbsd?? I'm replying off list because I don't

OT: Recommended wireless usb adapter as a hostap

Hi all, I would like to use my openbsd fw box to provide wifi access for friends, family, etc when they comes to my home. Due to hardware restrictions, I can only to add a wireless usb adapter to use as a hostap, an yes, I know that is not the best option, but ... Any recommendations about

ipsec or iked to deploy under openbsd carp fws

Hi all, I need to deploy IPSec tunnels (lan-to-lan and roadwarriors clients like linux and windows) under two openbsd carp firewalls. Searching in google and reading some docs, I have several doubts about which one to choose. If I am not wrong, iked doesn't supports sasyncd, is it correct??

Re: ipsec or iked to deploy under openbsd carp fws

On Mon, Dec 2, 2013 at 8:13 AM, C. L. Martinez carlopm...@gmail.com wrote: Hi all, I need to deploy IPSec tunnels (lan-to-lan and roadwarriors clients like linux and windows) under two openbsd carp firewalls. Searching in google and reading some docs, I have several doubts about which one

pfsync0 doesn't starts

Hi all, I am doing some tests with two openBSD 5.4 hosts configuring carp features. All it is ok, except for pfsync0 interface: it doesn't starts up at system boot or when both are rebooted. I need to start it manually every time. cat /etc/hostname.pfsync0 up syncdev em3 Is this configuration

Re: pfsync0 doesn't starts

On Wed, Nov 27, 2013 at 3:25 PM, andy a...@brandwatch.com wrote: On Wed, 27 Nov 2013 15:08:33 +, C. L. Martinez carlopm...@gmail.com wrote: Hi all, I am doing some tests with two openBSD 5.4 hosts configuring carp features. All it is ok, except for pfsync0 interface: it doesn't starts

Re: pfsync0 doesn't starts

On Wed, Nov 27, 2013 at 4:12 PM, andy a...@brandwatch.com wrote: On Wed, 27 Nov 2013 15:31:49 +, C. L. Martinez carlopm...@gmail.com wrote: On Wed, Nov 27, 2013 at 3:25 PM, andy a...@brandwatch.com wrote: On Wed, 27 Nov 2013 15:08:33 +, C. L. Martinez carlopm...@gmail.com wrote: Hi

Similar tool as poudriere for OpenBSD

Hi all, Exists some tool in OpenBSD similar to poudriere for FreeBSD? This tool builds massive packages for FreeBSD hosts and for different versions and releses (current, stable, release). https://wiki.freebsd.org/PkgPrimer https://fossil.etoilebsd.net/poudriere/doc/trunk/doc/index.wiki

Re: Similar tool as poudriere for OpenBSD

On Mon, Nov 11, 2013 at 4:29 PM, Vigdis vigdis+o...@chown.me wrote: On Mon, 11 Nov 2013 15:37:17 +, C. L. Martinez carlopm...@gmail.com wrote: Hi all, Exists some tool in OpenBSD similar to poudriere for FreeBSD? This tool builds massive packages for FreeBSD hosts and for different

Re: Similar tool as poudriere for OpenBSD

On Tue, Nov 12, 2013 at 12:04 AM, Theo de Raadt dera...@cvs.openbsd.org wrote: Note that these are all *deliberate design choices* in OpenBSD and its ports tree, not a limitation of the tool. It follows the 'eat our own dogfood' principle. We only have so many machines and developers

Re: Management of pf.conf

On Thu, Jul 11, 2013 at 8:51 PM, Patrick Lamaiziere patf...@davenulle.org wrote: Le Thu, 11 Jul 2013 13:18:13 +0200 (CEST), Jummo jum...@yahoo.de a écrit : This works quiet good for me and my firewalls with one exception, my big fat central router/firewall. This firewall has around 2000 lines

Re: Management of pf.conf

On Fri, Jul 12, 2013 at 11:12 AM, Andy a...@brandwatch.com wrote: Hi, No we don't use the puppet firewall module as it doesn’t support PF properly. We don't use any 'software' to manage PF rules, but we do still have rules sets with thousands of lines. I have never found any PF

Is openbsd.org down??

HI all, Trying to access: gateway timeout ...

Re: OT: OpenVAS under OpenBSD 5.3

On Fri, Jun 7, 2013 at 8:24 PM, Nigel Taylor njtay...@asterisk.demon.co.uk wrote: On 06/07/13 13:52, C. L. Martinez wrote: Hi all, Somebody had tried under OpenBSD?. I need to deploy a new VA server to subsitute my previous CentOS/Nessus server. What version is more stable under OpenBSD

OT: OpenVAS under OpenBSD 5.3

Hi all, Somebody had tried under OpenBSD?. I need to deploy a new VA server to subsitute my previous CentOS/Nessus server. What version is more stable under OpenBSD: 5 o 6?? Any tips?? Thanks.

OT: Running Snort IDS under OpenBSD 5.3

Hi all, I am trying to run snort IDS (release 2.9.4.6) with only so_rules under an OpenBSD 5.3 amd64 host, but the numbers are disappointing. Host is a Intel(R) Xeon(R) CPU E5620 @ 2.40GHz, with 8 GiB RAM and four e1000 interfaces. Some numbers: top: load averages: 0.69, 0.65, 0.53 31

Re: OT: Running Snort IDS under OpenBSD 5.3

On Fri, May 31, 2013 at 10:08 AM, Rodolfo Gouveia rgouv...@cosmico.net wrote: On 05/31/2013 08:02 AM, C. L. Martinez wrote: Could be better to use binary packaged version released by OpenBSD (http://ftp.openbsd.org/pub/OpenBSD/5.3/packages/amd64/snort-2.9.4.0.tgz)?? Any reason why you didn't

Re: Problem with a startup script

On Tue, May 21, 2013 at 6:27 PM, russell russ...@dotplan.dyndns.org wrote: Because pexp uses pkill to do its work and pkill matches on command name only(like ps -c). sorry for the noise I just revisited this and I am wrong. the pkill bits in rc.subr are using pkill -f and that does match

Re: OT: trying to install vortex-idx in OpenBSD 5.3

On Tue, May 21, 2013 at 10:38 PM, Stuart Henderson s...@spacehopper.org wrote: On 2013-05-21, C. L. Martinez carlopm...@gmail.com wrote: Hi all, I am trying to compile vortex-ids (http://sourceforge.net/projects/vortex-ids/?source=directory) under OpenBSD 5.3, but this error is returned

  1   2   >