of someone actually
managing to get close to line speed above 1 Gbe.
I don't want to just buy expensive hardware and hope that it works. Has anyone
here been able to get close to 10 Gb/s networking with OpenBSD? I don't need to
be able to have more than a few pf-rules.
--
Nicholas C. L. Ipsen
On Sun, Jun 24, 2018 at 12:42:15PM +0200, C. L. Martinez wrote:
> On Sun, Jun 24, 2018 at 08:43:32AM +, Stuart Henderson wrote:
> > On 2018-06-23, C. L. Martinez wrote:
> > > Hi all,
> > >
> > > I am using Easy-RSA to manage my home's CA (using el
On Sun, Jun 24, 2018 at 08:43:32AM +, Stuart Henderson wrote:
> On 2018-06-23, C. L. Martinez wrote:
> > Hi all,
> >
> > I am using Easy-RSA to manage my home's CA (using elliptic curve
> > certificates). I have created a certificate for my OpenBSD gw f
pe ASN1_DN
ca_validate_cert: /C=ES/... ok
Do i need to install user certificates also in OpenBSD gw?
thanks
--
Greetings,
C. L. Martinez
ello,
> > try copying cert.pem to the www chroot:
> >
> > # mkdir -p /var/www/etc; cp /etc/ssl/cert.pem /var/www/etc/ssl
> >
> > and restart php-fpm.
> >
> > On Tue (24/04/18), C. L. Martinez wrote:
> > > Hi all,
> > >
> > > Since th
Hi all,
Since this morning my OpenBSD 6.3 host (with tt-rss installed) returns
the following error when I try to add some feeds:
Couldn't download the specified URL: ; 77 error setting certificate verify
locations: CAfile: /etc/ssl/cert.pem CApath: none
It seems some type of problem with curl
5:01:24 +0200
> "C. L. Martinez" wrote:
>
> > Hi all,
> >
> > I am trying to configure an ipsec tunnel (host-to-host) between two
> > hosts that go through an openbsd firewall. Tunnel is established, but
> > when I try to, for example, connect via ssh fro
Hi all,
I am trying to configure an ipsec tunnel (host-to-host) between two hosts
that go through an openbsd firewall. Tunnel is established, but when I try
to, for example, connect via ssh from one host to the other, pf blocks
traffic:
Apr 18 12:53:00.286351 rule 24/(match) [uid 0, pid 19127] b
Hi all,
I am trying to migrate nginx configuration to OpenBSD's httpd. All it is
working ok, except for some proxy reverse config that I use with nginx's
config, like for example:
server {
listen 80;
server_name internal.w01.domain.org;
location / {
proxy_pass http://192.168
On Wed, Nov 29, 2017 at 9:33 AM, Stuart Henderson wrote:
> On 2017-11-26, C. L. Martinez wrote:
>>
>> Ok, it is seems the prolem is that iked(8) does not know how to perform
>> Diffie-Hellman group negotiation:
>>
>> https://marc.info/?l=openbsd-tech&m=15
On Sun, Nov 26, 2017 at 09:02:46PM +0100, C. L. Martinez wrote:
> Hi all,
>
> I am testing IKEv2 for Android roadwarriors clients ... I have done a very
> basic config:
>
> ikev2 "roadwarriors" passive esp \
> from 0.0.0.0/0 to 172.22.55.0/27 \
>
size 0 type SIGNATURE_HASH_ALGORITHMS
ikev2_msg_send: IKE_SA_INIT response from 172.17.35.9:500 to 172.17.35.20:500
msgid 0, 451 bytes
config_free_proposals: free 0x1ccfc4952580
Android device is a Samsung Galaxy Edge S7 (Adnroid 7.0) and OpenBSD is 6.2
with all patches ... What ma I doing wrong?
Thanks.
--
Greetings,
C. L. Martinez
On Fri, Nov 10, 2017 at 07:28:19PM +, C. L. Martinez wrote:
> Hi all,
>
> I need to configure ifstated for two public interfaces and one of them is a
> dhcp interface. To accomplish this I have configured the following macro in
> ifcstated.conf's file:
>
> wir
uot;
/etc/ifstated.conf:4: syntax error
/etc/ifstated.conf:4: macro '2' not defined
/etc/ifstated.conf:34: macro 'wired_gate_test' not defined
/etc/ifstated.conf:34: syntax error
ifstated: invalid start state wired
From command line, ping command works ... What am I doing wrong?
Thanks.
--
Greetings,
C. L. Martinez
/update_rss.log"
daemon_user="www"
. /etc/rc.d/rc.subr
pexp="${daemon}${daemon_flags:+ ${daemon_flags}}"
rc_bg=YES
rc_reload=NO
rc_post() {
rm -f /var/www/htdocs/rss/lock/update_daemon.lock
}
rc_cmd $1
Inside .ini I have configured mysqli.default_socket option:
mysqli.default_socket = /var/www/var/run/mysql/mysql.sock
--
Greetings,
C. L. Martinez
ys:
srwxrwxrwx 1 _mysql _mysql 0 Nov 8 17:45 /var/www/var/run/mysql/mysql.sock
If I am not wrong, then, how can I configure this startup script?
Thanks
--
Greetings,
C. L. Martinez
HI all,
Regarding WPA2 alert published today: https://www.krackattacks.com/,
if I use an IPSec tunnel with shared-key or certifcate or an OpenVPN
connection to authenticate and protect clients and hostAP comms, is
this vulnerability mitigated?
Thanks.
irst boot of the updated system.
>
Perfect.
Many thanks.
--
Greetings,
C. L. Martinez
Many thanks.
--
Greetings,
C. L. Martinez
0
EndSection
Section "Device"
Identifier "default device"
Driver "vmware"
EndSection
Section "Screen"
Identifier "default screen"
Device "default device"
Monitor
On Sat, Sep 02, 2017 at 02:48:12PM +0200, Anton Lindqvist wrote:
> On Sat, Sep 02, 2017 at 11:01:14AM +0000, C. L. Martinez wrote:
> > Hi all,
> >
> > I have used mutt over several months under FreeBSD and RHEL/CentOS. I have
> > migrated my desktop to OpenBSD 6.
t;\CA" or "\CI"
or "\CH", for example, works without problems ... Is it "\CO" defined by
default under OpenBSD? How can I revert this behavior?
Thanks.
--
Greetings,
C. L. Martinez
On Thu, May 04, 2017 at 07:49:04AM +, Stuart Henderson wrote:
> On 2017-05-04, C. L. Martinez wrote:
> > Hi all,
> >
> > I have applied the recent patches for OpenBSD 6.1 in two hosts and I see a
> > strange behavior. In a non-patched OpenBSD 6.1 host, uname
GENERIC#4 amd64
Any idea why??
--
Greetings,
C. L. Martinez
thing in this first stage :) ... I
prefer to do some type of control first and after apply these changes.
Any recommendation?
Many thanks.
--
Greetings,
C. L. Martinez
list of packages at
> http://ftp.openbsd.org/pub/OpenBSD/6.1/packages/amd64/index.txt
>
> So, try
>
> pkg_add -v python-2.7.13p0
>
> or, check the -z switch of pkg_add (man pkg_add)
>
> pkg_add -v -z python-2.7.13
>
Yep, undertood.
Many thanks.
--
Greetings,
C. L. Martinez
ages/amd64";
--
Greetings,
C. L. Martinez
On Mon, Mar 06, 2017 at 10:55:23AM -0800, Mike Larkin wrote:
> On Mon, Mar 06, 2017 at 06:22:07PM +0100, Juan Francisco Cantero Hurtado
> wrote:
> > On Mon, Mar 06, 2017 at 10:40:52AM +, C. L. Martinez wrote:
> > > Hi all,
> > >
> > > Where can I se
Hi all,
Where can I see what new features will be released in VMM for OpenBSD 6.1? For
example, it could be possible to run linux or freebsd guests apart of openbsd
guests?
Many thanks.
--
Greetings,
C. L. Martinez
On Thu, Jan 26, 2017 at 10:51:14AM +, Stuart Henderson wrote:
> On 2017-01-25, C. L. Martinez wrote:
> > On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote:
> >> On 2017-01-25, C. L. Martinez wrote:
> >> > Hi all,
> >> >
> >>
On Wed, Jan 25, 2017 at 08:20:32PM +0100, Daniel Gillen wrote:
> On 25.01.2017 15:42, C. L. Martinez wrote:
> > On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote:
> >> On 2017-01-25, C. L. Martinez wrote:
> >>> Hi all,
> >>>
> >>&g
On Wed, Jan 25, 2017 at 02:07:55PM +, Stuart Henderson wrote:
> On 2017-01-25, C. L. Martinez wrote:
> > Hi all,
> >
> > I have received a (maybe) "stupid" request from one of our customers.
> > We have a pair of public OpenBSD firewalls (CARPed) that our
s) in this scenario?
Many thanks.
--
Greetings,
C. L. Martinez
On Wed 30.Nov'16 at 11:44:13 +0100, Stefan Sperling wrote:
> On Wed, Nov 30, 2016 at 10:12:32AM +0000, C. L. Martinez wrote:
> > I have discoverd that Asus AC88 AC3100 uses BCM4366 chip, but if I am not
> > wrong this chip is not supported under OpenBSD, is it right?
>
On Wed 30.Nov'16 at 10:26:32 +0100, Peter N. M. Hansteen wrote:
> On Wed, Nov 30, 2016 at 08:09:24AM +0000, C. L. Martinez wrote:
> > I would like to install OpenBSD on a HP Microserver Gen8 to act as a
> > firewall and hostap. I am searching what components I need and I hav
On Wed 30.Nov'16 at 10:04:25 +0100, Stefan Sperling wrote:
> On Wed, Nov 30, 2016 at 08:09:24AM +0000, C. L. Martinez wrote:
> > Hi all,
> >
> > I would like to install OpenBSD on a HP Microserver Gen8 to act as a
> > firewall and hostap. I am searching wha
t.
Thanks.
--
Greetings,
C. L. Martinez
On Mon 5.Sep'16 at 16:15:12 +0000, C. L. Martinez wrote:
> Hi all,
>
> I have upgraded my TT-RSS server based on OpenBSD 5.9 to OpenBSD 6.0. All
> goes perfect, except when I try to add news feeds. Like I have reported in
> the past: http://marc.info/?l=openbsd-misc&m
ime that I try to add a new feed. Like Stuart
appoints me in the past, I have copied /etc/hosts and /etc/resolv.conf to
/var/www/etc chroot, but in OpenBSD 6.0 doesn't works.
Is it a bug or do I need to configure any option inside httpd.conf??
Thanks.
--
Greetings,
C. L. Martinez
s web about which of them can
run as a HostAP.
Any recommendation? Maybe AWUS036ACH can supports this functionality, but I am
not sure ...
Thanks.
--
Greetings,
C. L. Martinez
On Thu 4.Aug'16 at 12:30:56 +0000, C. L. Martinez wrote:
> On Tue 2.Aug'16 at 7:54:08 +, C. L. Martinez wrote:
> > On Mon 1.Aug'16 at 7:54:57 +, C. L. Martinez wrote:
> > > On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote:
> >
On Tue 2.Aug'16 at 7:54:08 +0000, C. L. Martinez wrote:
> On Mon 1.Aug'16 at 7:54:57 +, C. L. Martinez wrote:
> > On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote:
> > > On 28/07/16 22:47, C. L. Martinez wrote:
> > > > Hi all,
>
On Mon 1.Aug'16 at 7:54:57 +0000, C. L. Martinez wrote:
> On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote:
> > On 28/07/16 22:47, C. L. Martinez wrote:
> > > Hi all,
> > >
> > > I will try to encrypt all carp traffic between two OpenB
On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote:
> On 28/07/16 22:47, C. L. Martinez wrote:
> > Hi all,
> >
> > I will try to encrypt all carp traffic between two OpenBSD 5.9 fws
> > (fully patched). According to ifconfig(8) man page:
> >
On Fri 29.Jul'16 at 10:55:01 +0300, Kapetanakis Giannis wrote:
> On 28/07/16 22:47, C. L. Martinez wrote:
> > Hi all,
> >
> > I will try to encrypt all carp traffic between two OpenBSD 5.9 fws
> > (fully patched). According to ifconfig(8) man page:
> >
Hi all,
I will try to encrypt all carp traffic between two OpenBSD 5.9 fws
(fully patched). According to ifconfig(8) man page:
carppeer peer_address
Send the carp advertisements to a specified point-to-point peer or
multicast group instead of sending the messages to the default carp
multicast gr
/tmp/debug.log 2>&1" and using the following rc_start options:
${rcexec} "${daemon} ${daemon_flags} ${more_flags} ${_bg}" (rc_bg=YES in the
startup script).
c/ And tha last try is to use rc_start options: ${rcexec} "${daemon}
${daemon_flags}" > /tmp/debug.
On Fri 8.Jul'16 at 12:40:57 +0200, Adam Wolk wrote:
> On Fri, Jul 08, 2016 at 09:16:15AM +0000, C. L. Martinez wrote:
> > Hi all,
> >
> > Once a day, searchd daemon (installed from OpenBSD's packages repository)
> > generate a core dump. How can I
Hi all,
Once a day, searchd daemon (installed from OpenBSD's packages repository)
generate a core dump. How can I report this problem? To openbsd-ports mailing
list??
Thanks.
--
Greetings,
C. L. Martinez
s were fed into the above file inside of /var/www chroot, and it
does. But it does also under system's /tmp directory. In resume, I have two
php_errors.log file where I can see all ducplicated errors ...
Why?? How can I fix it?
Thanks.
--
Greetings,
C. L. Martinez
On Sat 2.Jul'16 at 22:37:49 +0200, Adam Wolk wrote:
> On Sat, 2 Jul 2016 19:26:57 +0000
> "C. L. Martinez" wrote:
>
> > Hi all,
> >
> > I am trying to install NextCloud under an OpenBSD 5.9 host using
> > OpenBSD's httpd. But I am not
king to install apache on the
same host, configure NextCloud on it, and redirect requests from OpenBSD's
httpd to apache (listening on localhost only).
What do you think?
Thanks.
--
Greetings,
C. L. Martinez
On Fri 1.Jul'16 at 16:21:27 +, Stuart Henderson wrote:
> On 2016-07-01, C. L. Martinez wrote:
> > Recently, I have installed an OpenBSD virtual machine in my laptop with
> > TT-RSS, and all works perfectlly. Until I try to subscribe to a new feed.
> > Every time
;s httpd daemon that
runs in chroot??
Thanks.
--
Greetings,
C. L. Martinez
On Fri 1.Jul'16 at 7:39:13 +, Stuart Henderson wrote:
> On 2016-06-30, C. L. Martinez wrote:
> > Hi all,
> >
> > Sorry if this question sounds stupid, but how can I avoid this type of
> > entry in OpenBSD's httpd access.log:
> >
> > 172
On Thu 30.Jun'16 at 15:21:05 +0200, Thuban wrote:
> * C. L. Martinez le [30-06-2016 12:50:36 +]:
> > Hi all,
> >
> > Sorry if this question sounds stupid, but how can I avoid this type of
> entry in OpenBSD's httpd access.log:
> >
> > 172.22.55.
Hi all,
Sorry if this question sounds stupid, but how can I avoid this type of entry
in OpenBSD's httpd access.log:
172.22.55.1:44710 -> 172.22.55.10, /favicon.ico (404 Not Found), [/]
[/favicon.ico]
??
Thanks.
--
Greetings,
C. L. Martinez
On Fri 24.Jun'16 at 18:59:09 -0400, Predrag Punosevac wrote:
> > On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote:
> > > Am Freitag, den 24.06.2016, 11:45 + schrieb C. L. Martinez:
> > >
> > > > I would like to deploy/setup a PKI under Op
On Sat 25.Jun'16 at 13:56:38 +, Stuart Henderson wrote:
> On 2016-06-24, C. L. Martinez wrote:
> > On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote:
> >> Am Freitag, den 24.06.2016, 11:45 + schrieb C. L. Martinez:
> >>
> >> > I w
On Fri 24.Jun'16 at 12:46:48 +, Dahlberg, David wrote:
> Am Freitag, den 24.06.2016, 11:45 + schrieb C. L. Martinez:
>
> > I would like to deploy/setup a PKI under OpenBSD for my home lab.
> > Searching about this topic, I think the best option is to use
> >
option?
Thanks
--
Greetings,
C. L. Martinez
Hi all,
I have a strange problem. Every time that I try to reload my pf rules I see
the following error message:
pfctl: DIOCADDRULE: Device busy.
I am using OpenBSD 5.8 amd64 fully patched.
Any idea??
On Tue, Dec 15, 2015 at 9:56 AM, David Dahlberg
wrote:
> Am Dienstag, den 15.12.2015, 09:24 + schrieb C. L. Martinez:
>> I am trying to remove "flags S/SA keep state" for tcp packets inside
>> pf.conf and use "keep state" only, as it can do with udp and ic
On Tue, Dec 15, 2015 at 9:49 AM, Peter N. M. Hansteen wrote:
> On Tue, Dec 15, 2015 at 09:24:03AM +0000, C. L. Martinez wrote:
>>
>> I am trying to remove "flags S/SA keep state" for tcp packets inside
>> pf.conf and use "keep state" only, as it can
Hi all,
I am trying to remove "flags S/SA keep state" for tcp packets inside
pf.conf and use "keep state" only, as it can do with udp and icmp.
According to pf.conf man page, this is possible inserting "no state"
in tcp rule, but I can't use keep state.
Is it possible to remove "flags S/SA ke
On Mon, Oct 5, 2015 at 1:26 PM, laudarch wrote:
> I made a custom implementation and a diff to authpf, will share that
> later just in case anyone wants it.
>
> I hope this helps you, it pretty simple
> http://bastienceriani.fr/?p=70
>
Thanks laudarch ... Very close to what I am searching... I wi
On Mon, Sep 21, 2015 at 1:28 AM, frederick w. soucy wrote:
> On 2015.09.20, C.L. Martinez wrote:
>> Hi all,
>>
>> I have installed an openbsd 5.7 VM today to do some tests with pf rules.
>> One of the components to I need to enable in this gateway is
>> unbound+dnscrypt-proxy.
>>
>> I have confi
Hi all,
I have installed a proxy server in a DMZ and I need to redirect all
http traffic from my internal lan to this proxy server in my openbsd
firewall.
Readming pf.conf manual and squid wiki, I see that this can be
accomplished using divert-to and divert-reply in pf.conf.
Configuration is
On Tue, Jan 6, 2015 at 3:07 AM, Steve Shockley
wrote:
> On 1/5/2015 7:52 PM, Stuart Henderson wrote:
>>
>> Some things to try: (Change only 1 thing at a time, and remember what you
>> changed.)
>
>
> Also check the baseboard/system firmware; I didn't see anything specifically
> related in the rele
On Mon, Jan 5, 2015 at 1:11 PM, Jiri B wrote:
> On Mon, Jan 05, 2015 at 12:49:34PM +0000, C. L. Martinez wrote:
>> Hi all,
>>
>> I am trying to install OpenBSD 5.6 in a HP ProlIant Ml115 G5, but
>> install process doesn't starts ... Stops in USB detection steps.
Hi all,
I am trying to install OpenBSD 5.6 in a HP ProlIant Ml115 G5, but
install process doesn't starts ... Stops in USB detection steps. There
is no error in console.
This server uses Nvidia MCP55 controller device for SATA and USB
devices ... Maybe is this the problem??
In OpenBSD's manual
On Fri, Dec 19, 2014 at 8:04 AM, Peter Hessler wrote:
> On 2014 Dec 19 (Fri) at 08:01:00 + (+), C. L. Martinez wrote:
> :On Fri, Dec 19, 2014 at 7:51 AM, Peter Hessler wrote:
> :> On 2014 Dec 19 (Fri) at 07:35:28 +0000 (+), C. L. Martinez wrote:
> :> :b) OpenBSD
On Fri, Dec 19, 2014 at 7:51 AM, Peter Hessler wrote:
> On 2014 Dec 19 (Fri) at 07:35:28 + (+), C. L. Martinez wrote:
> :b) OpenBSD/amd64: set up vio flags to 0x02
>
> The man page for vio(4) says:
> Setting the bit 0x2 in the flags disables the RingEventIndex featu
Hi all,
Please, first of all, I don't want to start a flame or quite similar.
I only want to know what problems I can encounter when I need to
install OpenBSD in kvm environments (mostly CentOS 6.x servers).
Yes, I know, OpenBSD is not supported to run in virtualization
environments, but many o
On Thu, Oct 9, 2014 at 7:21 AM, Duncan Patton a Campbell
wrote:
> On Tue, 7 Oct 2014 07:08:54 +
> "C. L. Martinez" wrote:
>
>> On Mon, Oct 6, 2014 at 11:52 PM, Duncan Patton a Campbell
>> wrote:
>> > The most basic consideration in computer securit
On Mon, Oct 6, 2014 at 11:52 PM, Duncan Patton a Campbell
wrote:
> The most basic consideration in computer security has nothing to
> do with technology and computers. Do the people you need to keep
> out of the know need to know enough to come and break legs?
>
> If so, don't bother encrypting.
On Mon, Oct 6, 2014 at 2:27 PM, Alan McKay wrote:
> On Mon, Oct 6, 2014 at 2:00 AM, C. L. Martinez wrote:
>> Is my approach correct? Any other better solution? Is it stupid this
>> approach?
>
> You did not really state what your goal was. Or what the problem is.
>
&g
Hi all,
I appeal to you to see if you can give me some advice. I need to
secure communications between my front-end and back-end servers.
First, my infrastructure:
Internet ---> Public OpenBSD Carp'ed fws ---> FreeBSD front-end web
servers (https) ---> Internal OpenBSD Carp'ed fws ---> CentOS
On Fri, Jan 31, 2014 at 6:06 PM, Alexander Pakhomov wrote:
> No, it doesn't.
> It crashes kernel once a day and deadly hangs till reboot every 30 min.
> I've send a bug report, but nobody cares.
> I use RTL8192CU. It crashes kernel once a month.
>
Sorry for this late response ... Oops ... then, w
On Fri, Jan 31, 2014 at 3:26 PM, Josh Grosse wrote:
> On 2014-01-31 08:50, C. L. Martinez wrote:
>
>> As you can see, this usb adapter uses an Atheros AR9271 chip ...
>> Works under OpenBSD?? and Can I use it as a hostap under openbsd??
>
>
> I'm replying off list
On Fri, Jan 31, 2014 at 2:56 PM, Kirill Bychkov wrote:
> On Fri, January 31, 2014 17:50, C. L. Martinez wrote:
>> Hi all,
>>
>> I have installed and OpenBSD 5.4 amd64 host to act as a wifi AP (I
>> know it, it is not a good option to use a usb adapter for this,
Hi all,
I have installed and OpenBSD 5.4 amd64 host to act as a wifi AP (I
know it, it is not a good option to use a usb adapter for this, but It
is my only option).
I would like to use this usb wireless adapter: AWUS036NHA
(http://www.alfa.com.tw/products_show.php?pc=34&ps=20) but searching
op
Hi all,
I would like to use my openbsd fw box to provide wifi access for
friends, family, etc when they comes to my home.
Due to hardware restrictions, I can only to add a wireless usb
adapter to use as a hostap, an yes, I know that is not the best
option, but ...
Any recommendations about so
On Mon, Dec 2, 2013 at 8:13 AM, C. L. Martinez wrote:
> Hi all,
>
> I need to deploy IPSec tunnels (lan-to-lan and roadwarriors clients
> like linux and windows) under two openbsd carp firewalls.
>
> Searching in google and reading some docs, I have several doubts
> abou
Hi all,
I need to deploy IPSec tunnels (lan-to-lan and roadwarriors clients
like linux and windows) under two openbsd carp firewalls.
Searching in google and reading some docs, I have several doubts
about which one to choose. If I am not wrong, iked doesn't supports
sasyncd, is it correct??
W
On Wed, Nov 27, 2013 at 4:12 PM, andy wrote:
> On Wed, 27 Nov 2013 15:31:49 +, "C. L. Martinez"
>
> wrote:
>> On Wed, Nov 27, 2013 at 3:25 PM, andy wrote:
>>> On Wed, 27 Nov 2013 15:08:33 +, "C. L. Martinez"
>>>
>>> wrote:
On Wed, Nov 27, 2013 at 3:25 PM, andy wrote:
> On Wed, 27 Nov 2013 15:08:33 +, "C. L. Martinez"
>
> wrote:
>> Hi all,
>>
>> I am doing some tests with two openBSD 5.4 hosts configuring carp
>> features. All it is ok, except for pfsync0 interface
Hi all,
I am doing some tests with two openBSD 5.4 hosts configuring carp
features. All it is ok, except for pfsync0 interface: it doesn't
starts up at system boot or when both are rebooted. I need to start it
manually every time.
cat /etc/hostname.pfsync0
up syncdev em3
Is this configuration w
On Tue, Nov 12, 2013 at 12:04 AM, Theo de Raadt wrote:
>> Note that these are all *deliberate design choices* in OpenBSD and its ports
>> tree,
>> not a limitation of the tool.
>
> It follows the 'eat our own dogfood' principle. We only have so many machines
> and developers around to eat our ow
On Mon, Nov 11, 2013 at 4:29 PM, Vigdis wrote:
> On Mon, 11 Nov 2013 15:37:17 +,
> "C. L. Martinez" wrote:
>
>> Hi all,
>>
>> Exists some tool in OpenBSD similar to poudriere for FreeBSD? This
>> tool builds massive packages for FreeBSD host
Hi all,
Exists some tool in OpenBSD similar to poudriere for FreeBSD? This
tool builds massive packages for FreeBSD hosts and for different
versions and releses (current, stable, release).
https://wiki.freebsd.org/PkgPrimer
https://fossil.etoilebsd.net/poudriere/doc/trunk/doc/index.wiki
Thanks.
On Fri, Jul 12, 2013 at 11:12 AM, Andy wrote:
> Hi,
>
> No we don't use the puppet firewall module as it doesn’t support PF
> properly. We don't use any 'software' to manage PF rules, but we do still
> have rules sets with thousands of lines.
>
> I have never found any PF configuration software th
On Thu, Jul 11, 2013 at 8:51 PM, Patrick Lamaiziere
wrote:
> Le Thu, 11 Jul 2013 13:18:13 +0200 (CEST),
> Jummo a écrit :
>
>> This works quiet good for me and my firewalls with one exception, my
>> big fat central router/firewall. This firewall has around 2000 lines
>> of pf.conf, is attached wi
HI all,
Trying to access:
gateway timeout ...
On Fri, Jun 7, 2013 at 8:24 PM, Nigel Taylor
wrote:
> On 06/07/13 13:52, C. L. Martinez wrote:
>> Hi all,
>>
>> Somebody had tried under OpenBSD?. I need to deploy a new VA server
>> to subsitute my previous CentOS/Nessus server.
>>
>> What version is more
Hi all,
Somebody had tried under OpenBSD?. I need to deploy a new VA server
to subsitute my previous CentOS/Nessus server.
What version is more stable under OpenBSD: 5 o 6?? Any tips??
Thanks.
On Fri, May 31, 2013 at 10:08 AM, Rodolfo Gouveia wrote:
> On 05/31/2013 08:02 AM, C. L. Martinez wrote:
>> Could be better to use binary packaged version released by OpenBSD
>> (http://ftp.openbsd.org/pub/OpenBSD/5.3/packages/amd64/snort-2.9.4.0.tgz)??
>
> Any reason why
Hi all,
I am trying to run snort IDS (release 2.9.4.6) with only so_rules
under an OpenBSD 5.3 amd64 host, but the numbers are disappointing.
Host is a Intel(R) Xeon(R) CPU E5620 @ 2.40GHz, with 8 GiB RAM and
four e1000 interfaces.
Some numbers:
top:
load averages: 0.69, 0.65, 0.53
31 pro
On Tue, May 21, 2013 at 6:27 PM, russell wrote:
>> Because pexp uses pkill to do its work and pkill matches on command name
>> only(like ps -c).
>
>
> sorry for the noise I just revisited this and I am wrong.
> the pkill bits in rc.subr are using "pkill -f"
> and that does match agianst the full a
On Wed, May 22, 2013 at 9:15 AM, Vadim Zhukov wrote:
> 2013/5/22 C. L. Martinez
>
>> On Wed, May 22, 2013 at 8:44 AM, Vadim Zhukov wrote:
>> > 22.05.2013 10:19 пользователь "C. L. Martinez"
>> > написал:
>> >
>> >
>> >>
1 - 100 of 142 matches
Mail list logo