I have this rule:
block in log quick on $lan from { 192.168.1.88, 192.168.1.95,
192.168.1.99 } to any label USER_RULE: blabla
pass in quick on $lan from 192.168.1.0/24 to any keep state label
USER_RULE: Default LAN - any
192.168.1.95 is being blocked, but others can use internet. For this
On 9/5/05, Dulmandakh Sukhbaatar [EMAIL PROTECTED] wrote:
I have this rule:
block in log quick on $lan from { 192.168.1.88, 192.168.1.95,
192.168.1.99 } to any label USER_RULE: blabla
pass in quick on $lan from 192.168.1.0/24 to any keep state label
USER_RULE: Default LAN - any
Hi,
In there an online openbsd version of
http://linuxgazette.net/issue59/nazario.html
by Jose??
I understad that it is there in his book but am unable to place it on
the web :-(
Please let me know if it exists on the web!!!
Thankyou so much
Kind Regards
Siju
On Sun, Sep 04, 2005 at 09:31:36PM +0200, Vincent Immler wrote:
What does this output mean? Is someone able to explain this output to me?
/* not copying files*/
soekris# vmstat -i | grep hifn
irq11/hifn0397322 488
/* start to copying files via SFTP*/
soekris#
Quoting Gijs Nijholt [EMAIL PROTECTED]:
What's particularly strange, it's that the command (/sbin/mount_null)
exists, but on executing the following command:
[EMAIL PROTECTED] sudo mount_null /extended/ /home/gijs/fileserver/
...I get the following error:
mount_null: /home/gijs/fileserver/:
Gijs Nijholt [EMAIL PROTECTED] writes:
Hello,
After some digging through mailinglist archives, it seems that
mount_null is no longer in the GENERIC since OpenBSD 3.7 (and
mount_union as well)
This is not mentioned in the release notes as far as I can verify.
Why is it gone and what is
Currently, our Institute investigates alternative operating systems
compared to Linux. Apart from technical issues we are also concerned
about lifecycle management as well. We simply don't want to
reinstall/upgrade an entire OS all half year, which is the main reason,
why we will no longer use
Stephan A. Rickauer wrote:
The question is how you OpenBSD guys handle the upgrade issue. From the
website I learned that -STABLE is maintained for only one year (= two
releases). Given that upgrading by skipping one release is not
recommended, does that mean one needs to upgrade the entire OS
Miroslav Kubik wrote:
I'm just wondering if the patch for OpenSSH bugs (
http://secunia.com/advisories/16686/ ) already exists for
OpenBSD or if it necessary to compile new version of OpenSSH. On
OpenBSD errata page is nothing.
This is fixed in OpenSSH-4.2 which is in CVS now.
I can't
On 05 Sep 2005 10:51:37 +0200, Artur Grabowski [EMAIL PROTECTED] wrote:
nullfs never worked. Anything else you experienced can be explained by
luck or high resistance to kernel crashes and corrupted data. It's not
coming back until it's safe. In the same way as rlogin is not coming
back and
HP's ProCurve series are a bit on the steep side, though they come
with lifetime warranty, got two 2524 (managed) 10/100 and I haven't
seen any issues with them so far, next to them I got two D-Link
(unmanaged) 10/100/1000 16 port switches, on one of them the fan
sounded like a lawnmower and
--On 05 September 2005 12:17 +0200, Johan P. LindstrC6m wrote:
HP's ProCurve series are a bit on the steep side, though they come
with lifetime warranty, got two 2524 (managed) 10/100 and I haven't
seen any issues with them so far
I looked at some HP 2626 which seem like quite nice switches
Hello again,
After several days of investigation, I was able to patch and make NEC
(numerical Electromacnetigs Code) in plain C languaje under OpenBSD.
The trick was making function definitions for those functions that are
built-in in gcc compiler:
#define complex _Complex
double creal(complex
Stephan A. Rickauer wrote:
Currently, our Institute investigates alternative operating systems
compared to Linux. Apart from technical issues we are also concerned
about lifecycle management as well. We simply don't want to
reinstall/upgrade an entire OS all half year, which is the main
Howdy
Debian has got more ready to use packages than OpenBSD has. I found
more applications for my engineering work and amateur radio hobby.
Upgrades are a simple aptitude dist-upgrade command. On OpenBSD, you
usually have to reinstall everything when you upgrade (or compile).
Espie has done
Ramiro Aceves schrieb:
I like and use both systems. But If you are concerned about easy
upgrading, I would recommend Debian GNU/Linux (no flamewars please ;-)
). It is a very stable system that it is upgraded slowly, about 2 years
(they whant to speed it in the future to 18 month cicle). You
On Mon, 05 Sep 2005 15:52:50 +0300, Stephan A. Rickauer
[EMAIL PROTECTED] wrote:
I am already in love with it, since I plan to use it as a HA-firewall
using carp and pfsync. Problem here is just that it looks as if I had to
reinstall it all year ...
Hi Stephan,
If it's just a firewall,
Stephan A. Rickauer wrote:
The question is how you OpenBSD guys handle the upgrade issue. From the
website I learned that -STABLE is maintained for only one year (= two
releases). Given that upgrading by skipping one release is not
recommended, does that mean one needs to upgrade the entire OS
Giedrius RekaE!ius schrieb:
If it's just a firewall, and you won't need any new features (wich will
come with some
new release), then why should you upgrade? Just configure it, put the
because patch-xy has been made for release zz where I have release bb
after 'it has been in the dark
Moritz Grimm schrieb:
The result is really painless upgrades -- maybe not in a sense of
(attempted) automation like on some other OSes, but in terms of
breakages. The time saved by the fact that everything typically Just
Works makes up for the few additional manual steps during upgrades, and
Henning Brauer schrieb:
you don't have to reinstall at all. hogwash by some people here. I have
about a hundred servers in production, some are upgraded ever since 2.7
times or so. upgrade typically takes us 5 minutes and one reboot a box.
Well, I am thinking of using OpenBSD for our
I recently did my first upgrade from 3.6 to 3.7 without the cd's and it
was surprisingly simple... I would say the upgrade was less
complicated than my last linux upgrade (kernel and userland is in sync
here).
Love this OS
On Mon, 05 Sep 2005 15:21:29 +0200
Moritz Grimm [EMAIL PROTECTED]
Moritz Grimm wrote:
Stephan A. Rickauer wrote:
The question is how you OpenBSD guys handle the upgrade issue. From
the website I learned that -STABLE is maintained for only one year (=
two releases). Given that upgrading by skipping one release is not
recommended, does that mean one needs
Hi,
Just a thought. For packages with sensitive system configs wouldn't it
be useful if the install automatically patched /etc/changelist. Also it
might help if they modified /etc/mtree/special too, although this is
probably more difficult to get right.
Or is there a good reason why this
...on Mon, Sep 05, 2005 at 03:35:19PM +0200, Stephan A. Rickauer wrote:
Henning Brauer schrieb:
you don't have to reinstall at all. hogwash by some people here. I have
about a hundred servers in production, some are upgraded ever since 2.7
times or so. upgrade typically takes us 5
I use OpenBSD boxes with a few 4xFE on two sites as switches/routers =)
I'm am happier with them than the cheapo switches I replaced.
--
Tony Sarendal - [EMAIL PROTECTED]
IP/Unix
-= The scorpion replied,
I couldn't help it, it's my nature =-
On 9/4/05, Przemyslaw Nowaczyk [EMAIL PROTECTED] wrote:
Hi misc,
I'm trying to find buy a stable reliable 5 to 8 port 100Mbit
switch for my home network. My first impression was to buy the 3COM
OfficeConnect Dual Speed Switch 10/100 5 Plus (3C16790) or the D-Link
DES-1005D Switch 10/100
On Sat, 03 Sep 2005 at 10:31 -0600, jared r r spiegel wrote:
On Tue, Aug 23, 2005 at 03:58:31PM +0100, Jason McIntyre wrote:
yes, it was removed a little while ago. you can get the same
functionality from openssl(1) req. see also isakmpd(8).
i checked on the isakmpd(8), it gives an
Jean-Daniel Beaubien wrote:
Hi everyone, I'd like to get an idea of the status of DBMail on
openBSD. If anyone has had some experience with DBMail on obsd please
let me know what you think about it. Is it stable? How is the speed?
How's the initial setup?
I know I there's a dbmail
Stephan A. Rickauer wrote:
Currently, our Institute investigates alternative operating systems
compared to Linux. Apart from technical issues we are also concerned
about lifecycle management as well. We simply don't want to
reinstall/upgrade an entire OS all half year, which is the main
Hi Mickey,
[ pkg_add does not change /etc/changelist and /etc/mtree/special ]
is there a good reason why this isn't done?
IMHO, KISS.
Don't have packages mess up the base system. Keep central
configuration files as concise and straightforward as possible.
Of course, if you have some
I apologise if I'm posting these questions to the wrong list.
I'm getting GAZILLIONS of the following error messages since
I upgraded to KDE 3.3.2. How come?
1
QGDict::hashKeyString: Invalid null key
ASSERT: !m_doc-wrapCursor() in
I've some problems with serval CVSYNC-Servers.
No matter wich server I tried for now I've similiar errors:
Updating (collection openbsd/rcs)
No such file or directory
Updater(RCS): ADD: /nfs/cvs/ports/devel/libglade2/files/libglade2.spec,v
Updater: RCS Error
Socket Error: recv: 2 residue 2
On Mon, Sep 05, 2005 at 07:03:59PM +0200, [EMAIL PROTECTED] wrote:
Is there any problem with CVSYNC currently?
3.8 has been tagged, which puts heavy load on all mirrors (including
cvsync mirrors).
Ciao,
Kili
On Mon, Sep 05, 2005 at 07:03:59PM +0200, [EMAIL PROTECTED]
wrote:
Is there any problem with CVSYNC currently?
3.8 has been tagged, which puts heavy load on all mirrors (including
cvsync mirrors).
Yes I thought about that too but I wonder why it takes about 1-2 days even
for the mirrors to
I've been reading Jacek's book on pf but haven't
found a way to block packets on the basis of the
country of origin. Is it that possible in pf?
Yes, but you'll need to define what IP blocks you want blocked
yourself. I have resorted to this myself to stop certain known spam
havens from hitting
[EMAIL PROTECTED] wrote:
On Mon, Sep 05, 2005 at 07:03:59PM +0200, [EMAIL PROTECTED]
wrote:
Is there any problem with CVSYNC currently?
3.8 has been tagged, which puts heavy load on all mirrors (including
cvsync mirrors).
Yes I thought about that too but I wonder why it takes about 1-2
MikeyG wrote:
Just a thought. For packages with sensitive system configs wouldn't it
be useful if the install automatically patched /etc/changelist. Also it
might help if they modified /etc/mtree/special too, although this is
probably more difficult to get right.
Packages shouldn't modify
happy birthday for Theo :-)
http://www.techexpo.aplus.pl/openbsd2.jpg
:-)
Hello everybody,
I've noticed that fdc isn't in /dev/.
I noticed it during I tried to boot a floppy.
1. I checked the FD-Device
# dmesg | grep fd
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask fff5 netmask fffd ttymask
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask fff5 netmask fffd ttymask
On Monday 05 September 2005 20:31, [EMAIL PROTECTED] wrote:
Hello everybody,
I've noticed that fdc isn't in /dev/.
I noticed it during I tried to boot a floppy.
fdc(4) is the floppy controller. If you read the manpage, you'll discover that
the floppy *drive* is /dev/fd[0-3][A-H][a-p]
Try
On 2005-09-05 at 21:31, [EMAIL PROTECTED] wrote:
I've noticed that fdc isn't in /dev/.
I noticed it during I tried to boot a floppy.
You probably want to access a floppy drive, which are called fd*, not
fdc*.
From fdc(4):
The standard names of a floppy drive will take the form
Try actually reading that manual on fdc as well. It says:
The standard names of a floppy drive will take the form
/dev/fd{0,1,2,3}{,B,C,D,E,F,G,H}[a-p].
Cheers,
Andreas
On 05/09/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hello everybody,
I've noticed that fdc isn't in /dev/.
On Monday 05 September 2005 20:31, [EMAIL PROTECTED] wrote:
Hello everybody,
I've noticed that fdc isn't in /dev/.
I noticed it during I tried to boot a floppy.
fdc(4) is the floppy controller. If you read the manpage, you'll discover
that
the floppy *drive* is /dev/fd[0-3][A-H][a-p]
On Monday 05 September 2005 21:23, [EMAIL PROTECTED] wrote:
On Monday 05 September 2005 20:31, [EMAIL PROTECTED] wrote:
Well I guess the floppy-controler on an ASUS K7V880 is noticed but not
used.
Simpler than that; the floppy controller appears to have no drives attached
from the PoV of the
[EMAIL PROTECTED] wrote:
On Monday 05 September 2005 20:31, [EMAIL PROTECTED] wrote:
Hello everybody,
I've noticed that fdc isn't in /dev/.
I noticed it during I tried to boot a floppy.
fdc(4) is the floppy controller. If you read the manpage, you'll discover
that
the floppy *drive* is
How about a Dell PowerConnect 2216? They are currently $49US for an
unmanaged 16port that can be rackmounted with the included hardware. Quiet
and fairly reliable.
On 5-Sep-05, at 5:31 PM, Steven Bowers wrote:
How about a Dell PowerConnect 2216? They are currently $49US for an
unmanaged 16port that can be rackmounted with the included
hardware. Quiet
and fairly reliable.
A friend of mine was once running a pentest at a client's site, and
they had a
On Mon, Sep 05, 2005 at 03:11:02PM -0400, Steve Shockley wrote:
MikeyG wrote:
Just a thought. For packages with sensitive system configs wouldn't it
be useful if the install automatically patched /etc/changelist. Also it
might help if they modified /etc/mtree/special too, although this is
Siju George wrote:
Hi,
In there an online openbsd version of
http://linuxgazette.net/issue59/nazario.html
by Jose??
I understad that it is there in his book but am unable to place it on
the web :-(
Please let me know if it exists on the web!!!
Haven't seen such a beast. LONG ago
Greets
I am setting up an openbsd router to manage a companies intenet access,
and would like to deploy volume based internet usage. I have setup
squid, but it doesn't seem to have any options to limit a user by volume
of traffic, only bandwidth.
Is there any solution to do this? I
floppys are not supported on amd. Has been in the archives for ages. If you
had included the dmesg as you are supposed to you would not have been wasting
everyones time (as usual).
Art wrote a nice rant about why not a few weeks ago.
On Mon, Sep 05, 2005 at 10:23:56PM +0200, [EMAIL PROTECTED]
On Monday 05 September 2005 23:47, Marco Peereboom wrote:
floppys are not supported on amd. Has been in the archives for ages. If
you had included the dmesg as you are supposed to you would not have been
wasting everyones time (as usual).
Art wrote a nice rant about why not a few weeks ago.
Hello List,
I am unable to get pppoe to work with an alpha that I want to use as a
firewall. It panics
amap_wipeout: corrupt amap
when I connect the ADSL Speedstream modem to any of the three nic's.
I have used the same hostname.pppoe0 and ppp.conf files with the same
modem and a secondary
So anyway, I got this whole router thing done and installed. Did some
tests across it before the big rush back tomorrow for everyone. I
started documenting it so others can get an idea of what to expect.
I've got the basic description done but was not sure what people would
want to see as far as
I should note that this is not an internet router, but for the middle
of a 100MB network... Its not for a lower usage internet connection.
On Tue, 6 Sep 2005 00:22:29 -0400
Bill [EMAIL PROTECTED] wrote:
So anyway, I got this whole router thing done and installed. Did some
tests across it
Don't forget the basics...
is the floppy ribbon cable connected?
is the floppy ribbon cable known to be good?
are the connectors fully seated, try reseating them?
is the power connected to the drive?
is the drive connected after the cable twist?
is the drive known to be good?
--
John
On 9/5/05, Nick Holland [EMAIL PROTECTED] wrote:
The first word of most dmesg lines is a device driver, and in this
case, they all are: pchb, ppb, pci, vga, wsdisplay, pcib, pciide, wd.
And (get this!) they each have a man page! Is that cool or what? :)
So, you want to learn about
On 9/5/05, Nick Holland [EMAIL PROTECTED] wrote:
Siju George wrote:
Hi,
In there an online openbsd version of
http://linuxgazette.net/issue59/nazario.html
by Jose??
I understad that it is there in his book but am unable to place it on
the web :-(
Please let me know if it
59 matches
Mail list logo