Cool :-)

I read afterboot(8) but I didn't see anything related to the issue
that I'm experiencing.

Time to go back to Linux I suppose..

--
-Jamie L. Penman-Smithson <jpenman.smithson@gmail.com>

I already did this, to no effect.

--
-Jamie L. Penman-Smithson <jpenman.smithson@gmail.com>

Hi

I'm having issues with rsyncing ftp.rfc-editor.org through a PF firewall,
other connections (also other rsync connections) work well.

rsync -avz --delete ftp.rfc-editor.org::rfcs-text-only my-rfc-mirror
receiving file list ... done
./
rfc-index.xml
...
rfc1591.txt
rfc1592.txt
nothing is going to happen... will timeout in a few minutes

my setup is LAN --> OBSDGW2 -> PPPOE -> Internet

fxp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:...

Enable debugging in PF and see if you get any error conditions in your
kernel logs.

# pfctl -x loud

(set back to normal with 'pfctl -x urgent')

--
Darren Spruell
phatbuckett@gmail.com

Head of the ftp://ftp.sangoma.com/OpenBSD/current_wanpipe/README reads:

Future release: Wanpipe version
----------------------------------------------------------
o Support Asterisk interface.

Nov 23, 2006: wanpipe version - 1.6.5-8 (wanpipe-1.6.5-8.tgz)
----------------------------------------------------------
[...]
o Support OpenBSD-4.0 kernel

Therefore, I am hoping to have Asterisk+Sangoma cards running on OpenBSD
sooner than most people are expecting. (Meaning that we won't need
zapte...

Hello

I've got a new toy today, here's the dmesg:

What does this server contain?
* Intel Xeon 5130
* SuperMicro X7DVL-E
(http://www.supermicro.com/products/motherboard/Xeon1333/5000V/X7DVL-E.cfm)
No other specialities.

The keyboard is connected via USB, works. Disks are attached to the SATA
controller, detected. Fully functional it appears.

Made using cd40.iso from amd64.

OpenBSD 4.0 (RAMDISK_CD) #883: Sat Sep 16 20:46:50 MDT 2006
deraadt@amd64.openbsd.org:/usr/src/sys/arch/amd...

I have pf running on an OpenBSD 4.0 (patches 1-5, 7) router and I have one
user with two Gentoo Linux machines with kernel 2.6.18 who is having
troubles. Everyone else is having no problem at all. This user is having any
tcp connection he makes dropped by the firewall. The state shows up when I
run "pfctl -ss" but a sniff on both ends of the router shows that it is
dropping the packets. If I set the debug level to loud I get the following
output.

Gentoo and OpenBSD talking to each other

Fe...

On Wed, 14 Feb 2007, Tim Kuhlman wrote:

Not always, but very often. The main rule is to make sure that the
packet creating the state is not a packet of an already established
connection, but a packet creating the connection. Creating the state
from the beginning allows pf to get the info about the window scaling
and other tcp options used.

Using flags S/SA keep state is the easiest way to achieve that. Note
that on current, this is the default.

-Otto

New linux kernels (and Windows) set the window size such that wscale>0
by default (if you want to test this from an OpenBSD box, increase
net.inet.tcp.recvspace).

As tcpdump will show you, the wscale value is *only* in SYN packets.
This is multiplied by the window size in the TCP headers of subsequent
packets to find the actual window size (see RFC1323 paragraph 1.1 on
'window size limit' and paragraph 2).

If the state was created from a packet other than the SYN, it won't have
wscale infor...

Since upgrading a couple firewalls this weekend from 3.8 to 4.0, I've
noticed a large increase in passive-mode FTP transfer timeouts. Before
the upgrade, I had no issues...but now there are a number of client's
FTP servers that I have to transfer files to and from that transfers
simply fail on. I can log in just fine, but the data connections hang
at random. Sometimes they work, but often they don't.

I've increased the debugging on ftp-proxy and it isn't telling me
anything relevant.

my ftppr...

can i see a dmesg as well? if you're running the machine as an amd64,
can you try it again as an i386?

dlg

Greetings:

I will not have time for a proper bug report until this evening when I
get home, but I thought I would throw this out there for now.

This issue is reproducible, and it occurred in the previous snapshot
as well. Briefly, here is how it happens:

I have net.inet.ip.forwarding=1, and two interfaces: re0 is on my
internal LAN which is routed to the internet through another box
running 4.0-stable. vr0 is connected to an ibook, also running
4.0-stable, through a switch. The box that panics...

when routing packets to another interface, is it then possible to do redirection
for those packets on the other interface ?

I am trying to:
- route subnets to a tunnel
- redirect the subnets to private ip

10.100.1.1 ----> bge0 --- route-to ---> tun0 --- rdr 10.100.1.1 -> 192.168.1.1

I am seeing mostly

2007-02-14 15:29:43.043821 rule 1/0(match): pass out on tun0:
172.16.11.24 > 10.100.1.1: ICMP echo request, id 512, seq 20225,
length 40

So no rdr. Its probably supposed to work...

On my OpenWRT router, dnsmasq needs to be told that it is
authoritative on dhcp requests with the ``dhcp-authoritative'' keyword
in dnsmasq.conf

--
----
ID: AF133028
fp:9D6B DC0F CCDA 53FA 3F04 A551 BC23 374D AF13 3028

Don't know why you would prefer dnsmasq when the default installation of
OpenBSD already have both ISC dhcpd and bind daemons. I use then, rather
then having to install a package and configure it. Also, if you want a
caching nameserver only, simply putting named_flags= on
/etc/rc.conf.local and opening requests to your internal net only, on
both TCP and UDP port 53, will give a fully functional recursive dns.
And the configuration of /etc/dhcpd.conf is the same as ISC dhcpd. There
is even an exampl...

This suggests flow control has *not* been negotiated. With msk(4), I
get:

borodin$ ifconfig msk0
msk0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:16:cb:a2:87:67
groups: egress
media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause)
status: active
inet6 fe80::216:cbff:fea2:8767%msk0 prefixlen 64 scopeid 0x1
inet 192.168.0.17 netmask 0xffffff00 broadcast 192.168.0.255

Hello!

I would like to know when the CPU is switched into protected mode on i386?

Before or after executing init386() ?
Or does the bootloader / or the BIOS do this?

Markus

Hi,

I just installed OpenBSD 4.0 on an IBM xSeries 336. I have noticed that, for
some reason,
I/O operations are not carried out as fast as one would expect for a machine
with SCSI
disks. For instance, the creation of a 50GB partion took a really long time.
The command
4tar xzvf ports.tar.gz4 took more than 14 minutes to finish. Something must be
wrong,
but I have no idea nor the knowledge to discover. I took a suggestion from a
old message
in the list and tried to run the .MP kernel, but it di...

I'm getting this error & I understand that I need to symlink some file
inside the chroot (/var/www) area but I'm not sure which file to be
exact. I search previous misc@ archive but they seem a bit confusing.

Warning: dl() [function.dl]: Unable to load dynamic library
'/var/www/lib/php/modules/mysql.so' - File not found in
/mysite/mediawiki/install-utils.inc on line 17
Could not load MySQL driver! Please compile php --with-mysql or
install the mysql.so module.

Here are the necessary packages...

My named doesn't bind to my private IP and only binds to localhost.

starting BIND 9.3.2-P1
command channel listening on 127.0.0.1#953
command channel listening on ::1#953

I already have the listen-on option in /var/named/etc/named.conf file
pointed to my private IP.

options {
listen-on { 192.168.25.5; };
allow-recursion { clients; };
};

If I do a "named -c /var/named/etc/named.conf" it gives error -

none:0: open: /var/named/etc/named.conf: file not found
loading configuration: file not...

On Wed, Feb 14, 2007 at 09:50:07PM +1100, atstake atstake wrote:
| My named doesn't bind to my private IP and only binds to localhost.
|
| starting BIND 9.3.2-P1
| command channel listening on 127.0.0.1#953
| command channel listening on ::1#953
|
| I already have the listen-on option in /var/named/etc/named.conf file
| pointed to my private IP.
|
| options {
| listen-on { 192.168.25.5; };
| allow-recursion { clients; };
| };
|
| If I do a "named -c /var/named/etc/named.conf" it gives error -...

Nah. You can't sue `linux,' complain to Greg Kroah Hartmann. Most
GPL fans don't want this deal at all. Explain Greg this is
unethical. Just like when you email a manifacturer of hardware
requesting documentation.

# Han

I'm afraid you are right. And I can even understand their
reasoning, since they are not really educated on the matter. And
that must be remedied.

In 1915 the Irish resistance against the English occupation was so
strong the English offered a peace-treaty. They offered to divide
Ireland into two sections, one in their control -- Northern
Ireland -- and controled by Ireland itself.

Half of the Irish resistance wanted to fight on for a decent
treaty and the other half wanted to accept the deal.
...

I'm guessing that you did not read the followup FAQ about the program
at:
http://www.kroah.com/log/linux/free_drivers_faq.html

Please see the final question and answer on that page.

thanks,

greg k-h