| Aaron | net-snmp with AES supported?
I have been trying to get my snmp v3 users set up and to a certain
degree I'm having luck, but unfortunately only with DES privacy. I have
been following the SNMP documentation and not sure if i'm doing
something wrong or if the openbsd version of snmp doesn't do aes. Here
is my command for creating a user:
net-snmp-config --create-snmpv3-user -ro -A mypassword -X
myotherpassword -x DES -a SHA newnewuser
which comes back with no errors and the resultant message:
adding the following ...
| Aug 24, 4:10 pm 2007 |
| Marcos Laufer |
| Aug 24, 3:56 pm 2007 |
| Attilla de Groot | Soekris 4801-60 max 2mbit
--Apple-Mail-4--766701014
Content-Transfer-Encoding: 7bit
Content-Type: text/plain;
charset=US-ASCII;
delsp=yes;
format=flowed
Hi,
I have a Soekris 4801-60 with a standard OpenBSD 4.1 install (generic
kernel).
I'm using it as a firewall/router with some nat. The problem is I'm
not able to get more then 2mbit throughput. Also on the soekris
itself with wget for example. I've tried to disable qos, disable pf,
reboot etc. nothing of the solved the problem. And I'm wondering ...
| Aug 24, 3:18 pm 2007 |
| Bryan Irvine | panic mclpl
I've got an older 3.7 machine that keeps panicing. I know 3.7 is old
an out of support, this server will be upgraded in about 2 weeks, but
needs to run until then.
The errors seem to alternate between :"pool_prime_page: vmmpepl: unaligned page"
and:pool_get(mclpl): free list modified: magic=deaf3434; page
0xda241000; item addr 0xda241800
I've tried swapping RAM, any other ideas?
dmesg follows:
OpenBSD 3.7 (GENERIC) #50: Sun Mar 20 00:01:57 MST 2005
...
| Aug 24, 2:31 pm 2007 |
| Chris Cappuccio | saving records of pf state creation/deletion
is there a tool out there that saves records off pfsync for later analysis?
(my particular case is to figure out who was spamming behind nat, but
i'm sure there are many other uses for something like this)
| Aug 24, 2:13 pm 2007 |
| Jason Dixon |
| Aug 24, 2:40 pm 2007 |
| Jon Steel | Timeout in ichiic on boot
Hi
When turning on a computer I once get several errors like the following:
ichiic0: exec: op 1, addr 0x49, cmdlen 1, len 0, flags 0x08: timeout,
status 0x41<BUSY,INUSE>
This is a box running OpenBSD 4.1 with multi-processors enabled.
According to my dmesg below, I believe the device that is causing this
timeout is the PCI_PRODUCT_INTEL_82801GB_SMB. The person who started up
the computer does not remember, but he may have plugged in a usb
keyboard during the boot. Is it reasonable that ...
| Aug 24, 12:36 pm 2007 |
| frantisek holop | to zaurus or not to zaurus
hi there,
i am planning to go on a longer trip and i am considering buying
a sub-sub-sub notebookish thingie...
i know openbsd support zaurus quite well, and i have found a promising
sale of a C3200 for around 500 euros...
the things is, it's surprisingly hard (for me) to find any
details about these beasts like what can i use it for in
comparison with a notebook, how is battery life, and you know,
just how does it fare in everyday usage....
i would be most grateful if the zaurus users ...
| Aug 24, 8:51 am 2007 |
| James Lepthien | Energy saving AMD 64 X2 EE CPU possible?
Hi,
I run my OpenBSD firewallsystem on a System which is way oversized
for my needs. I want this system to consume as little power as
possible so I need your advices. I started the apmd with the option -
C but the apm output is the following:
Battery state: unknown, 0% remaining, unknown life estimate
A/C adapter state: not known
Performance adjustment mode: cool running (2009 MHz)
So the CPU is still running at full speed! Here is my dmesg output
for the cpu:
cpu0 at mainbus0: ...
| Aug 24, 7:33 am 2007 |
| Lars Noodén |
| Aug 24, 9:11 am 2007 |
| Bret Lambert | Re: E-mail/calendar suite on OpenBSD (Kerio on OpenBSD)?
My personal suggestion? Ask your users why, other than the fact that
Outlook does it, do you need one application to handle both calendaring
and email?
If you can get your users to break out of that (rather idiotic, IMO)
paradigm, an entire world of easier-to-support possibilities opens up
for you.
Just so you don't think I'm being a cocky ass, I asked that question,
and was rewarded with "because I'm the president and I say so." I'm now
in the process of rolling out Scalix.
| Aug 24, 5:48 am 2007 |
| Nikolaus Hiebaum | E-mail/calendar suite on OpenBSD (Kerio on OpenBSD)?
Hi,
I am currently searching for an e-mail/calendar application which is
capable of the following:
- support clients running on Windows machines (Outlook)
- support clients running on Linux/OpenBSD machines (Evolution)
- provide Webmail incl. the calendar
One software, which looks like it can do all of that, I found is Kerio
Mail Server ( http://www.kerio.com/kms_home.html). It appears to be capable
of synchronizing between the various sessions.
My question is whether anyone of you has ...
| Aug 24, 6:14 am 2007 |
| Craig Skinner |
| Aug 24, 8:56 am 2007 |
| Terry |
| Aug 24, 8:27 am 2007 |
| James Turner |
| Aug 24, 8:21 am 2007 |
| Darren Spruell |
| Aug 24, 1:57 pm 2007 |
| Joachim Schipper | Re: Securing syslog in insecure mode (syslog -u )
That is possible, but he might also want his log messages to end up on
the server in a guaranteed way, or somesuch. (This, of course, is hugely
problematic.)
Joachim
--
PotD: x11/flwm - fast-light window manager
| Aug 24, 3:48 pm 2007 |
| Lars Noodén |
| Aug 24, 5:49 am 2007 |
| Martin Schröder |
| Aug 24, 4:03 pm 2007 |
| Jacob Yocom-Piatt |
| Aug 24, 2:31 pm 2007 |
| Renaud Allard | Redundant OpenBSD routers crashing
Hello,
I have two machines running OpenBSD 4.2-beta (GENERIC) #338, but this
happened with 4.1-stable as well.
The machines have 8 gigabit interfaces and are only doing routing/nat
with pfsync and carp. It seems that after about 15 days, all memory is
consumed and no resources are available. The machine does not drop
into ddb, but it doesn't do any routing anymore and one cannot log in.
Worse is that it doesn't switch to slave config as carp still works.
The running processes are:
USER ...
| Aug 24, 2:24 am 2007 |
| Travers Buda | Re: kernel/5563: ipv6 traffic causes page fault trap
----- Forwarded message from Travers Buda <traversbuda@gmail.com> -----
Date: Thu, 23 Aug 2007 19:43:53 -0500
From: Travers Buda <traversbuda@gmail.com>
To: Janjaap van Velthooven <janjaap@stack.nl>
Subject: Re: kernel/5563: ipv6 traffic causes page fault trap
In-Reply-To: <20070823203531.CE8581D9C9@turtle.stack.nl>
User-Agent: Mutt/1.5.16 (2007-06-09)
I've seen this panic as well in the last few days on a laptop with
pcmcia and a 3com ep card. However, I have not been able to ...
| Aug 23, 6:32 pm 2007 |
| Stéphane Chausson |
| Aug 24, 2:34 am 2007 |
| Miod Vallat | Re: Problem with new IDE disk
During the 4.1->4.2 development cycle, the disklabel layout has been
modified to allow sector numbers of up to 48 bits, instead of 32 bits.
This has been done by ``packing'' existing fields of the structure,
to get room for the extended values.
Disklabel handling is done by both the kernel (which needs to read
the label for its own needs, and also provides ioctls for userland
tools to be able to read and write labels), and the userland system
administration tools such as disklabel(8).
Of ...
| Aug 24, 2:45 am 2007 |
| Toni Mueller | Re: OSPF: routing instabilities
Hi Claudio,
thank you very much for the explanation. This is then an
"implementation weakness", and it seems to preclude the (intended) use
for the following scenario:
* router A announcing a route via router B (which is not an OSPF
speaker)
I'm not quite sure if your statement also goes for "connected"
networks. I'd like to be able to announce networks dynamically if they
"go up", like this:
network N1 --- C ---------+------s1-----A----+---------- network N2
...
| Aug 24, 3:17 am 2007 |
| Toni Mueller | Re: OSPF: routing instabilities
Note to self:
looking into the plus42.html file, it looks like I should be (or at
least start) running snapshots, right?
Best,
--Toni++
| Aug 24, 1:46 am 2007 |
| Claudio Jeker | Re: OSPF: routing instabilities
All redistributed networks are originated with a nexthop of the ospf
router. That is how it works for the moment and changing that is not
simple as you need to know if the nexthop you intend to use is reachable
by the other ospf routers. Make sure you only announce static routes that
are behind the router that redistributes them.
| Aug 24, 2:05 am 2007 |
| Claudio Jeker | Re: OSPF: routing instabilities
-current is always the best release of OpenBSD. Running -current helps us
to identify issues early and solve them quickly.
So yes, run snapshots.
| Aug 24, 2:07 am 2007 |
