-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Henning Brauer wrote: > * David Newman [2007-06-04 03:59]: >> but it says carp doesn't work with bridging > > carp ...

openbsd-misc - David Newman - Jun 4 2007 - 10:11

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Stuart Henderson wrote: > On 2007/06/04 07:11, David Newman wrote: >> I could divide the /26 into smaller netblocks and configure pf to route >> between them ...

openbsd-misc - David Newman - Jun 4 2007 - 11:19

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 8/9/07 10:24 AM, David Newman wrote: > On 8/9/07 3:22 AM, Joachim Schipper wrote: > >>> # Allow quick valid traffic to ssh but log all attempts ...

openbsd-misc - David Newman - Aug 9 2007 - 13:29

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 8/22/07 5:22 AM, Henning Brauer wrote: > * David Newman [2007-08-21 21:41]: >> Question: Can OpenBSD and/or pf itself set TOS and/or ...

openbsd-misc - David Newman - Aug 22 2007 - 19:24

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 9/5/07 2:01 AM, Henning Brauer wrote: > * David Newman [2007-09-05 00:59]: >>> Can any one comment on this ? Would it not be ...

openbsd-misc - David Newman - Sep 5 2007 - 11:32

... MESSAGE----- Hash: SHA1 On 9/7/07 8:59 AM, Stuart Henderson wrote: > On 2007/09/07 08:41, David Newman wrote: >> 1. I believe "keep state" is still needed when using queuing. The >> pf.conf manpage says it ...

openbsd-misc - David Newman - Sep 7 2007 - 12:19

... 36 PM, Tonnerre LOMBARD wrote: > Salut, > > On Mon, Nov 19, 2007 at 02:20:54PM -0800, David Newman wrote: >> There is some layer-2 stuff that happens before layer-3 handshaking >> begins -- 802.11 association and ...

openbsd-misc - David Newman - Nov 19 2007 - 19:08

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 11/22/07 1:55 PM, Christian Weisgerber wrote: > David Newman wrote: > >>>> There is some layer-2 stuff that happens before layer-3 handshaking >>>> ...

openbsd-misc - David Newman - Nov 22 2007 - 23:49

On 6/12/08 9:14 PM, Tim Donahue wrote: > Quoting David Newman : > >> Looking for info on seeing near-real-time or real-time info on TCP >> connection states using pftop. >> >> A 4.3-release box has pf rules ...

openbsd-misc - David Newman - Jun 13 2008 - 16:29

On 8/16/08 12:54 PM, Johan Beisser wrote: > On Sat, Aug 16, 2008 at 12:37 PM, David Newman wrote: > >> Is there some other way to install ports across machines? > > You'll have to ...

openbsd-misc - David Newman - Aug 16 2008 - 16:23

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 9/3/07 3:28 PM, Paolo Supino wrote: > Hi David > > It's true that all IP addresses are in the 10.x.x.x private address > space that isn't supposed to be routed on the Internet, but in all the > ...

openbsd-misc - David Newman - Sep 3 2007 - 18:35

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thanks in advance for guidelines on using pf with carp and pfsync boxes that bridge rather than route. I found this guide: http://www.seattlecentral.edu/~dmartin/docs/bridge.html but it says carp

openbsd-misc - David Newman - Jun 3 2007 - 21:47

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 What's the deal for upgrading systems running RAIDframe? I have Sparc64 boxes running 4.0 and RAIDframe. Is it possible to upgrade these through the regular process, or do I need to do a clean install

openbsd-misc - David Newman - Jun 11 2007 - 14:50

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 What is the longest v4 prefix length CARP supports? In the example given here: http://www.openbsd.org/faq/pf/carp.html Each physical interface has two IPv4 addresses, one for a shared IP and one

openbsd-misc - David Newman - Jun 13 2007 - 14:57

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 6/13/07 12:40 PM, Bryan Vyhmeister wrote: >> Is there some means of getting CARP to work where one side of the pf box >> sits on a /30? > > You don't actually need an address for each physical

openbsd-misc - David Newman - Jun 14 2007 - 20:56

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 6/18/07 4:01 AM, Nick Holland wrote: >> I plan to implement cgi. > > which means you probably (though not certainly) have an app which > requires the ability to write to files. If that is true,

openbsd-misc - David Newman - Jun 18 2007 - 10:57

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 6/27/07 10:39 PM, Daniel Ouellet wrote: > Steve B wrote: >> The rule I've had in my pf.conf file to catch and block forceful SSH >> attempts no longer appears to be working. I see the entries in my

openbsd-misc - David Newman - Aug 8 2007 - 13:26

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > On Thu, Aug 09, 2007 at 06:07:08PM +1000, Chris wrote: >> I'm trying to buy (from ebay) a cisco switch, router and pix firewall >> for learning purposes. All these will be connected to a Linksys ADSL

openbsd-misc - David Newman - Aug 9 2007 - 13:08

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 8/9/07 3:22 AM, Joachim Schipper wrote: >> # Allow quick valid traffic to ssh but log all attempts as well >> pass in log quick on $unpro inet proto tcp from ! \ >> to $unpro port ssh

openbsd-misc - David Newman - Aug 9 2007 - 13:24

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 8/9/07 11:58 AM, Joshua Gimer wrote: > We are planning on moving a large amount of Exchange mailboxes to UNIX > mbox format. > > My question is, does anyone know of any projects out there or of any

openbsd-misc - David Newman - Aug 9 2007 - 15:35