Adam Gensler kristenandadam.net> writes:
> local_nets = "{ 172.28.1.0/24, 172.28.10.0/24, 172.28.11.0/24 }"
> work871 = "172.28.1.3"
> pass in quick inet proto udp from $work871 tos 0xB8 tag VOIP-RTP
> pass in quick inet proto udp from $work871 tos 0x60 tag VOIP-SIG
> pass in quick inet proto { t
Adam Gensler kristenandadam.net> writes:
> all udp 1.1.1.1:4500 <- 172.28.1.3:4500 MULTIPLE:MULTIPLE
> age 00:15:50, expires in 00:00:57, 394:196 pkts, 52356:39176 bytes, rule 37
put "pass all tos " higher in your ruleset and see if it matches.
Network diagram:
++
||
| +--+ | ++
| | | | ||
Hi all,
I've been playing with pf for a number of months now and I've come across a
situation that I'm having trouble finding a solution for. Specifically I'm
working with the following topology:
Internet --- OpenBSD box --- Cisco router --- other devices
The Cisco router (a small 800 series r
Hello everybody,
First of all, let me introduce myself. I am Renato Westphal, I work as a
computer engineer in Brazil and I'm a maintainer of the MPLS-Linux project.
A couple of years ago I accidentally found that OpenBSD already had
built-in support for MPLS and, surprisingly, a fully working imp
On 2013/05/22 20:47, Stuart Henderson wrote:
> does anyone see a downside to this? if the address family is not
> explicitly specified, assume v6 if it looks like it may be an ipv6
> address.
>
> allows e.g. "route get 2001:200:dff:fff1:216:3eff:feb1:44d7"
> without needing to specify -inet6.
oop
does anyone see a downside to this? if the address family is not
explicitly specified, assume v6 if it looks like it may be an ipv6
address.
allows e.g. "route get 2001:200:dff:fff1:216:3eff:feb1:44d7"
without needing to specify -inet6.
Index: route.c
=
On 22 May 2013 19:57, Aaron Stellman wrote:
> On Mon, May 20, 2013 at 08:24:06PM +0100, Stuart Henderson wrote:
>> If you make it a couple of paragraphs past the table, there is this
>> paragraph, which is rather clear:
>>
>> Using AES-GMAC or NULL with ESP will only provide authentication.
this sets the outgoing hop limit correctly on v6 sessions so they should
come up when we've configured ttl-security and the other side is checking
ttls. I don't have anything handy to test against but things look good
with tcpdump.
we ought to check incoming packets too, but this at least is a ste
On Mon, May 20, 2013 at 08:24:06PM +0100, Stuart Henderson wrote:
> If you make it a couple of paragraphs past the table, there is this
> paragraph, which is rather clear:
>
> Using AES-GMAC or NULL with ESP will only provide authentication. This
> is useful in setups where AH can not b
On 22 May 2013 18:32, Mike Belopuhov wrote:
> On Wed, May 22, 2013 at 18:08 +0200, Mark Kettenis wrote:
>> > Date: Wed, 22 May 2013 17:59:19 +0200
>> > From: Mike Belopuhov
>> >
>> > On Tue, May 21, 2013 at 17:16 +0200, Mike Belopuhov wrote:
>> > > from freebsd. ok?
>> > >
>> >
>> > ping!
>>
>> T
On Wed, May 22, 2013 at 18:08 +0200, Mark Kettenis wrote:
> > Date: Wed, 22 May 2013 17:59:19 +0200
> > From: Mike Belopuhov
> >
> > On Tue, May 21, 2013 at 17:16 +0200, Mike Belopuhov wrote:
> > > from freebsd. ok?
> > >
> >
> > ping!
>
> There are more drivers in the tree that do the same th
> Date: Wed, 22 May 2013 17:59:19 +0200
> From: Mike Belopuhov
>
> On Tue, May 21, 2013 at 17:16 +0200, Mike Belopuhov wrote:
> > from freebsd. ok?
> >
>
> ping!
There are more drivers in the tree that do the same thing. And then
there lots that have the same bug. Would be nice if we could f
On Tue, May 21, 2013 at 17:16 +0200, Mike Belopuhov wrote:
> from freebsd. ok?
>
ping!
> diff --git sys/dev/mii/brgphy.c sys/dev/mii/brgphy.c
> index 7f0bae2..461c798 100644
> --- sys/dev/mii/brgphy.c
> +++ sys/dev/mii/brgphy.c
> @@ -412,8 +412,10 @@ setit:
>* the BMSR twice in c
On Wed, May 22, 2013 at 12:06, Gregory Edigarov wrote:
>
> works for me, with only one limitation: now only for resolvable hosts, i.e
> one cannot have
> +192.168.2.1
> * /some/file
Looking at the diff, I think it's not resolvable hosts, but whatever
hostname the sending machine decid
On Wed, May 22, 2013 at 3:42 PM, Lawrence Teo wrote:
> BUFCACHEPERCENT has been set to 20 by default for a while now, so bump
> it in the options(4) man page accordingly.
>
> OK?
ok for me.
thanks for catching this.
David
> Index: options.4
>
BUFCACHEPERCENT has been set to 20 by default for a while now, so bump
it in the options(4) man page accordingly.
OK?
Index: options.4
===
RCS file: /cvs/src/share/man/man4/options.4,v
retrieving revision 1.231
diff -u -p -r1.231 op
On Tue, 21 May 2013, Miod Vallat wrote:
> > While experimenting, I've found that fonts with WSDISPLAY_FONTENC_ISO
> > encoding like bold8x16-iso1 or sony8x16 are ok, while fonts with
> > WSDISPLAY_FONTENC_IBM (bold8x16, vt220l8x8) cause the kernel panic
> > below:
>
> Fixed. Thanks for the report
I am glad to say, 3 of you are on your toes today.
I sent the wrong diff, and to be honest I wasn't sure if any
one would notice.
Gold Stars to you all
On Wed, May 22, 2013 at 09:07:56AM +, Florian Obser wrote:
> On Tue, May 21, 2013 at 07:54:31PM +, Mark Lumsden wrote:
> > This di
On Tue, May 21, 2013 at 07:54:31PM +, Mark Lumsden wrote:
> This diff modifies the shell-command-on-region function and gives us
> shell-command. It makes getting output from other commands into mg
> really easy. Comments/oks?
>
> -lum
>
> Index: def.h
> ==
Hi,
the following diff adds filter by host function to syslogd like:
+host
* /var/log/host
or
+host2
mail.* /var/log/host2.mail
etc.
works for me, with only one limitation: now only for resolvable hosts, i.e one
cannot have
+192.168.2.1
* /some/file
Wit
To make the shell-command-on-region and this command behave
like that requires another diff.
mark
On Wed, May 22, 2013 at 09:32:45AM +0200, Jasper Lievisse Adriaanse wrote:
> On Tue, May 21, 2013 at 07:54:31PM +, Mark Lumsden wrote:
> > This diff modifies the shell-command-on-region function
On Wed, May 22, 2013 at 07:42:42AM +, Mark Lumsden wrote:
> To make the shell-command-on-region and this command behave
> like that requires another diff.
>
> mark
I'm fine with this diff going in first and polishing it intree, it works fine
for commands with > 1 line of output.
> On Wed, Ma
On Tue, May 21, 2013 at 07:54:31PM +, Mark Lumsden wrote:
> This diff modifies the shell-command-on-region function and gives us
> shell-command. It makes getting output from other commands into mg
> really easy. Comments/oks?
>
> -lum
It seems Emacs doesn't split the window if the output fro
24 matches
Mail list logo
