|
| Notices |
DriverHeaven is currently recruiting for the AWOMO Beta Test / Elite Op Team. AWOMO is a digital download service for games, and we're looking to expand the beta team. If you're interested. Sign up as a member here at DriverHeaven and then head HERE to submit your details. Thanks
For more info on AWOMO visit their site HERE
Welcome to the DriverHeaven.net forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact us. |
 |
|
Nov 5, 2007, 10:18 PM
|
#31
|
|
BSD SMASH!
Join Date: May 2002
Location: A rabbit hole. . .
Posts: 1,170
Rep Power: 0
|
Quote:
Originally Posted by H3X4D3C1M4L
OK I've been working off and on with it and now I've got it.
Bridging won't work with the two cards on the same subnet. I did try it the way the FAQ suggested but it didn't seem to work.
No matter, I'm using routing now vs. bridge. It's more efficient and seeing as I've got another 253 subnets to burn through before I run into issues, this'll work just fine 
I just created a route between 192.168.0.x/24 and 192.168.1.x/24, made the default route whatever my PPPoE connection gets and ta-da. Magic. |
Yeah, that's what I do. It works great. |
|
|
|
Nov 20, 2007, 10:42 PM
|
#32
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Now my only gripe is just working on my pf ruleset and the 4.2 question
Seeing as I don't have xbase installed and I don't want to... it looks like I'll need to do a fresh install at 4.3 (You can read about the way they changed it on the OpenBSD 4.2 release notes).
On a side note, not sure if it works the same in FreeBSD but can you "skip" a release when you're upgrading? I.e. go from x.1 to x.3 or x.4 even?
|
|
|
|
|
Nov 24, 2007, 05:15 PM
|
#33
|
|
BSD SMASH!
Join Date: May 2002
Location: A rabbit hole. . .
Posts: 1,170
Rep Power: 0
|
Quote:
Originally Posted by H3X4D3C1M4L
On a side note, not sure if it works the same in FreeBSD but can you "skip" a release when you're upgrading? I.e. go from x.1 to x.3 or x.4 even?
|
Well, the version numbering in FreeBSD is different. The versioning scheme is major.minor (ie, 6.3, 7.0). Skipping minor number releases during an upgrade should not be a problem. Skipping major version number releases during an upgrade will probably not work. Considering that FreeBSD does not release major versions all too often, it is not usually as big of a deal. |
|
|
|
|
Dec 22, 2007, 06:07 PM
|
#34
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Well thanks for all the input. It finally all works
Just tweaking pf and Samba now. |
|
|
|
|
Feb 4, 2008, 02:24 PM
|
#35
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
On that note got any experience with pf and/or rulesets?
|
|
|
|
|
Feb 16, 2008, 02:34 PM
|
#36
|
|
BSD SMASH!
Join Date: May 2002
Location: A rabbit hole. . .
Posts: 1,170
Rep Power: 0
|
Quote:
Originally Posted by H3X4D3C1M4L
On that note got any experience with pf and/or rulesets?
|
Yeah, I use it on all of my machines. |
|
|
|
|
Apr 5, 2008, 12:47 AM
|
#37
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Quote:
Originally Posted by Malus
Yeah, I use it on all of my machines.
|
I had a question but I think I answered it myself.
Got a bit overzealous with some very nebulous "modulate state" statements  |
|
|
|
|
May 29, 2008, 12:47 AM
|
#38
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Everything has been working flawlessly so far but I can't figure out what the Memory statistic is in pf (nor does a quick Google realy reveal the answer)? I have 740 or so packets in the Memory counter. The heck does that mean?
|
|
|
|
|
Jul 4, 2008, 04:25 PM
|
#39
|
|
BSD SMASH!
Join Date: May 2002
Location: A rabbit hole. . .
Posts: 1,170
Rep Power: 0
|
Quote:
Originally Posted by H3X4D3C1M4L
Everything has been working flawlessly so far but I can't figure out what the Memory statistic is in pf (nor does a quick Google realy reveal the answer)? I have 740 or so packets in the Memory counter. The heck does that mean?
|
I have no clue. How do you even display that statistic? I did not see a knob for it in pfctl. |
|
|
|
|
Jul 7, 2008, 12:36 AM
|
#40
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Quote:
Originally Posted by Malus
I have no clue. How do you even display that statistic? I did not see a knob for it in pfctl.
|
I just did pfctl -si and got this
Code:
Status: Enabled for 17 days 16:22:26 Debug: Urgent
Interface Stats for pppoe0 IPv4 IPv6
Bytes In 54493654946 0
Bytes Out 29893934037 64
Packets In
Passed 68442593 0
Blocked 541727 0
Packets Out
Passed 78674805 1
Blocked 26986 0
State Table Total Rate
current entries 631
searches 357947594 234.3/s
inserts 4855053 3.2/s
removals 4854422 3.2/s
Counters
match 5714925 3.7/s
bad-offset 0 0.0/s
fragment 378 0.0/s
short 6 0.0/s
normalize 2 0.0/s
memory 4875 0.0/s
bad-timestamp 0 0.0/s
congestion 30812 0.0/s
ip-option 0 0.0/s
proto-cksum 3864 0.0/s
state-mismatch 154604 0.1/s
state-insert 0 0.0/s
state-limit 0 0.0/s
src-limit 0 0.0/s
synproxy 0 0.0/s
Hopefully that comes out looking formatted well. I'm becoming increasingly worried about that because it keeps going up and up and up. Random checks when I SSH in keep showing it goes up as much as like 1000 in an hour. |
|
|
|
|
Jul 13, 2008, 11:24 PM
|
#41
|
|
BSD SMASH!
Join Date: May 2002
Location: A rabbit hole. . .
Posts: 1,170
Rep Power: 0
|
Quote:
Originally Posted by H3X4D3C1M4L
Hopefully that comes out looking formatted well. I'm becoming increasingly worried about that because it keeps going up and up and up. Random checks when I SSH in keep showing it goes up as much as like 1000 in an hour.
|
Mine is at 0 on my router. Apparently, the counter goes up when memory cannot be allocated for a state entry. It does not look like you are even close to the default state limit, given the output you posted. Could be someone trying to brute force into your router, or perhaps some sort of short-coming in your hardware configuration. |
|
|
|
|
Jul 14, 2008, 12:13 PM
|
#42
|
|
Noise? What noise?
Join Date: May 2005
Location: Canada
Posts: 6,816
Rep Power: 35
|
Worrying as it may be, I'd lean towards someone brute forcing in. I'm highly skeptical that even the worst BitTorrent port thrashing I've dished out could choke the hardware (P3 1GHz with 1.5GB of RAM). I haven't done anything especially funky to the kernel and the memory counter hasn't gone up since I've posted that. I've also got aggressive state expiration on, so it should be flushing connections fairly quickly.
I'll have to keep a closer eye on the logs methinks.
|
|
|
|
|
|
|
