1

(0 replies, posted in NetBSD)

Hey guys,

I am about replace my Macbook with a new notebook.

Id like to run NetBSD on it (I will be dual booting Linux) & wonder if any of you can recommend a laptop that has good support for drivers.

I may pick up another Macbook yet (as it has been great), but we will see what you guys come up with.

MaJ.

2

(7 replies, posted in OpenBSD)

Hey Asem it worked.

Though my NAT is showing as 'Strict'. What does yours show as?

3

(7 replies, posted in OpenBSD)

Thanks Asem.

Ill compare it to mine.

Legend!

4

(7 replies, posted in OpenBSD)

Hey Sure:

#Define Macros
ext_if = "fxp0"
int_if = "axe0"
localnet = "192.168.0.0/24"
ports = "{ domain, www, 1863, 443, 5222, 194, 6667, pop3s }" #{ DNS, WWW, MSN, MSN, gtalk, IRC
, IRC, spop3 }
scrub in

#Configure NAT
nat on $ext_if from $localnet to any -> ($ext_if)

#XBOX360 Redirections
rdr on fxp0 inet proto udp from any to any port 88 -> 192.168.0.30
rdr on fxp0 inet proto { tcp, udp } from any to any port 3074 -> 192.168.0.30

#Allow XBOX360 to connect
pass in quick on fxp0 inet proto udp from any to 192.168.0.30 port 88 keep state
pass in quick on fxp0 inet proto { tcp, udp } from any to 192.168.0.30 port 3074 keep state

#Block All Traffic
block in all
block out all

#Allow SSH Connections From Anywhere
pass in inet proto tcp from any to $int_if port ssh

#Allow Pings
pass in quick inet proto icmp all icmp-type { echoreq, unreach, echorep } keep state

#Allow connections to be made from the $ports variable
pass inet proto { tcp, udp } to any port $ports

5

(7 replies, posted in OpenBSD)

Hey guys,

Iv been running PF as my firewall for a few weeks now & loving it. But Iv hit a snag when it comes to Xbox Live on my 360.

My network is like so:

    
  [ COMP1 ]    [ XBOX360 ]
      |            |                               
   ---+------+-----+------- axe0 [ OpenBSD ] fxp0 -------- ( Internet )
             |
         [ COMP2 ]

Now, Xbox Live requires:

TCP 88
UDP & TCP 3074

to be forwarded to the Xbox for a connection to work.

In my pf.conf I have specified:

#XBOX360 Redirections
rdr on fxp0 inet proto udp from any to any port 88 -> 192.168.0.30
rdr on fxp0 inet proto { tcp, udp } from any to any port 3074 -> 192.168.0.30

and for the forwarding of packets

#Allow XBOX360 to connect
pass in quick on fxp0 inet proto udp from any to 192.168.0.30 port 88 keep state
pass in quick on fxp0 inet proto { tcp, udp } from any to 192.168.0.30 port 3074 keep state

I have allowed ICMP requests by using the following:

pass in quick inet proto icmp all icmp-type { echoreq, unreach, echorep } keep state

Now when running the Xbox Live Connectivity Test, It fails on the MTU test. Clearly I am blocking something, or am not forwarding ports correctly.

The only info I can find on Xbox & MTU failure is:

Xbox Live requires a minimum MTU setting of 1364

Very helpful as you will agree.

When I turn off "block in all" and "block out all" I can easily connect & play games ofcourse.

Are you guys able to help out?

If you need more info, just let me know.

Cheers,

MaJ.

isn't there a captcha when signing up to this place?

God i hate spammers.

7

(9 replies, posted in OpenBSD)

Strog wrote:

You said int_if and ext_if in your original post but I'm guessing your pf.conf doesn't actually have them defined as macros. You can use the physical names of the interfaces if your pf.conf is small. It will grow quickly as you add in things like scrubbing, queueing, port forwards, filters, logging, etc.  It's really nice to only have to update the macro once instead of sifting through the file for every reference to the changed interface.

Either way, I'm glad you got it up and running. smile Pf is a very powerful filter and you can add a piece and a time and have a lot of control over your network.

Nah i know about macros smile

Ill tell you what I did, I actually learned alot about OpenBSDs network stack in trying to get this working.

But in the end yesterday afternoon i just re-installed it & used Strogs nat command.

Voila!

Thanks heaps guys.

8

(9 replies, posted in OpenBSD)

Sorted, turns out it was the NAT:

nat on fxp0 from axe0:network to any -> (fxp0)

9

(9 replies, posted in OpenBSD)

Nah im still getting nothing with a NAT.

10

(9 replies, posted in OpenBSD)

Strog wrote:
MaJ wrote:

I have enabled 'net.inet.ip.forwarding=1' in sysctl.conf

Almost there. You need to at least add NAT and enable pf.

nat on $ext_if from $int_if:network to any -> ($ext_if)




There's a lot more you can do with pf so you may want to look through the pf user's guide.

http://www.openbsd.org/faq/pf/index.html

Yeh i bought 'The Book of PF' in trying to change over from iptables.

Book is awesome, but I cant get forwarding working smile

11

(9 replies, posted in OpenBSD)

Hey Asem,

Yep iv havent even touched pf yet, but i have made sure its disabled.

The Openbsd has no problems whatsoever communicating or reaching the internet.

Default route is setup on my laptop as 10.1.1.1 so i would think it would be ok. Able to ping from the laptop to the bsd box too.

12

(9 replies, posted in OpenBSD)

Hey guys,

I feel like a complete n00b because I cant figure this out.

I want to simply route traffic from my laptop through the OpenBSD box to my modem & the internet.

I have enabled 'net.inet.ip.forwarding=1' in sysctl.conf

Running OpenBSD 4.2

ext_if: Dynamically assigned 192.168.1. address.
int_if: 10.1.1.1/8

My laptop has a static IP of 10.1.1.10/8

Iv never tried this on OpenBSD before, iv done it plenty of times on linux simply by modifying the setting in /proc.

If you guys could tell me what im doing wrong id appreciate it.

Cheers,

13

(47 replies, posted in Watercooler)

asemisldkfj wrote:

hi BSDKaffee! time for IRC is hard to make, unless your job involves sitting at a computer.

glad you're alive!

Haha the only reason im in there sometimes.

what model monitor is it?

15

(3 replies, posted in Watercooler)

Merry Christmas for a few days ago smile

Happy Holidays to you Scottro smile

Tahts right, unfortunately you cant run it on the new ones.

I bought mine second hand from Ebay, but it came with a 12month warranty.

Iv got a Linksys Router WRT54G running DD-WRT.

Best $50 I ever spent, which is about $30 USD right now.

http://z.about.com/d/compnetworking/1/0/q/3/linksys_wrt54g.jpg

18

(495 replies, posted in General BSD)

haha your desk looks just like mine does here at work.

19

(2 replies, posted in FreeBSD)

good work.

is freebsd your first bsd?

I remember my first time...

20

(11 replies, posted in FreeBSD)

The problem with these downloaders of flash is, i have to get the entire thing. Where if im watching youtube & it a shit video I will just turn it off before it goes any further (or wastes bandwidth).

Besides, I run a youtube ripoff community & the amount of videos I view in a day would be ridiculous.

http://www.smoobox.com

21

(3 replies, posted in OpenBSD)

Turns out I was doing the right thing previously by killing the PID.

I thought maybe I was missing something haha.

22

(3 replies, posted in OpenBSD)

Hey,

Stupid question i know.

Iv just scored a box which im gonna install obsd on.

So... how do you restart a service?

On my linux box its:

/etc/init.d/sshd start

Netbsd is:

/etc/rc.d/sshd start

So hows it done on Open?

I use what works, sometimes Linux, sometimes BSD.

I work with 90% Windows systems.

24

(3 replies, posted in News)

I see the OpenBSD page now states:

"Only two remote holes in the default install, in more than 10 years!"

Wasnt this only 1 hole a little while ago? What did they find?

25

(287 replies, posted in Off-Topic)

Updated one of me at dinner last week.

http://i154.photobucket.com/albums/s244/MadHatterSJ/Smoo%20Chow%201/P4280456.jpg