honk.any-key.press

undeadly rss

Feed: OpenBSD Journal
ronk: RSS-to-honk bot

undeadly honked 16 May 2025 09:00 +0200

EdgeRouter 4 under OpenBSD with Failover WAN

Kirill A. Korinsky (kirill@) writes in with his guide to setting up an EdgeRouter 4 with OpenBSD/octeon to provide a failover gateway/router setup:

This article details the configuration process for setting up OpenBSD on an EdgeRouter 4 device to function as a home router, incorporating features such as private DNS resolution for clients and failover WAN connectivity.

Read the whole thing at Kirill's site.

undeadly honked 15 May 2025 07:00 +0200

erspan(4) committed to -current

erspan(4), the ERSPAN collection driver created by David Gwynne (dlg@) [and about which we recently reported] has been committed to the tree:

CVSROOT:	/cvs
Module name:	src
Changes by:	dlg@cvs.openbsd.org	2025/05/13 19:54:12

Modified files:
	sys/net        : if_gre.c 

Log message:
add support for the ERSPAN Type II protocol

ERSPAN is a specific GRE 0 protocol id with GRE sequence numbers
enabled, with it's own shim header, and then an Ethernet payload.

undeadly honked 14 May 2025 20:00 +0200

Game of Trees 0.112 released

Version 0.112 of Game of Trees has been released (and the port updated):

remove /tmp/got-importmsg temp files when import commit message is left empty

rely on secondary _gotwebd groups if repos_path is not owned by _gotwebd group

fix unrelated errors being reported if a histedit operation is aborted

implement support for protected references in gotsys.conf and gotsysd

plug memory leaks in some libexec helpers and in the gitconfig parser

stop needlessly opening the repository whenever a work tree is opened

undeadly honked 14 May 2025 08:00 +0200

OpenSMTPD 7.7.0p0 released

Omar Polo (op@) has announced the release of version 7.7.0p0 of OpenSMTPD:

[…]
Changes in this release:
========================

 - mail.lmtp: Correctly propagate LMTP permanent failures to smtpd.
 - Fixed connect filter request documentation in smtpd-filters.7.
 - Updated to new imsg APIs.
[…]

See the full release announcement for all the details.

undeadly honked 12 May 2025 13:00 +0200

erspan(4): ERSPAN Type II collection

Our favorite operating system is in the process of aquiring Encapsulated Remote Switch Port Analyzer (ERSPAN) support, in the form of a new virtual network interface, dubbed erspan(4).

An early version of the code, but possibly close to being ready for further development in-tree was presented by David Gwynne (dlg@) in a message to tech@:

List:       openbsd-tech
Subject:    erspan(4): ERSPAN Type II collection
From:       David Gwynne <david () gwynne ! id ! au>
Date:       2025-05-12 1:27:59

we were exploring how to better let us see what's happening on access
networks or specific ports on a switch at work. our switches are
pretty much all cisco, which has ERSPAN.

ERSPAN in it's various forms ships Ethernet packets over GRE for
collection and analysis on another system. There's 3 types of ERSPAN
encapsulation, but Type II seems broadly implemented.