00:26:03 <duncan> I think the Noto emoji font is in ports and packages. Works well on my laptop
00:52:20 <hernan604> ohh thanks duncan and appledash .. noto font fixed it
03:28:11 <markmcb> anyone good with serial setup at boot? i could use some help: https://privatebin.io/?0cc62cb7c4f3a811#FgAPovkAowQyK637kcpPhN6rpList2BmUi24ey6jZ68y
03:30:39 <rtprio> markmcb: is a keyboard attached to the system?
03:31:06 <markmcb> rtprio, no
03:38:22 <rtprio> does anything happen with no loader.conf ?
03:43:17 <markmcb> I can't get that far. I'm trying to install from a usb stick. Is there a way to tell loader to ignore whatever is on the installer image?
03:44:21 <rtprio> if theres no keyboard it should default to "serial,video"
03:45:44 <markmcb> I have a remote keyboard. I can boot the USB, see the loader, and interact. However, once I "boot" I see the "kernel" line and then no more output.
03:45:57 <markmcb> So I can set whatever I like in loader by pressing 3
03:46:19 <markmcb> But no combination I've tried seems to work
03:46:21 <rtprio> oh, it's a vm or something
03:46:33 <rtprio> i would skip ,efi
03:46:38 <markmcb> no, it's a Decisio DEC2700
03:46:56 <rtprio> have you read https://docs.freebsd.org/en/books/handbook/serialcomms/#serialconsole-setup ?
03:47:13 <markmcb> yeah, none of that seems to work
03:49:13 <markmcb> it was originally an OPNsense appliance so maybe i'll trying installing that and looking at whatever loader.conf settings they use ... maybe there's some special tweak
04:09:56 <markmcb> so strange. opnsense installer boots no problem (also 14.2 kernel) and the loader.conf shows nothing obviously different ... hmm
04:13:13 <rtprio> odd
04:19:44 <markmcb> i wonder if it's something to do with using the boot only ISO file. i'll try with the full installer tomorrow and see if that helps.
04:24:54 <rtprio> i install all my vms on the console and it never needs any loader commands
05:15:23 <ivy> rtprio: i do that as well under bhyve, but recently installing under kvm in CSM mode i noticed that the installer doesn't enable the serial console by default.  i assume this is because under bhyve it's using the EFI console...
05:22:37 <mzar> w
05:22:40 <mzar> err
05:24:36 <Aedil> mzar: Grüß Gott.
05:27:19 <Aedil> mzar: I have watched a recording of the Polish military parade at YouTube.com, recently.
10:19:15 <mzar> Grüß Gott Aedil
10:20:45 <Aedil> mzar: Have a good day with your FreeBSD desk!
10:21:00 <mzar> ty
11:02:33 <ivy> does anyone know off hand if dummynet works on wg(4)?  i don't really want to waste an hour rebuilding to find it's not supported
11:06:38 <[tj]> I don't know, but I don't see why there would be a problem. Why do you need to build anything?
11:07:18 <ivy> [tj]: the reason i ask is because altq(9) does not (which is why i'm looking at dummynet instead).  i need to build because my kernel doesn't currently include dummyney
11:08:03 <[tj]> ivy: altq is super weird and requires driver support
11:08:12 <[tj]> I have dummynet as a kernel module
11:13:20 <mzar> sure, one can load dummynet and use it with ipfw and pf, both alike
11:13:48 <ivy> [tj]: so dummynet doesn't require driver support?
11:14:11 <mzar> but IIRC dummynet not only shapes the traffic but makes processing as one-core in some parts of network stack
11:14:54 <mzar> ATLQ and dummynet are different things, IIRC ALTQ requires driver support
11:15:02 <mzar> but I could be wrong
11:15:45 <ivy> yes, altq requires driver support
11:17:28 <nimaje> at least the dummynet man page doesn't mentoin requiring special driver support (the altq one does)
11:32:09 <[tj]> Dummynet hooks into a firewall
20:15:09 <volgar1x> Hello! Do you think it's possible to NAT inside a Jail? I would like to forward pkts incoming on wg0 as 192.168.100.x/24 through vnet0 toward 192.168.1.x/24
20:15:46 <volgar1x> I have this rule in /etc/pf.conf: nat on $ext_if from $wg_if:network to any -> ($ext_if)
20:27:11 <mzar> sure, it's possible
20:52:41 <volgar1x> mzar: do you know how that would work?
21:19:38 <rtprio> what does running wireguard in a jail possibly buy you
21:33:44 <souji> I created a bridge and connected a VNET jail. Furthermore, I add the neccessary routes and configured NAT, and internet access works. However, when I try to download a larger file, like bootstrapping pkg, I see on the external interface "unreachable - need to frag (mtu 1500)". But the packets are never fragmented. Does anyone had a similar issue and know what I'm missing?
21:51:42 <jgh> it's saying it would have to fragment, but the packets are marked up as "Don't Frag".  This is normal; the sender should see the ICMP "need frag" and use the smaller MSS (assuming it's TCP... UDP-using applications ought to do that too but are often Too Dumb)
21:52:43 <jgh> The whole loop is "PMTU Discovery"
22:01:07 <souji> jgh: Hmm that's what I thought too (and yes, in this example it's only TCP traffic). But the sender is for what ever reasons not fragmenting the packets...
22:02:01 <jgh> jails are outside my ken. Can you tell if the TCP stack in there saw the ICMP?
22:08:47 <souji> I just tried to connect to another server of mine, and it looks like the icmp messages get through. And no worries, thank you for your help :)
22:10:31 <souji> If I'm not mistaken, for IPv4, the previous router needs to fragment the packet not the original source. For IPv6 the actual sender needs to fragment the packets.
22:20:13 <souji> Since it is some kine of MTU issue, the actual issue might be where the packets leave the network stack of the host system and enter the network stack of the jail.
22:29:34 <nacelle> I have a 13.0 box.  I want to get to 14.2 with it.  Do i have to upgrade to the various 13.x point releases to get to 14, or can I jump straight to 14, or 14.2?
22:31:06 <kevans> nacelle: generally it's a better idea to jump to the latest minor on your current branch first before you hop a major version
22:32:54 <kevans> (older releases in the branch may notably not have fixes necessary for the major hop rolled in to update tooling if you use that)
22:56:26 <nacelle> ah ok
22:56:35 <nacelle> so 13.0 to 13.5, then to 14.0?
22:57:37 <nacelle> (this is all different to me, openbsd is point by point upgrades only, most of the other stuff is "warp from wherever in the past to the present"
22:57:40 <nacelle> )
22:58:35 <ketas> well it could work
22:59:17 <kevans> nacelle: 13.0 -> 13.5 -> 14.2
23:00:12 <kevans> if you were on 12.x instead, it'd probably be worth hopping just a single major branch of a time, but there's no reason to go any further back than the latest supported release on the target branch that I can think of
23:12:53 <nacelle> thank you
23:16:09 <gustik> hey, was there a broken postfix package a while ago?
23:17:03 <gustik> because I seen some postfix package that had no permissions set and then I removed it and reinstalled and I noticed he did not take it from cache but downloaded it again and then it worked
23:20:46 <gustik> and I am on the quarterly one, so that should not happen, normally
23:21:40 <regis> 10+ years going, I never saw a broken postfix anything.
23:36:14 <gustik> see
23:36:22 <gustik> me neither, until now
23:36:52 <gustik> but maybe it was because I was installing it from host into a jail, pkg -r install postfix
23:37:21 <gustik> after I installed pkg install postfix on a host and then again on the jail pkg -r jail install postfix, it worked
23:37:49 <gustik> very strange
23:43:10 <gustik> I tried to reproduce it now with the same steps and now I can not
23:43:25 <gustik> however, the logs from the past say there was a problem, it somehow magically disappeared