imported initial version

1 files changed, 119 insertions, 0 deletions

diff --git a/README b/README
new file mode 100644
index 0000000..203db43
--- /dev/null
+++ b/README
@@ -0,0 +1,119 @@
+Install
+-------
+
+Check disk geometry of flash with
+
+disklabel wd0
+
+Adapt disk geometry in 'hardware/<machine>/flash_params'.
+
+Run 'build.sh <machine>'.
+
+Transfer image to flash:
+
+dd if=<machine>.image of=/dev/wd0c
+
+or remotely (after booting from floppy dongle or from hard disk):
+
+dd if=<machine>.image | ssh <machine> "dd of=/dev/wd1c"
+
+Directory layout
+----------------
+
+build.sh    - central build script
+doc         - various documentation
+template    - common files with variables being substituted and then
+              copied to the image
+config		- machine-specific confiugration (e.g. pf.conf)
+hardware	- flash disk geometry for specific machines
+
+Embedded OpenBSD projects
+-------------------------
+
+possible small OpenBSD makers (low level):
+
+CompactBSD: http://compactbsd.sourceforge.net/, back in 2002,
+  looks like OpenBSD 3.x was the last version tested
+Flashboot: http://www.mindrot.org/projects/flashboot/
+Flashrd/Flashdist:
+ * http://www.nmedia.net/flashrd/rlsnotes.html
+ * https://github.com/yellowman/flashrd/
+ * http://www.nmedia.net/~chris/soekris/: original page which has gone,
+   flashdist is the older version of flashrd. The EIT
+   firewalls where based on early scripts of Chris Cappuccio
+   (early flashdist)
+Bowlfish:
+ * http://www.kernel-panic.it/software/bowlfish/: latest version 2.1
+   seems a little bit old (11.4.2013). The description about Embedded
+   OpenBSD is very worthy to read, gives quite some insights how it works.
+ * sort of a normal BSD install, not really automatic
+ * seems to be for OpenBSD 4.9, not for 5.x
+   ./install[332]: /usr/mdec/installboot: not found
+   some files in etc missing
+Soekris256:
+   http://256.com/gray/docs/soekris_openbsd_diskless/
+
+more high-level:
+
+http://opensoekris.sourceforge.net/
+http://compactbsd.sourceforge.net/
+
+others:
+
+https://andrewmemory.wordpress.com/tag/flashrd/
+http://www.onlamp.com/pub/a/bsd/2004/03/11/Big_Scary_Daemons.html
+http://glozer.net/soekris/cf-install.html
+http://verb.bz/2011/06/12/openbsd-embedded-router/
+
+Hardware
+--------
+
+We have Portwell NAR-2054 (3 and 5 ethernet port versions), some
+have VGA ports and USBs, others only COMs, so make sure we always
+get boot output on COM.
+
+VirtualBox build and test
+-------------------------
+
+Create a VMDK wrapper for the disk image built with 'build.sh firewall-test':
+
+VBoxManage internalcommands createrawvmdk -filename firewall-test.vmdk -rawdisk firewall-test.image
+
+Copy firewall-test.image from OpenBSD machine to the machine running Virtualbox.
+
+Use COM1 and /tmp/serial, Host pipe, create pipe in VirtualBox,
+then:
+
+socat unix-connect:/tmp/serial stdio,raw,echo=0,icanon=0
+
+The network devices is 'em0' not 'reX' on VirtualBox (as opposed to
+the real box, at the time of writting there is no Realtek ethernet
+card emulated in VirtualBox).
+
+DMA issues
+----------
+
+If you get something like
+    pciide0:0:0: bus-master DMA error: missing interrupt, status=0x21
+
+then change the access mode from DMA to PIO x
+See man wd(4) for the values of flags
+
+config -e -u -o /bsd.new /bsd
+
+UKC> change wd
+change (y/n) ? y
+channel [-1] ? -1
+flags [0] ? 0xff0
+UKC> quit
+
+mv -f /bsd.new /bsd
+
+Links
+-----
+
+http://home.nuug.no/~peter/pf/en/long-firewall.html and his "Book of PF".
+
+Manpages of OpenBSD.
+
+Aba, 30.1.2015