From owner-freebsd-net@FreeBSD.ORG Sun Nov 4 00:05:19 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C8A6716A46B for ; Sun, 4 Nov 2007 00:05:19 +0000 (UTC) (envelope-from babolo@cicuta.babolo.ru) Received: from pike.mail.pike.ru (pike.mail.pike.ru [85.30.230.219]) by mx1.freebsd.org (Postfix) with ESMTP id 668D013C4B3 for ; Sun, 4 Nov 2007 00:05:17 +0000 (UTC) (envelope-from babolo@cicuta.babolo.ru) Received: (qmail 92047 invoked from network); 3 Nov 2007 20:04:54 -0000 Received: from cicuta.babolo.ru (85.30.229.5) by pike.mail.pike.ru with SMTP; 3 Nov 2007 20:04:54 -0000 Received: (nullmailer pid 98456 invoked by uid 136); Sat, 03 Nov 2007 19:59:14 -0000 X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1 In-Reply-To: <20071101150613.GA24803@lor.one-eyed-alien.net> To: Brooks Davis Date: Sat, 3 Nov 2007 22:59:14 +0300 (MSK) From: .@babolo.ru X-Mailer: ELM [version 2.4ME+ PL99b (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Message-Id: <1194119954.596539.98455.nullmailer@cicuta.babolo.ru> Cc: Max Laier , freebsd-net@freebsd.org, "Bruce M. Simpson" , Julian Elischer , Matus Harvan Subject: Re: UDP catchall X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Nov 2007 00:05:19 -0000 > On Wed, Oct 31, 2007 at 09:53:56AM -0700, Julian Elischer wrote: > > It's possible using ipfw to mostly implement this, and with an upcoming > > change, possible to completely implement this. > > > > the "uid" function of ipfw can act as a "does there exist a socket to which > > this packet would go?" test. > > and a variant of it called "for_me" that I am adding (we use it at work) > > does this even better. > > > > so, basically, > > > > yyy: skipto xxx ip from any to-me > > yyy+1: fwd 127.0.0.1,1234 > > xxx: > > One problem with this kind of implementation is that it's impossible to > make it plug and play. Just equip mtund with script that configure virgin OS in proper way and restrict to do that when there is some non-minimal configuration, for example ipfw is not empty. Your plug and play goal as written contradicts BSD spirits IMHO. Sorry for bad English. From owner-freebsd-net@FreeBSD.ORG Sun Nov 4 01:14:10 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AAF5F16A421 for ; Sun, 4 Nov 2007 01:14:10 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from fallbackmx03.syd.optusnet.com.au (fallbackmx03.syd.optusnet.com.au [211.29.133.136]) by mx1.freebsd.org (Postfix) with ESMTP id 3F24913C4A7 for ; Sun, 4 Nov 2007 01:14:10 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail34.syd.optusnet.com.au (mail34.syd.optusnet.com.au [211.29.133.218]) by fallbackmx03.syd.optusnet.com.au (8.12.11.20060308/8.12.11) with ESMTP id lA3KN4TX028516 for ; Sun, 4 Nov 2007 07:23:04 +1100 Received: from server.vk2pj.dyndns.org (c220-239-20-82.belrs4.nsw.optusnet.com.au [220.239.20.82]) by mail34.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lA3KM2sg016877 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 4 Nov 2007 07:22:03 +1100 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.1/8.14.1) with ESMTP id lA3KM2m4061654; Sun, 4 Nov 2007 07:22:02 +1100 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.1/8.14.1/Submit) id lA3KM2Ri061647; Sun, 4 Nov 2007 07:22:02 +1100 (EST) (envelope-from peter) Date: Sun, 4 Nov 2007 07:22:02 +1100 From: Peter Jeremy To: Ivo Vachkov Message-ID: <20071103202202.GS30091@server.vk2pj.dyndns.org> References: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="5mCyUwZo2JvN/JJP" Content-Disposition: inline In-Reply-To: X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-net Subject: Re: Maximum number of vlans on a freebsd box ??? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Nov 2007 01:14:10 -0000 --5mCyUwZo2JvN/JJP Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Nov 03, 2007 at 08:23:20PM +0200, Ivo Vachkov wrote: >I'd like to ask if someone has information how many vlans a freebsd >box can 'run' ? There is no hard limit, so in theory 4096 VLANs per trunk. If you are using a very large number, defining VLAN_ARRAY should improve performance at the expense of kernel memory by removing a hash lookup. --=20 Peter --5mCyUwZo2JvN/JJP Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHLNhq/opHv/APuIcRAoxnAJ9Jaf4ypfmkds6Y8kTVL2zfpaFfVACdHUo3 7eCG8ZAIt7+vRAfIbc0ijxY= =daBv -----END PGP SIGNATURE----- --5mCyUwZo2JvN/JJP-- From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 09:03:55 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5946D16A46C for ; Mon, 5 Nov 2007 09:03:55 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout7.cac.washington.edu (mxout7.cac.washington.edu [140.142.32.178]) by mx1.freebsd.org (Postfix) with ESMTP id 34C8713C4AA for ; Mon, 5 Nov 2007 09:03:55 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout7.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA593krk026036 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 5 Nov 2007 01:03:46 -0800 X-Auth-Received: from [140.142.167.7] (cs331-6.spmodem.washington.edu [140.142.167.7]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA593Ike002382 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Mon, 5 Nov 2007 01:03:38 -0800 In-Reply-To: <4728B256.5080005@u.washington.edu> References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> <47202922.3070700@u.washington.edu> <47209570.20609@tomjudge.com> <4723330A.7070803@u.washington.edu> <4728B256.5080005@u.washington.edu> Mime-Version: 1.0 (Apple Message framework v752.2) X-Gpgmail-State: !signed Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> Content-Transfer-Encoding: 7bit From: Garrett Cooper Date: Mon, 5 Nov 2007 00:59:33 -0800 To: net@freebsd.org X-Mailer: Apple Mail (2.752.2) X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.11.5.4523 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __FRAUD_419_CONTACT_ADDY_B 0, __HAS_MSGID 0, __HAS_X_MAILER 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0' Cc: Tom Judge Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 09:03:55 -0000 On Oct 31, 2007, at 9:50 AM, Garrett Cooper wrote: > Garrett Cooper wrote: >> Tom Judge wrote: >>> Garrett Cooper wrote: >>>> Mike Silbersack wrote: >>>>> >>>>> On Fri, 19 Oct 2007, Garrett Cooper wrote: >>>>> >>>>>>> Just to clarify, how are the two hooked together? Is it over >>>>>>> gigabit switch, a 10mbps hub, or directly cabled together? >>>>>>> >>>>>>> -Mike >>>>>> >>>>>> Sure. They're both connected over a gigabit switch, but the >>>>>> Windows driver's kind of sketchy because it keeps on switching >>>>>> between 100MBit and 1GBit. I haven't really paid that much >>>>>> attention to what speed the FreeBSD msk driver is registering at. >>>>>> -Garrett >>>>> >>>>> Ah ha! >>>>> >>>>> I had the flopping between 100mbps and 1gbps problem with some >>>>> Intel cards once - some of the machines in the lab were fine, >>>>> others kept switching back and forth. We eventually narrowed >>>>> it down to the cables we had hand-made; some of them just >>>>> weren't up to snuff, and the NIC apparently decided that it had >>>>> to go back down to 100. >>>>> >>>>> I think you should switch your gigabit switch out for a 100mbps >>>>> switch and see if the network becomes more reliable. >>>>> >>>>> -Mike >>>> >>>> I think I've discovered what the issue is. I believe the >>>> problem lies in the fact that the FreeBSD Marvell chipset driver >>>> (msk) isn't up to speed with the Gigabit transferring on my >>>> particular chipset(s). That's why transfers were most likely >>>> working with my laptop (Apple with 100MBit Broadcom) vs my >>>> desktop (Asus MB with another Marvell chipset driver) and >>>> another laptop (Dell laptop with Broadcom Gigabit). >>>> How do I tell ifconfig via rc.conf to downgrade the max speed >>>> to 100MBit duplex? >>>> Thanks, >>>> -Garrett >>> >>> You would need to hard code the interface configuration on the >>> switch and box. This is only possible if you have a managed >>> switch and the methods on the switch are manufacturer and model >>> dependent. >>> >>> On FreeBSD however it is trivial for example "ifconfig em0 media >>> 100baseTX mediaopt full-duplex". >>> >>> This will disable speed negotiation and therefore must be >>> configured at both ends of the link. >>> >>> Tom >> >> Well, this is interesting. I used a crappy switch (100MBit SOHO >> switch), in place of my Netgear non-managed gigabit switch, and >> the same thing occurred on the XP x64 machine. >> >> I may have forgotten to mention that at one time both machines >> were running XP variants of some sort (x64 and x86), and they >> worked perfectly fine with one another >_>... >> >> Here's some additional info: >> >> optimus# arp -a >> ? (192.168.0.1) at (incomplete) on msk0 [ethernet] # Dummy gateway >> ? (192.168.0.42) at 00:11:24:2f:15:bc on msk0 [ethernet] # iBook >> (broadcom adapter) >> ? (192.168.0.47) at 00:1a:92:d2:f7:f6 on msk0 [ethernet] # Win XP >> x64 machine >> ? (192.168.0.255) at ff:ff:ff:ff:ff:ff on msk0 permanent [ethernet] >> optimus# ifconfig msk0 >> msk0: flags=8843 metric 0 >> mtu 1500 >> options=9a >> ether 00:1b:fc:45:9b:5c >> inet 192.168.0.45 netmask 0xffffff00 broadcast 255.255.255.0 >> media: Ethernet autoselect (100baseTX > duplex,flag0,flag1>) >> status: active >> ifconfig_msk0="inet 192.168.0.45 broadcast 255.255.255.0" >> # media 100baseTX mediaopt full-duplex" >> defaultrouter="192.168.0.1" >> optimus# netstat -nr >> Routing tables >> >> Internet: >> Destination Gateway Flags Refs Use >> Netif Expire >> default 192.168.0.1 UGS 0 0 msk0 >> 127.0.0.1 127.0.0.1 UH 0 12 lo0 >> 192.168.0.0/24 link#1 UC 0 0 msk0 >> 192.168.0.1 link#1 UHLW 2 0 msk0 >> 192.168.0.42 00:11:24:2f:15:bc UHLW 1 179 >> msk0 1028 >> 192.168.0.47 00:1a:92:d2:f7:f6 UHLW 1 21 >> msk0 1162 >> 192.168.0.255 ff:ff:ff:ff:ff:ff UHLWb 1 49 msk0 >> >> arp and everything's show the correct information on the XP end, >> even after I removed the 'dummy gateway' on both machines.. >> >> Next course of action? Snort? tcpdump? >> >> Thanks, >> -Garrett > > I'm running tcpdump on my Mac and I noted a lot of 'bad > checksums' (0x081c was the official error in all cases), then > consulted the msk driver. It appears that there's a bug with Yukon > II chipsets with the hardware checksumming and I wonder whether or > not the chipset that I have is affected by this issue as well. > I'll provide my chipset/model info in my next reply (can't > access it from this PC). > -Garrett Got a wee bit busy there. Anyhow, here's the chipset info (snippet) reported from dmesg: [gcooper@shiina: ~]$ ssh -C optimus "dmesg | grep msk" Password: mskc0: port 0xd800-0xd8ff mem 0xfe9fc000-0xfe9fffff irq 17 at device 0.0 on pci2 msk0: on mskc0 msk0: Ethernet address: 00:1b:fc:45:9b:5c miibus0: on msk0 -Garrett From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 11:07:02 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 45EF716A4C4 for ; Mon, 5 Nov 2007 11:07:02 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 36C8113C4BE for ; Mon, 5 Nov 2007 11:07:02 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id lA5B72Z4026378 for ; Mon, 5 Nov 2007 11:07:02 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id lA5B71KO026374 for freebsd-net@FreeBSD.org; Mon, 5 Nov 2007 11:07:01 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 5 Nov 2007 11:07:01 GMT Message-Id: <200711051107.lA5B71KO026374@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-net@FreeBSD.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 11:07:02 -0000 Current FreeBSD problem reports Critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/115360 net [ipv6] IPv6 address and if_bridge don't play well toge 1 problem total. Serious problems S Tracker Resp. Description -------------------------------------------------------------------------------- s kern/21998 net [socket] [patch] ident only for outgoing connections a kern/38554 net changing interface ipaddress doesn't seem to work s kern/39937 net ipstealth issue s kern/81147 net [net] [patch] em0 reinitialization while adding aliase o kern/92552 net A serious bug in most network drivers from 5.X to 6.X s kern/95665 net [if_tun] "ping: sendto: No buffer space available" wit s kern/105943 net Network stack may modify read-only mbuf chain copies o kern/106316 net [dummynet] dummynet with multipass ipfw drops packets o kern/108542 net [bce]: Huge network latencies with 6.2-RELEASE / STABL o kern/109406 net [ndis] Broadcom WLAN driver 4.100.15.5 doesn't work wi o kern/110959 net [ipsec] Filtering incoming packets with enc0 does not o kern/112528 net [nfs] NFS over TCP under load hangs with "impossible p o kern/112686 net [patm] patm driver freezes System (FreeBSD 6.2-p4) i38 o kern/112722 net IP v4 udp fragmented packet reject o kern/113457 net [ipv6] deadlock occurs if a tunnel goes down while the o kern/113842 net [ipv6] PF_INET6 proto domain state can't be cleared wi o kern/114714 net [gre][patch] gre(4) is not MPSAFE and does not support o kern/114839 net [fxp] fxp looses ability to speak with traffic o kern/115239 net [ipnat] panic with 'kmem_map too small' using ipnat o kern/116077 net 6.2-STABLE panic during use of multi-cast networking c o kern/116172 net Network / ipv6 recursive mutex panic o kern/116185 net if_iwi driver leads system to reboot o kern/116186 net can not set wi channel on current o kern/116328 net [bge]: Solid hang with bge interface o kern/116747 net [ndis] FreeBSD 7.0-CURRENT crash with Dell TrueMobile o kern/116837 net ifconfig tunX destroy: panic o kern/117271 net [tap] OpenVPN TAP uses 99% CPU on releng_6 when if_tap o kern/117293 net [carp] CARP interfaces causes packet loss o kern/117423 net Duplicate IP on different interfaces o bin/117448 net [carp] 6.2 kernel crash 30 problems total. Non-critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/23063 net [PATCH] for static ARP tables in rc.network s bin/41647 net ifconfig(8) doesn't accept lladdr along with inet addr o kern/54383 net [nfs] [patch] NFS root configurations without dynamic s kern/60293 net FreeBSD arp poison patch o kern/95267 net packet drops periodically appear f kern/95277 net [netinet] [patch] IP Encapsulation mask_match() return o kern/100519 net [netisr] suggestion to fix suboptimal network polling o kern/102035 net [plip] plip networking disables parallel port printing o conf/102502 net [patch] ifconfig name does't rename netgraph node in n o kern/103253 net inconsistent behaviour in arp reply of a bridge o conf/107035 net [patch] bridge interface given in rc.conf not taking a o kern/112654 net [pcn] Kernel panic upon if_pcn module load on a Netfin o kern/114095 net [carp] carp+pf delay with high state limit o kern/114915 net [patch] [pcn] pcn (sys/pci/if_pcn.c) ethernet driver f o bin/116643 net [patch] fstat(1): add INET/INET6 socket details as in o bin/117339 net [patch] route(8): loading routing management commands o kern/117456 net [ipv6] ipv6 neighbour discovery / bce multicast probl 17 problems total. From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 12:52:53 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D299716A418 for ; Mon, 5 Nov 2007 12:52:53 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id 8C55413C48D for ; Mon, 5 Nov 2007 12:52:53 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 3A1F8A634E for ; Mon, 5 Nov 2007 08:59:41 +0100 (CET) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 553B4A6199 for ; Mon, 5 Nov 2007 08:59:39 +0100 (CET) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Mon, 5 Nov 2007 08:59:39 +0100 (CET) Message-ID: <1784.62.242.232.132.1194249579.squirrel@www.enableit.dk> In-Reply-To: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> Date: Mon, 5 Nov 2007 08:59:39 +0100 (CET) From: "Klavs Klavsen" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: [SOLVED ]Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 12:52:53 -0000 Hi, Just to close this thread - I've confirmed that it was indeed a switch problem. The "funny" thing, is howcome only CARP triggered it. On Thu, October 18, 2007 9:33, Klavs Klavsen said: > Hi guys, > > I have had a FreeBSD 6.2 (-p1 - yes I know :) firewall running for a > while, with pf fw rules. It has worked fine, and was a replacement for a > fbsd 4.x ipfw firewall. > > Now I just replaced the 6.2 pf firewall, with a 6.2 (-p7) and carp > interfaces enabled. It's using the same cables and the same type of > network cards (bge and em). The new one, is a HP dl385 (amd) where the old > one, was a HP dl380 (Intel). > > On the new one, fping (and ping -f) pinging through the firewall, gives me > a packet loss. fping in nagios, reports up to 55% packet loss :( - a ping > -f gives me 1-3%, but bad enough :( > > pinging from the firewall itself, to one of the hosts, that packets are > lost to (when pinging from other networks) does not give any packet loss. > > The old 6.2, had polling enabled - and I've tried to disable polling on > the new, but to no effect. > > Any ideas what else to try? > > -- > Regards, > Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk > PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 > > "Those who do not understand Unix are condemned to reinvent it, poorly." > --Henry Spencer > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 15:06:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C42E816A417 for ; Mon, 5 Nov 2007 15:06:16 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id 7D74A13C4B0 for ; Mon, 5 Nov 2007 15:06:16 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id A1173A64D6 for ; Mon, 5 Nov 2007 16:05:54 +0100 (CET) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id C684082C8 for ; Mon, 5 Nov 2007 16:05:52 +0100 (CET) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Mon, 5 Nov 2007 16:05:52 +0100 (CET) Message-ID: <2522.62.242.232.132.1194275152.squirrel@www.enableit.dk> Date: Mon, 5 Nov 2007 16:05:52 +0100 (CET) From: "Klavs Klavsen" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: Anyone using CARP on vlans? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 15:06:16 -0000 Hi guys, I can see that there's been problems in the past with CARP and vlan support. I would be happy, if you could tell me if you have any experience with running carp on vlan interfaces? I intend to run it on a FreeBSD 6.2 with em interfaces. This works fine for another firewall, but it has no vlans. -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 15:41:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 113A516A41A for ; Mon, 5 Nov 2007 15:41:47 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from loki.netlab.sk (ns1.netlab.sk [84.245.65.2]) by mx1.freebsd.org (Postfix) with ESMTP id 8273A13C4B5 for ; Mon, 5 Nov 2007 15:41:46 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from lex.dino.sk (home.dino.sk [84.245.95.252]) (AUTH: PLAIN milan, TLS: TLSv1/SSLv3,256bits,AES256-SHA) by loki.netlab.sk with esmtp; Mon, 05 Nov 2007 16:36:14 +0100 id 0002E02B.472F386E.00017AB7 From: Milan Obuch To: freebsd-net@freebsd.org Date: Mon, 5 Nov 2007 16:40:27 +0100 User-Agent: KMail/1.9.6 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <1784.62.242.232.132.1194249579.squirrel@www.enableit.dk> In-Reply-To: <1784.62.242.232.132.1194249579.squirrel@www.enableit.dk> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200711051640.29142.freebsd-net@dino.sk> Subject: Re: [SOLVED ]Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 15:41:47 -0000 On Monday 05 November 2007 08:59:39 Klavs Klavsen wrote: > Hi, > > Just to close this thread - I've confirmed that it was indeed a switch > problem. > > The "funny" thing, is howcome only CARP triggered it. > Out of curiosity - could you tell me the model? I have similar trouble, not yet confirmed it is a switch issue, but probably... Maybe there is something common here... Regards, Milan -- No need to mail me directly. Just reply to mailing list, please. From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 15:53:01 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 839C416A496 for ; Mon, 5 Nov 2007 15:53:01 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from vlakno.cz (vlk.vlakno.cz [62.168.28.247]) by mx1.freebsd.org (Postfix) with ESMTP id 3A9A713C481 for ; Mon, 5 Nov 2007 15:53:01 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from localhost (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id 2AE5B669B3A for ; Mon, 5 Nov 2007 16:35:01 +0100 (CET) X-Virus-Scanned: amavisd-new at vlakno.cz Received: from vlakno.cz ([127.0.0.1]) by localhost (vlk.vlakno.cz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5NodVLBz-Vio for ; Mon, 5 Nov 2007 16:35:00 +0100 (CET) Received: from vlk.vlakno.cz (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id 166D3669AE5 for ; Mon, 5 Nov 2007 16:35:00 +0100 (CET) Received: (from rdivacky@localhost) by vlk.vlakno.cz (8.13.8/8.13.8/Submit) id lA5FYxiZ052260 for net@freebsd.org; Mon, 5 Nov 2007 16:34:59 +0100 (CET) (envelope-from rdivacky) Date: Mon, 5 Nov 2007 16:34:59 +0100 From: Roman Divacky To: net@freebsd.org Message-ID: <20071105153459.GA52205@freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i Cc: Subject: [PATCH]: implementation of SIOCGIFINDEX in linuxulator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 15:53:01 -0000 hi I implemented SIOCGIFINDEX in linuxulator and I would like you to review the patch.. the implementation is trivial, just mapping it to the native fbsd call. the patch can be found here: http://www.vlakno.cz/~rdivacky/linux_socket.patch I have a report that it helps some java program. please review it so it can be commited thnx roman p.s. please CC me as I am not subscribed to this mailing list. From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 15:58:25 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 354EC16A41B; Mon, 5 Nov 2007 15:58:25 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (cl-162.ewr-01.us.sixxs.net [IPv6:2001:4830:1200:a1::2]) by mx1.freebsd.org (Postfix) with ESMTP id C4A0113C4BA; Mon, 5 Nov 2007 15:58:24 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (localhost [127.0.0.1]) by lor.one-eyed-alien.net (8.14.1/8.13.8) with ESMTP id lA5FwO0G075938; Mon, 5 Nov 2007 09:58:24 -0600 (CST) (envelope-from brooks@lor.one-eyed-alien.net) Received: (from brooks@localhost) by lor.one-eyed-alien.net (8.14.1/8.13.8/Submit) id lA5FwOPx075937; Mon, 5 Nov 2007 09:58:24 -0600 (CST) (envelope-from brooks) Date: Mon, 5 Nov 2007 09:58:24 -0600 From: Brooks Davis To: Roman Divacky Message-ID: <20071105155823.GB75663@lor.one-eyed-alien.net> References: <20071105153459.GA52205@freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="2B/JsCI69OhZNC5r" Content-Disposition: inline In-Reply-To: <20071105153459.GA52205@freebsd.org> User-Agent: Mutt/1.5.16 (2007-06-09) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (lor.one-eyed-alien.net [127.0.0.1]); Mon, 05 Nov 2007 09:58:24 -0600 (CST) Cc: net@freebsd.org Subject: Re: [PATCH]: implementation of SIOCGIFINDEX in linuxulator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 15:58:25 -0000 --2B/JsCI69OhZNC5r Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Nov 05, 2007 at 04:34:59PM +0100, Roman Divacky wrote: > hi >=20 > I implemented SIOCGIFINDEX in linuxulator and I would like you > to review the patch.. the implementation is trivial, just mapping > it to the native fbsd call. >=20 > the patch can be found here: http://www.vlakno.cz/~rdivacky/linux_socket.= patch >=20 > I have a report that it helps some java program. please review it so > it can be commited Looks fine at a glance. -- Brooks --2B/JsCI69OhZNC5r Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFHLz2fXY6L6fI4GtQRAkCrAJ0YlpqaK49ohtFkAMXK6/GHk0HuAwCgkil0 3al4KEkh1UKOR+WNjoNRAm8= =wohm -----END PGP SIGNATURE----- --2B/JsCI69OhZNC5r-- From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 20:33:37 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DAB0316A41B for ; Mon, 5 Nov 2007 20:33:37 +0000 (UTC) (envelope-from landonf@threerings.net) Received: from smtp.earth.threerings.net (smtp1.earth.threerings.net [64.127.109.108]) by mx1.freebsd.org (Postfix) with ESMTP id B93EF13C4A8 for ; Mon, 5 Nov 2007 20:33:37 +0000 (UTC) (envelope-from landonf@threerings.net) Received: from [192.168.54.11] (timor.sea.earth.threerings.net [192.168.54.11]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: landonf) by smtp.earth.threerings.net (Postfix) with ESMTP id 8594461DB2; Mon, 5 Nov 2007 12:04:13 -0800 (PST) In-Reply-To: <2522.62.242.232.132.1194275152.squirrel@www.enableit.dk> References: <2522.62.242.232.132.1194275152.squirrel@www.enableit.dk> Mime-Version: 1.0 (Apple Message framework v752.3) X-Priority: 3 (Normal) Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Apple-Mail-112--910020677" Message-Id: Content-Transfer-Encoding: 7bit From: Landon Fuller Date: Mon, 5 Nov 2007 12:03:47 -0800 To: Klavs Klavsen X-Pgp-Agent: GPGMail 1.1.2 (Tiger) X-Mailer: Apple Mail (2.752.3) Cc: freebsd-net@freebsd.org Subject: Re: Anyone using CARP on vlans? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 20:33:37 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --Apple-Mail-112--910020677 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed On Nov 5, 2007, at 07:05, Klavs Klavsen wrote: > Hi guys, > > I can see that there's been problems in the past with CARP and vlan > support. > > I would be happy, if you could tell me if you have any experience with > running carp on vlan interfaces? > > I intend to run it on a FreeBSD 6.2 with em interfaces. This works > fine > for another firewall, but it has no vlans. We're using carp entirely on VLANs for all our routing. I recall causing a panic if you destroy vlan interface out from under the carp interface, but this may be fixed now -- I haven't looked into it in any more detail. -landonf --Apple-Mail-112--910020677 content-type: application/pgp-signature; x-mac-type=70674453; name=PGP.sig content-description: This is a digitally signed message part content-disposition: inline; filename=PGP.sig content-transfer-encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (Darwin) iD8DBQFHL3cjlplZCE/15mMRAtFTAJ4iFrJobOM9YyqssNofhn98OrfeuACfUNO0 MdmIzc8idG5F5nSbvelC0kE= =EVr2 -----END PGP SIGNATURE----- --Apple-Mail-112--910020677-- From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 22:02:37 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 43F0C16A419 for ; Mon, 5 Nov 2007 22:02:37 +0000 (UTC) (envelope-from freebsd@chrisbuechler.com) Received: from mail.livebsd.com (mail.livebsd.com [69.64.6.14]) by mx1.freebsd.org (Postfix) with SMTP id D008D13C49D for ; Mon, 5 Nov 2007 22:02:36 +0000 (UTC) (envelope-from freebsd@chrisbuechler.com) Received: (qmail 93380 invoked by uid 89); 5 Nov 2007 21:35:35 -0000 Received: from unknown (HELO ?10.0.30.2?) (208.60.70.178) by 172.29.29.14 with SMTP; 5 Nov 2007 21:35:35 -0000 Message-ID: <472F8CA6.5010502@chrisbuechler.com> Date: Mon, 05 Nov 2007 16:35:34 -0500 From: Chris Buechler User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Klavs Klavsen , freebsd-net@freebsd.org References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <1784.62.242.232.132.1194249579.squirrel@www.enableit.dk> In-Reply-To: <1784.62.242.232.132.1194249579.squirrel@www.enableit.dk> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: [SOLVED ]Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 22:02:37 -0000 Klavs Klavsen wrote: > Hi, > > Just to close this thread - I've confirmed that it was indeed a switch > problem. > > The "funny" thing, is howcome only CARP triggered it. > Because CARP uses multicast, and there are a ton of buggy and/or misconfigured switches out there that break, block, or are otherwise flaky with multicast traffic. Chris From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 22:16:43 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A1E6D16A469; Mon, 5 Nov 2007 22:16:43 +0000 (UTC) (envelope-from mtm@FreeBSD.Org) Received: from terra.mike.lan (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 1AC3213C4BF; Mon, 5 Nov 2007 22:16:41 +0000 (UTC) (envelope-from mtm@FreeBSD.Org) Received: by terra.mike.lan (Postfix, from userid 1000) id 9BA5067DF3; Tue, 6 Nov 2007 01:19:50 +0300 (EAT) From: Mike Makonnen To: Mike Makonnen In-Reply-To: <20070517131713.GE3228@rogue.navcom.lan> References: <20070329182906.GB38703@rogue.navcom.lan> <20070403231423.GA5244 1@lor.one-eyed-alien.net> <20070405154644.GB1844@rogue.navcom.lan> <2007040 5160251.GA68077@lor.one-eyed-alien.net> <20070517131713.GE3228@rogue.navcom.lan> Content-Type: text/plain Content-Transfer-Encoding: 7bit Date: Tue, 06 Nov 2007 01:19:50 +0300 Message-Id: <1194301190.75993.3.camel@terra> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 FreeBSD GNOME Team Port Cc: freebsd-net@freebsd.org, freebsd-rc@freebsd.org Subject: Re: Merging rc.d/network_ipv6 into rc.d/netif X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: mtm@FreeBSD.Org List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 22:16:43 -0000 Hello folks, I'd really like to get this done soon. I've been using it locally and I think it's ready for wider testing. The patch is at: http://people.freebsd.org/~mtm/src-etc.ipv6.diff I'll quickly summarize the changes, but there's a longer explanation attached to the patch. The main goal of this patch is to remove the special-casing of IPv6 configuration in rc.d. As we get closer and closer to transitioning to IPv6, there is no reason that IPv6 configuration should continue to be a special case (with regards to rc.d atleast). So, this is an attempt to normalize IPv4 and IPv6 network interface configuration and combine them both in rc.d/netif. Read on for a short summary of the user-visible changes: The following knobs no longer exist: network_interfaces ipv6_network_interfaces They have been replaced by the NOIPV4 and NOIPV6 keywords, respectively. Use of these knobs will trigger a warning. The following knobs have changed meaning: ifconfig_ ifconfig_DEFAULT You should no longer put IP related ifconfig(8) commands here. Instead they go in the respective ipvX_ prefixed knobs. Using these knobs for passing IP related configuration to ifconfig(8) will trigger a warning. To pass IP related configuration use instead: ipv4_ifconfig_ ipv6_ifconfig_ ipv4_ifconfig_DEFAULT ipv6_ifconfig_DEFAULT New knobs: ipv4_enable - Same deal as ipv6_enable except it works with IPv4 ipv4_synchronous_dhclient - see explanation in patch ipv6_synchronous_dhclient - see explanation in patch Most IP related knobs will have an ipv4_ and ipv6_ version. To make the transition easier rc.subr(8) will "automagically" DTRT for the following knobs: gateway_enable => ipv4_gateway_enable router_enable => ipv4_router_enable router => ipv4_router router_flags => ipv4_router_flags defaultrouter => ipv4_defaultrouter static_routes => ipv4_static_routes static_routes_ => ipv4_static_routes_ route_ => ipv4_route_ dhclient_program => ipv4_dhclient_program dhclient_flags => ipv4_dhclient_flags dhclient_flags_ => ipv4_dhclient_flags_ background_dhclient_ => ipv4_background_dhclient_ Please try it and let me know what you think. Cheers. -- Mike Makonnen | GPG-KEY: http://people.freebsd.org/~mtm/mtm.asc mmakonnen @ gmail.com | AC7B 5672 2D11 F4D0 EBF8 5279 5359 2B82 7CD4 1F55 mtm @ FreeBSD.Org | FreeBSD - http://www.freebsd.org From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 22:37:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3637C16A417 for ; Mon, 5 Nov 2007 22:37:54 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from snipe.secure-computing.net (snipe.secure-computing.net [209.240.66.149]) by mx1.freebsd.org (Postfix) with ESMTP id EEDA513C480 for ; Mon, 5 Nov 2007 22:37:53 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from [192.168.1.198] (unknown [209.240.66.157]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: ecrist@secure-computing.net) by snipe.secure-computing.net (Postfix) with ESMTP id E9FEB17043 for ; Mon, 5 Nov 2007 16:22:26 -0600 (CST) Message-Id: From: Eric F Crist To: freebsd-net@freebsd.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v912) Date: Mon, 5 Nov 2007 16:22:25 -0600 X-Mailer: Apple Mail (2.912) Subject: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 22:37:54 -0000 I've been working on doing some bandwidth accounting with ipfw count rules, but I've come across a very crappy problem. After adding the following two lines to /etc/rc.conf, I'm posed with a question during boot: Loading divert daemons are you sure [yn]: And there it sits, forever, waiting for an answer. I've tried adding natd_enable="NO", natd_enable="YES", removing natd_enable entirely from my rc.conf file, and having IPDIVERT compiled into the kernel, and not. No matter what I do, I cannot get rid of this damn question! Thanks for the speedy replies! ----- Eric F Crist Secure Computing Networks From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 23:10:19 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D2C6916A417 for ; Mon, 5 Nov 2007 23:10:19 +0000 (UTC) (envelope-from fbsdlists@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.189]) by mx1.freebsd.org (Postfix) with ESMTP id 9DEDA13C49D for ; Mon, 5 Nov 2007 23:10:19 +0000 (UTC) (envelope-from fbsdlists@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so1464985rvb for ; Mon, 05 Nov 2007 15:10:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=grmBgyE9EbX+RMWQKtCHMj00MN1CSF8jlbiNH3qlCts=; b=JufZaXL3LQy57IRS3l2W5ahgXJ/X463FKv9da4QyuEbhg+KIHFj41XcJN0I25j69EtuHPU8YPQzghxpYpsieRJ8wjzBVIbFqCEvr6YeJCGIbqGErX6OR9hc7Fa1beJ9yQNKtJy+P556LPgkBJQXnMCj65+Qj0EGmZQdKXnPywlM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=twU9/YuX6jpi1tROc+5qJULEh4PVdDqkrcU+GfXGhnZIrkNuw0BKwgbJHxTsbh9FvXIvNltPUcGq+TcQknvIsdKnozYhWv5Q2pgFL2kDKG9ggyfUw0rWRNou7DmhcRI9VwCP6qEc1OrKX7y99unoFOgcGetkpB+mxjstWcw5tPU= Received: by 10.141.15.19 with SMTP id s19mr2687459rvi.1194302770412; Mon, 05 Nov 2007 14:46:10 -0800 (PST) Received: by 10.141.142.18 with HTTP; Mon, 5 Nov 2007 14:46:10 -0800 (PST) Message-ID: <54db43990711051446y6399b822p6ba9dbb86b65771b@mail.gmail.com> Date: Mon, 5 Nov 2007 17:46:10 -0500 From: "Bob Johnson" To: mtm@freebsd.org In-Reply-To: <1194301190.75993.3.camel@terra> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20070329182906.GB38703@rogue.navcom.lan> <20070405154644.GB1844@rogue.navcom.lan> <20070517131713.GE3228@rogue.navcom.lan> <1194301190.75993.3.camel@terra> Cc: freebsd-net@freebsd.org, freebsd-rc@freebsd.org Subject: Re: Merging rc.d/network_ipv6 into rc.d/netif X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 23:10:19 -0000 On 11/5/07, Mike Makonnen wrote: > Most IP related knobs will have an ipv4_ and ipv6_ version. To make the > transition easier rc.subr(8) will "automagically" DTRT for the following > knobs: > gateway_enable => ipv4_gateway_enable > router_enable => ipv4_router_enable > router => ipv4_router > router_flags => ipv4_router_flags > defaultrouter => ipv4_defaultrouter > static_routes => ipv4_static_routes > static_routes_ => ipv4_static_routes_ > route_ => ipv4_route_ > dhclient_program => ipv4_dhclient_program > dhclient_flags => ipv4_dhclient_flags > dhclient_flags_ => ipv4_dhclient_flags_ > background_dhclient_ => ipv4_background_dhclient_ > > Please try it and let me know what you think. Personally, I'd prefer the new names be along the lines of ifconfig__ipv4, ifconfig__ipv6, defaultrouter_ipv4, defaultrouter_ipv6, dhclient_program_ipv4, dhclient_program_ipv6, etc. The alphabetical ordering of my rc.conf file will remain more sensible, at least to my mind. All the dhclient knobs would still be grouped together, etc. But separating rc.conf into an ipv4 section and an ipv6 section (which your names would do) is entirely reasonable, so I don't feel strongly about it. And your names would segregate network configuration knobs from all the other things found in rc.conf, which some might view as an advantage. And this would be a good time to change defaultrouter to default_router! - Bob From owner-freebsd-net@FreeBSD.ORG Mon Nov 5 23:13:42 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25FBD16A41A for ; Mon, 5 Nov 2007 23:13:42 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout7.cac.washington.edu (mxout7.cac.washington.edu [140.142.32.178]) by mx1.freebsd.org (Postfix) with ESMTP id E8A4313C4B9 for ; Mon, 5 Nov 2007 23:13:41 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout7.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA5NDV4Y005580 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Mon, 5 Nov 2007 15:13:31 -0800 X-Auth-Received: from [127.0.0.1] (node224.245.100.208.1dial.com [208.100.245.224] (may be forged)) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA5ND8wA012871 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Mon, 5 Nov 2007 15:13:29 -0800 Message-ID: <472FA362.6040608@u.washington.edu> Date: Mon, 05 Nov 2007 15:12:34 -0800 From: Garrett Cooper User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: net@freebsd.org References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> <47202922.3070700@u.washington.edu> <47209570.20609@tomjudge.com> <4723330A.7070803@u.washington.edu> <4728B256.5080005@u.washington.edu> <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> In-Reply-To: <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.11.5.145625 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='ECARD_WORD 0, __CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __FRAUD_419_CONTACT_ADDY_B 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Cc: Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Nov 2007 23:13:42 -0000 Garrett Cooper wrote: > On Oct 31, 2007, at 9:50 AM, Garrett Cooper wrote: >> I'm running tcpdump on my Mac and I noted a lot of 'bad checksums' >> (0x081c was the official error in all cases), then consulted the msk >> driver. It appears that there's a bug with Yukon II chipsets with the >> hardware checksumming and I wonder whether or not the chipset that I >> have is affected by this issue as well. >> I'll provide my chipset/model info in my next reply (can't access it >> from this PC). >> -Garrett > > Got a wee bit busy there. > > Anyhow, here's the chipset info (snippet) reported from dmesg: > > [gcooper@shiina: ~]$ ssh -C optimus "dmesg | grep msk" > Password: > mskc0: port 0xd800-0xd8ff mem > 0xfe9fc000-0xfe9fffff irq 17 at device 0.0 on pci2 > msk0: > on mskc0 > msk0: Ethernet address: 00:1b:fc:45:9b:5c > miibus0: on msk0 > > -Garrett The issue indeed is with the msk(4) driver in FreeBSD. I just plugged in an em(4) compatible card, powered it up and now my server works like a champ with the XP machine. As a reference the MB's affected by this are mostly the ASUS MB's, i.e. P5B and P5K series ones. MSI MB's may be affected by this issue as well because I think they come with msk(4) compatible chipsets onboard.. -Garrett From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 05:34:40 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F344616A419 for ; Tue, 6 Nov 2007 05:34:39 +0000 (UTC) (envelope-from juri_mian@yahoo.com) Received: from n10.bullet.re3.yahoo.com (n10.bullet.re3.yahoo.com [68.142.237.123]) by mx1.freebsd.org (Postfix) with SMTP id 7B4C113C4A7 for ; Tue, 6 Nov 2007 05:34:39 +0000 (UTC) (envelope-from juri_mian@yahoo.com) Received: from [68.142.237.89] by n10.bullet.re3.yahoo.com with NNFMP; 06 Nov 2007 05:21:23 -0000 Received: from [69.147.75.181] by t5.bullet.re3.yahoo.com with NNFMP; 06 Nov 2007 05:21:23 -0000 Received: from [127.0.0.1] by omp102.mail.re1.yahoo.com with NNFMP; 06 Nov 2007 05:21:23 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 725492.44276.bm@omp102.mail.re1.yahoo.com Received: (qmail 64527 invoked by uid 60001); 6 Nov 2007 05:21:23 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=Zub8nr7uPo7Z7YefG/WrAka3xUuKCSAop4NiOZqA8yIDmnskg3aEPrm2HGzT9yFSscex9QeEXcfq5BLF6Wp7InGj8mt5+E/o37hzUq6bt2rdJ7zGS1NeaDEIHOw3Aynpr1wE5b2JelEtEuCYJIhcGvo43obVuSdx3YzoKRSzCos=; X-YMail-OSG: X8dIJWkVM1mhMF9m0r8mklXduHJ8eBtSaxd.DulmPs6d5pCYbr8CaIU5H_PX2uTqHKf1i3Fhpn4s3mwxBUy4h2EyGg-- Received: from [71.63.232.32] by web45604.mail.sp1.yahoo.com via HTTP; Mon, 05 Nov 2007 21:21:22 PST Date: Mon, 5 Nov 2007 21:21:22 -0800 (PST) From: Juri Mianovich To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Message-ID: <946459.64121.qm@web45604.mail.sp1.yahoo.com> Subject: where did the peak mbuf stat go ? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 05:34:40 -0000 FreeBSD 4.x, netstat -m: 70/4336/26624 mbufs in use (current/peak/max) Never any doubt - if peak=max, I hit the limit. Super useful. Furthermore, by watching the peak I can see when I am getting close, rather than waiting for denied requests to pile up after the fact. FreeBSD 6.x, netstat -m: 524/826/1350 mbufs in use (current/cache/total) So ... how do I see peak mbufs in FreeBSD 6.x ? Thanks. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 06:46:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 056DF16A417 for ; Tue, 6 Nov 2007 06:46:30 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from smtp2.yandex.ru (smtp2.yandex.ru [213.180.200.18]) by mx1.freebsd.org (Postfix) with ESMTP id 25A1B13C4A3 for ; Tue, 6 Nov 2007 06:46:28 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from ns.kirov.so-cdu.ru ([77.72.136.145]:38868 "EHLO [127.0.0.1]" smtp-auth: "bu7cher" TLS-CIPHER: "DHE-RSA-AES256-SHA keybits 256/256 version TLSv1/SSLv3" TLS-PEER-CN1: ) by mail.yandex.ru with ESMTP id S4395548AbXKFG3R (ORCPT ); Tue, 6 Nov 2007 09:29:17 +0300 X-Comment: RFC 2476 MSA function at smtp2.yandex.ru logged sender identity as: bu7cher Message-ID: <473009B2.40406@yandex.ru> Date: Tue, 06 Nov 2007 09:29:06 +0300 From: "Andrey V. Elsukov" User-Agent: Mozilla Thunderbird 1.5 (FreeBSD/20051231) MIME-Version: 1.0 To: Eric F Crist References: In-Reply-To: Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 06:46:30 -0000 Eric F Crist wrote: > I've been working on doing some bandwidth accounting with ipfw count > rules, but I've come across a very crappy problem. After adding the > following two lines to /etc/rc.conf, I'm posed with a question during boot: > Loading divert daemons are you sure [yn]: About which lines you talk? -- WBR, Andrey V. Elsukov From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 08:50:05 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 24BB016A417 for ; Tue, 6 Nov 2007 08:50:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id E661813C4B0 for ; Tue, 6 Nov 2007 08:50:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id lA68o4Ps005840 for ; Tue, 6 Nov 2007 08:50:04 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id lA68o4f5005839; Tue, 6 Nov 2007 08:50:04 GMT (envelope-from gnats) Date: Tue, 6 Nov 2007 08:50:04 GMT Message-Id: <200711060850.lA68o4f5005839@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: Norbert Papke Cc: Subject: Re: kern/116077: 6.2-STABLE panic during use of multi-cast networking client X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Norbert Papke List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 08:50:05 -0000 The following reply was made to PR kern/116077; it has been noted by GNATS. From: Norbert Papke To: bug-followup@freebsd.org, rse@freebsd.org Cc: jrytoung@gmail.com Subject: Re: kern/116077: 6.2-STABLE panic during use of multi-cast networking client Date: Mon, 05 Nov 2007 23:45:31 -0800 The patch provided by Jerry Toung works for me on 6.3-PRERELEASE. Thanks! From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 09:36:11 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E84D216A417; Tue, 6 Nov 2007 09:36:11 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: from blah.sun-fish.com (blah.sun-fish.com [217.18.249.150]) by mx1.freebsd.org (Postfix) with ESMTP id 94A7F13C4AA; Tue, 6 Nov 2007 09:36:11 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: by blah.sun-fish.com (Postfix, from userid 1002) id 7A02A1B10EEC; Tue, 6 Nov 2007 10:35:55 +0100 (CET) X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on blah.cmotd.com X-Spam-Level: X-Spam-Status: No, score=-4.4 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.2.3 Received: from hater.haters.org (hater.cmotd.com [192.168.3.125]) by blah.sun-fish.com (Postfix) with ESMTP id BB3A91B10EEB; Tue, 6 Nov 2007 10:35:52 +0100 (CET) Message-ID: <47303578.8060703@moneybookers.com> Date: Tue, 06 Nov 2007 11:35:52 +0200 From: Stefan Lambrev User-Agent: Thunderbird 2.0.0.6 (X11/20071105) MIME-Version: 1.0 To: freebsd-net@freebsd.org References: <472B1E89.5080006@moneybookers.com> In-Reply-To: <472B1E89.5080006@moneybookers.com> Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV 0.91.2/4680/Tue Nov 6 05:49:40 2007 on blah.cmotd.com X-Virus-Status: Clean Cc: freebsd-current@freebsd.org Subject: Re: rtfree: 0xc741ee88 has 1 refs X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 09:36:12 -0000 Hi, Sorry to reply to myself, but I found that the problem exist only if the GW is carp interface, e.g. 10.1.1.1 sits on carp0 on default GW. I'm still testing how to reproduce this in my test lab and will fill a PR. Stefan Lambrev wrote: > Hi, > > I see rtfree: 0xc741ee88 has 1 refs with freebsd releng_7 (i386) from > today. > > I think it's easy reproducible. What I have is: > > releng_7 (10.1.1.2) -> default GW (10.1.1.1) > on default GW I have route to 10.10.1.1/24 -> 10.1.1.3 > > so everytime when 10.1.1.2 try to contact someone from 10.10.1.1/24 I > see: > rtfree: 0xc741ee88 has 1 refs > > if I add direct route on 10.1.1.2 to 10.10.1.1/24 through 10.1.1.3 the > message will go away. > > Should I ignore this msg for now, or should I expect kernel panic > soon? :) > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" -- Best Wishes, Stefan Lambrev ICQ# 24134177 From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 12:04:23 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 315C816A417 for ; Tue, 6 Nov 2007 12:04:23 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: from blah.sun-fish.com (blah.sun-fish.com [217.18.249.150]) by mx1.freebsd.org (Postfix) with ESMTP id D6FAF13C4AC for ; Tue, 6 Nov 2007 12:04:22 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: by blah.sun-fish.com (Postfix, from userid 1002) id 703DB1B10EEB; Tue, 6 Nov 2007 13:04:12 +0100 (CET) X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on blah.cmotd.com X-Spam-Level: X-Spam-Status: No, score=-3.8 required=5.0 tests=ALL_TRUSTED,BAYES_00, J_CHICKENPOX_61 autolearn=no version=3.2.3 Received: from hater.haters.org (hater.cmotd.com [192.168.3.125]) by blah.sun-fish.com (Postfix) with ESMTP id 6F8061B10EE7 for ; Tue, 6 Nov 2007 13:04:09 +0100 (CET) Message-ID: <47305839.3060705@moneybookers.com> Date: Tue, 06 Nov 2007 14:04:09 +0200 From: Stefan Lambrev User-Agent: Thunderbird 2.0.0.6 (X11/20071105) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV 0.91.2/4680/Tue Nov 6 05:49:40 2007 on blah.cmotd.com X-Virus-Status: Clean Subject: icmp type 5 redirect X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 12:04:23 -0000 Hi, When FreeBSD 6 act as a gatewa,y by default sends icmp type 5 redirect when needed, but releng_7 does not. Any ideas how to enable this on RELENG_7? net.inet.icmp.maskrepl: 0 net.inet.icmp.icmplim: 200 net.inet.icmp.bmcastecho: 0 net.inet.icmp.quotelen: 8 net.inet.icmp.reply_from_interface: 0 net.inet.icmp.reply_src: net.inet.icmp.icmplim_output: 1 net.inet.icmp.log_redirect: 0 net.inet.icmp.drop_redirect: 0 net.inet.icmp.maskfake: 0 -- Best Wishes, Stefan Lambrev ICQ# 24134177 From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 13:32:25 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C602016A418 for ; Tue, 6 Nov 2007 13:32:25 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from smtp4.yandex.ru (smtp4.yandex.ru [213.180.223.136]) by mx1.freebsd.org (Postfix) with ESMTP id C1B1413C4A3 for ; Tue, 6 Nov 2007 13:32:24 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from ns.kirov.so-cdu.ru ([77.72.136.145]:64964 "EHLO [127.0.0.1]" smtp-auth: "bu7cher" TLS-CIPHER: "DHE-RSA-AES256-SHA keybits 256/256 version TLSv1/SSLv3" TLS-PEER-CN1: ) by mail.yandex.ru with ESMTP id S738156AbXKFNcD (ORCPT + 1 other); Tue, 6 Nov 2007 16:32:03 +0300 X-Comment: RFC 2476 MSA function at smtp4.yandex.ru logged sender identity as: bu7cher Message-ID: <47306CD0.7030301@yandex.ru> Date: Tue, 06 Nov 2007 16:32:00 +0300 From: "Andrey V. Elsukov" User-Agent: Mozilla Thunderbird 1.5 (FreeBSD/20051231) MIME-Version: 1.0 To: Eric F Crist References: <473009B2.40406@yandex.ru> <4C884976-8734-4112-8520-2E30893C0BE3@secure-computing.net> In-Reply-To: <4C884976-8734-4112-8520-2E30893C0BE3@secure-computing.net> Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, User Questions Subject: Re: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 13:32:25 -0000 Eric F Crist wrote: > firewall_enable="YES" > firewall_script="/etc/ipfw.sh" > > FWIW, ipfw.sh ONLY has count rules it it. There isn't any NAT/etc going > on here. Also, IPFW was compiled with DEFAULT TO ACCEPT, since I'm not > really using it for anything other than accounting. In the your /etc/ipfw.sh script you should use "-f" flag when you run ipfw flush command. -- WBR, Andrey V. Elsukov From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 14:15:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B07CD16A41A; Tue, 6 Nov 2007 14:15:16 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from snipe.secure-computing.net (snipe.secure-computing.net [209.240.66.149]) by mx1.freebsd.org (Postfix) with ESMTP id 8C07013C4B8; Tue, 6 Nov 2007 14:15:15 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from swordfish.local.claimlynx.com (unknown [74.95.66.25]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: ecrist@secure-computing.net) by snipe.secure-computing.net (Postfix) with ESMTP id EDB9617043; Tue, 6 Nov 2007 08:15:01 -0600 (CST) Message-Id: <0F869E5F-EF2C-468A-BF14-960E59159F32@secure-computing.net> From: Eric F Crist To: Andrey V. Elsukov In-Reply-To: <47306CD0.7030301@yandex.ru> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v912) Date: Tue, 6 Nov 2007 08:15:00 -0600 References: <473009B2.40406@yandex.ru> <4C884976-8734-4112-8520-2E30893C0BE3@secure-computing.net> <47306CD0.7030301@yandex.ru> X-Mailer: Apple Mail (2.912) Cc: freebsd-net@freebsd.org, User Questions Subject: Re: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 14:15:16 -0000 On Nov 6, 2007, at 7:32 AM, Andrey V. Elsukov wrote: > Eric F Crist wrote: >> firewall_enable="YES" >> firewall_script="/etc/ipfw.sh" >> FWIW, ipfw.sh ONLY has count rules it it. There isn't any NAT/etc >> going on here. Also, IPFW was compiled with DEFAULT TO ACCEPT, >> since I'm not really using it for anything other than accounting. > > In the your /etc/ipfw.sh script you should use "-f" flag when you run > ipfw flush command. I am, but that has nothing to do with my problem. My problem is that, during system boot, I'm asked the following question: Loading divert daemons Are you sure? [yn]: The system sits there indefinitely until the question is answered. I need this to go away. ----- Eric F Crist Secure Computing Networks From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 14:38:28 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D2EAC16A419 for ; Tue, 6 Nov 2007 14:38:28 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from crow.padonki.org.ua (crow.padonki.org.ua [213.186.192.71]) by mx1.freebsd.org (Postfix) with ESMTP id 8300D13C4A5 for ; Tue, 6 Nov 2007 14:38:28 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from minotaur by crow.padonki.org.ua with local (Exim 4.66 (FreeBSD)) (envelope-from ) id 1IpPZL-000IsN-9P; Tue, 06 Nov 2007 16:38:19 +0200 Date: Tue, 6 Nov 2007 16:38:19 +0200 From: Alexander Shikoff To: freebsd-net@freebsd.org Message-ID: <20071106143819.GA22249@crete.org.ua> References: <20071106141913.GA93023@crete.org.ua> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-u Content-Disposition: inline In-Reply-To: <20071106141913.GA93023@crete.org.ua> User-Agent: Mutt/1.5.16 (2007-06-09) Sender: Alexander Shikoff Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Alexander Shikoff List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 14:38:28 -0000 On Tue, Nov 06, 2007 at 04:19:14PM +0200, Alexander Shikoff wrote: > Hello, > > I have box with 7.0-BETA2 installed (csup-ed and built today). > There is a problem with on-board Gigabit Realtek card: > > re0: port 0xc000-0xc0ff mem 0xf2000000-0xf2000fff irq 17 at device 0.3 > re0: Using 2 MSI messages > miibus0: on re0 > re0: Ethernet address: 00:1a:4d:52:4e:b1 > re0: [FILTER] > re0: [FILTER] > > It is connected to another FreeBSD 6.2 box with cross-over UTP-cable. > At the other side there is 'active' status. But re0 at my side > shows always 'no carrier'. I tried to change UTP-patch-cord but > without success. > > # pciconf -lv > [...] > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > vendor = 'Realtek Semiconductor' > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > class = network > subclass = ethernet > [...] Further investigation... It seems that re(4) driver does not support auto-negotiation correctly. If I manually set media to 100baseTX and bring up interface with 'ifconfig re0 up' then it works. -- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49 From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 14:53:37 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F32F416A41A for ; Tue, 6 Nov 2007 14:53:36 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from crow.padonki.org.ua (crow.padonki.org.ua [213.186.192.71]) by mx1.freebsd.org (Postfix) with ESMTP id A382D13C4BB for ; Tue, 6 Nov 2007 14:53:36 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from minotaur by crow.padonki.org.ua with local (Exim 4.66 (FreeBSD)) (envelope-from ) id 1IpPGs-000OOh-1N; Tue, 06 Nov 2007 16:19:14 +0200 Date: Tue, 6 Nov 2007 16:19:14 +0200 From: Alexander Shikoff To: freebsd-net@freebsd.org Message-ID: <20071106141913.GA93023@crete.org.ua> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-u Content-Disposition: inline User-Agent: Mutt/1.5.16 (2007-06-09) Sender: Alexander Shikoff Subject: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Alexander Shikoff List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 14:53:37 -0000 Hello, I have box with 7.0-BETA2 installed (csup-ed and built today). There is a problem with on-board Gigabit Realtek card: re0: port 0xc000-0xc0ff mem 0xf2000000-0xf2000fff irq 17 at device 0.3 re0: Using 2 MSI messages miibus0: on re0 re0: Ethernet address: 00:1a:4d:52:4e:b1 re0: [FILTER] re0: [FILTER] It is connected to another FreeBSD 6.2 box with cross-over UTP-cable. At the other side there is 'active' status. But re0 at my side shows always 'no carrier'. I tried to change UTP-patch-cord but without success. # pciconf -lv [...] re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 vendor = 'Realtek Semiconductor' device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' class = network subclass = ethernet [...] What's wrong with it? Thanks a lot! -- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49 From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 15:39:27 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1924016A421; Tue, 6 Nov 2007 15:39:27 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from webmail41.mail.yandex.net (webmail41.mail.yandex.net [77.88.32.53]) by mx1.freebsd.org (Postfix) with ESMTP id 88B7013C48E; Tue, 6 Nov 2007 15:39:26 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from YAMAIL (webmail41) by mail.yandex.ru id S8143900AbXKFP24 for (+ 1 other); Tue, 6 Nov 2007 18:28:56 +0300 X-Yandex-Spam: 1 Received: from [81.18.141.33] ([81.18.141.33]) by mail.yandex.ru with HTTP; Tue, 06 Nov 2007 18:28:55 +0300 From: "Andrey V. Elsukov" To: ecrist@secure-computing.net In-Reply-To: 1550000000237526643 References: <473009B2.40406@yandex.ru> <4C884976-8734-4112-8520-2E30893C0BE3@secure-computing.net> <47306CD0.7030301@yandex.ru> 1550000000237526643 MIME-Version: 1.0 Message-Id: <17411194362935@webmail41.yandex.ru> Date: Tue, 06 Nov 2007 18:28:55 +0300 X-Mailer: Yamail [ http://yandex.ru ] 5.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain Cc: freebsd-net@freebsd.org, freebsd-questions@freebsd.org Subject: Re: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 15:39:27 -0000 Eric F Crist wrote: > > In the your /etc/ipfw.sh script you should use "-f" flag when you run > > ipfw flush command. > I am, but that has nothing to do with my problem. My problem is that, > during system boot, I'm asked the following question: > Loading divert daemons Are you sure? [yn]: > The system sits there indefinitely until the question is answered. I > need this to go away. Are you sure? Please, show your script. I think these is two different messages: 1) Loading divert daemons - probably from some of your third party software start script. 2) Are you sure? [yn] - message from ipfw, when you run `ipfw flush` in the /etc/ipfw.sh script. -- WBR, Andrey V. Elsukov From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 15:43:27 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BF88816A417; Tue, 6 Nov 2007 15:43:27 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from snipe.secure-computing.net (snipe.secure-computing.net [209.240.66.149]) by mx1.freebsd.org (Postfix) with ESMTP id 7E7C613C4B2; Tue, 6 Nov 2007 15:43:27 +0000 (UTC) (envelope-from ecrist@secure-computing.net) Received: from swordfish.local.claimlynx.com (unknown [74.95.66.25]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: ecrist@secure-computing.net) by snipe.secure-computing.net (Postfix) with ESMTP id B213117043; Tue, 6 Nov 2007 09:43:12 -0600 (CST) Message-Id: <405A9249-3680-48D9-9154-3149FCAB4367@secure-computing.net> From: Eric F Crist To: Andrey V. Elsukov In-Reply-To: <17411194362935@webmail41.yandex.ru> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v912) Date: Tue, 6 Nov 2007 09:43:10 -0600 References: <473009B2.40406@yandex.ru> <4C884976-8734-4112-8520-2E30893C0BE3@secure-computing.net> <47306CD0.7030301@yandex.ru> 1550000000237526643 <17411194362935@webmail41.yandex.ru> X-Mailer: Apple Mail (2.912) Cc: freebsd-net@freebsd.org, freebsd-questions@freebsd.org Subject: Re: IPFW/Divert problem... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 15:43:27 -0000 On Nov 6, 2007, at 9:28 AM, Andrey V. Elsukov wrote: > Eric F Crist wrote: >>> In the your /etc/ipfw.sh script you should use "-f" flag when you >>> run >>> ipfw flush command. >> I am, but that has nothing to do with my problem. My problem is >> that, >> during system boot, I'm asked the following question: >> Loading divert daemons Are you sure? [yn]: >> The system sits there indefinitely until the question is answered. I >> need this to go away. > > Are you sure? Please, show your script. I think these is two different > messages: > 1) Loading divert daemons - probably from some of your third party > software > start script. > 2) Are you sure? [yn] - message from ipfw, when you run `ipfw flush` > in the > /etc/ipfw.sh script. So, I looked, and you were right, it was two different messages. I had "ipfw flush -f" rather than "ipfw -f flush". Thank you, thank you, thank you! ----- Eric F Crist Secure Computing Networks From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 16:19:48 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7844C16A469 for ; Tue, 6 Nov 2007 16:19:48 +0000 (UTC) (envelope-from randy@psg.com) Received: from rip.psg.com (rip.psg.com [147.28.0.39]) by mx1.freebsd.org (Postfix) with ESMTP id 5190113C4A8 for ; Tue, 6 Nov 2007 16:19:48 +0000 (UTC) (envelope-from randy@psg.com) Received: from ip192.186.dsl-acs2.seawa0.iinet.com ([209.20.186.192] helo=[192.168.0.103]) by rip.psg.com with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.67 (FreeBSD)) (envelope-from ) id 1IpQyn-0001iT-7h for freebsd-net@freebsd.org; Tue, 06 Nov 2007 16:08:41 +0000 Message-ID: <47309183.3030003@psg.com> Date: Tue, 06 Nov 2007 08:08:35 -0800 From: Randy Bush User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: FreeBSD Net X-Enigmail-Version: 0.95.4 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit Subject: rh0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 16:19:48 -0000 it is alleged that rh0 is processed in 6.2 (< http://www.6journal.org/archive/00000284/01/IPv6_RH_security-csw07.pdf>). is this true. is rh0 processed in 7 and -current? randy From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 16:25:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DA89F16A473 for ; Tue, 6 Nov 2007 16:25:54 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (cl-162.ewr-01.us.sixxs.net [IPv6:2001:4830:1200:a1::2]) by mx1.freebsd.org (Postfix) with ESMTP id 76DDE13C4A7 for ; Tue, 6 Nov 2007 16:25:54 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (localhost [127.0.0.1]) by lor.one-eyed-alien.net (8.14.1/8.13.8) with ESMTP id lA6GPrUr089244; Tue, 6 Nov 2007 10:25:53 -0600 (CST) (envelope-from brooks@lor.one-eyed-alien.net) Received: (from brooks@localhost) by lor.one-eyed-alien.net (8.14.1/8.13.8/Submit) id lA6GPrvH089243; Tue, 6 Nov 2007 10:25:53 -0600 (CST) (envelope-from brooks) Date: Tue, 6 Nov 2007 10:25:53 -0600 From: Brooks Davis To: Randy Bush Message-ID: <20071106162553.GE88328@lor.one-eyed-alien.net> References: <47309183.3030003@psg.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="7LkOrbQMr4cezO2T" Content-Disposition: inline In-Reply-To: <47309183.3030003@psg.com> User-Agent: Mutt/1.5.16 (2007-06-09) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (lor.one-eyed-alien.net [127.0.0.1]); Tue, 06 Nov 2007 10:25:53 -0600 (CST) Cc: FreeBSD Net Subject: Re: rh0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 16:25:54 -0000 --7LkOrbQMr4cezO2T Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Tue, Nov 06, 2007 at 08:08:35AM -0800, Randy Bush wrote: > it is alleged that rh0 is processed in 6.2 (< > http://www.6journal.org/archive/00000284/01/IPv6_RH_security-csw07.pdf>). > is this true. is rh0 processed in 7 and -current? 6.2-RELEASE with no patches does process rh0 like basicly every other IPv6 capable system released when it was. If you run 6.2-RELEASE with patches it does not unless the sysctl net.inet6.ip6.rthdr0_allowed is enabled. I believe the functionality was removed in from HEAD and thus was never in RELENG_7. http://security.freebsd.org/advisories/FreeBSD-SA-07:03.ipv6.asc -- Brooks --7LkOrbQMr4cezO2T Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFHMJWRXY6L6fI4GtQRAvUHAKDVqTZiPXvpMytkC0iUFKXakg9QPQCfbb9f zHXeyoii5DKr8aZwsA1ttW4= =HAvX -----END PGP SIGNATURE----- --7LkOrbQMr4cezO2T-- From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 16:26:38 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A983516A476 for ; Tue, 6 Nov 2007 16:26:38 +0000 (UTC) (envelope-from jhary@unsane.co.uk) Received: from unsane.co.uk (unsane-pt.tunnel.tserv2.fmt.ipv6.he.net [IPv6:2001:470:1f03:1f1::2]) by mx1.freebsd.org (Postfix) with ESMTP id 1C52D13C4E5 for ; Tue, 6 Nov 2007 16:26:37 +0000 (UTC) (envelope-from jhary@unsane.co.uk) Received: from prawn.unsane.co.uk (150.117-84-212.staticip.namesco.net [212.84.117.150]) (authenticated bits=0) by unsane.co.uk (8.14.0/8.14.0) with ESMTP id lA6GQaeG077391 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 6 Nov 2007 16:26:37 GMT (envelope-from jhary@unsane.co.uk) Message-ID: <473095B4.7070808@unsane.co.uk> Date: Tue, 06 Nov 2007 16:26:28 +0000 From: Vince User-Agent: Thunderbird 2.0.0.6 (X11/20071101) MIME-Version: 1.0 To: Randy Bush References: <47309183.3030003@psg.com> In-Reply-To: <47309183.3030003@psg.com> X-Enigmail-Version: 0.95.2 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: rh0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 16:26:38 -0000 Randy Bush wrote: > it is alleged that rh0 is processed in 6.2 (< > http://www.6journal.org/archive/00000284/01/IPv6_RH_security-csw07.pdf>). > is this true. is rh0 processed in 7 and -current? > http://security.freebsd.org/advisories/FreeBSD-SA-07:03.ipv6.asc was release since 6.2 so a stock 6.2 will but updating using freebsd-update will patch it, 7 and -CURRENT wont. >From the Advisory: Support for IPv6 type 0 routing headers can be re-enabled if required by setting the newly added net.inet6.ip6.rthdr0_allowed sysctl to a non-zero value. Vince > randy > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 16:26:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A71216A469 for ; Tue, 6 Nov 2007 16:26:47 +0000 (UTC) (envelope-from yuri.pankov@gmail.com) Received: from darklight.org.ru (unknown [IPv6:2001:470:1f06:84::2]) by mx1.freebsd.org (Postfix) with ESMTP id DC3AA13C494 for ; Tue, 6 Nov 2007 16:26:45 +0000 (UTC) (envelope-from yuri.pankov@gmail.com) Received: from darklight.org.ru (yuri@darklight.org.ru [IPv6:::1]) by darklight.org.ru (8.14.2/8.14.2) with ESMTP id lA6GPN70085908; Tue, 6 Nov 2007 19:25:24 +0300 (MSK) (envelope-from yuri.pankov@gmail.com) Received: (from yuri@localhost) by darklight.org.ru (8.14.2/8.14.2/Submit) id lA6GPMgw085907; Tue, 6 Nov 2007 19:25:22 +0300 (MSK) (envelope-from yuri.pankov@gmail.com) X-Authentication-Warning: darklight.org.ru: yuri set sender to yuri.pankov@gmail.com using -f From: Yuri Pankov To: Stefan Lambrev In-Reply-To: <47305839.3060705@moneybookers.com> References: <47305839.3060705@moneybookers.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit Date: Tue, 06 Nov 2007 19:25:22 +0300 Message-Id: <1194366322.8230.3.camel@darklight.org.ru> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 FreeBSD GNOME Team Port Cc: freebsd-net@freebsd.org Subject: Re: icmp type 5 redirect X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 16:26:47 -0000 On Tue, 2007-11-06 at 14:04 +0200, Stefan Lambrev wrote: > Hi, > > When FreeBSD 6 act as a gatewa,y by default sends icmp type 5 redirect > when needed, > but releng_7 does not. Any ideas how to enable this on RELENG_7? > > net.inet.icmp.maskrepl: 0 > net.inet.icmp.icmplim: 200 > net.inet.icmp.bmcastecho: 0 > net.inet.icmp.quotelen: 8 > net.inet.icmp.reply_from_interface: 0 > net.inet.icmp.reply_src: > net.inet.icmp.icmplim_output: 1 > net.inet.icmp.log_redirect: 0 > net.inet.icmp.drop_redirect: 0 > net.inet.icmp.maskfake: 0 > It's "net.inet.ip.redirect", if I'm not mistaken. from /sys/netinet/ip_input.c: SYSCTL_INT(_net_inet_ip, IPCTL_SENDREDIRECTS, redirect, CTLFLAG_RW, &ipsendredirects, 0, "Enable sending IP redirects"); Yuri From owner-freebsd-net@FreeBSD.ORG Tue Nov 6 16:51:02 2007 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4181E16A417 for ; Tue, 6 Nov 2007 16:51:02 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: from blah.sun-fish.com (blah.sun-fish.com [217.18.249.150]) by mx1.freebsd.org (Postfix) with ESMTP id EA14213C4A5 for ; Tue, 6 Nov 2007 16:51:01 +0000 (UTC) (envelope-from stefan.lambrev@moneybookers.com) Received: by blah.sun-fish.com (Postfix, from userid 1002) id 2D2D61B10EF1; Tue, 6 Nov 2007 17:51:00 +0100 (CET) X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on blah.cmotd.com X-Spam-Level: X-Spam-Status: No, score=-3.8 required=5.0 tests=ALL_TRUSTED,BAYES_00, J_CHICKENPOX_61 autolearn=no version=3.2.3 Received: from hater.haters.org (hater.cmotd.com [192.168.3.125]) by blah.sun-fish.com (Postfix) with ESMTP id 7E7F41B10EEC for ; Tue, 6 Nov 2007 17:50:57 +0100 (CET) Message-ID: <47309B71.9000804@moneybookers.com> Date: Tue, 06 Nov 2007 18:50:57 +0200 From: Stefan Lambrev User-Agent: Thunderbird 2.0.0.6 (X11/20071105) MIME-Version: 1.0 To: freebsd-net@FreeBSD.org References: <47305839.3060705@moneybookers.com> <1194366322.8230.3.camel@darklight.org.ru> In-Reply-To: <1194366322.8230.3.camel@darklight.org.ru> Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV 0.91.2/4682/Tue Nov 6 16:42:37 2007 on blah.cmotd.com X-Virus-Status: Clean Cc: Subject: Re: icmp type 5 redirect X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Nov 2007 16:51:02 -0000 Hi, Yuri Pankov wrote: > On Tue, 2007-11-06 at 14:04 +0200, Stefan Lambrev wrote: > >> Hi, >> >> When FreeBSD 6 act as a gatewa,y by default sends icmp type 5 redirect >> when needed, >> but releng_7 does not. Any ideas how to enable this on RELENG_7? >> >> net.inet.icmp.maskrepl: 0 >> net.inet.icmp.icmplim: 200 >> net.inet.icmp.bmcastecho: 0 >> net.inet.icmp.quotelen: 8 >> net.inet.icmp.reply_from_interface: 0 >> net.inet.icmp.reply_src: >> net.inet.icmp.icmplim_output: 1 >> net.inet.icmp.log_redirect: 0 >> net.inet.icmp.drop_redirect: 0 >> net.inet.icmp.maskfake: 0 >> >> > > It's "net.inet.ip.redirect", if I'm not mistaken. > from /sys/netinet/ip_input.c: > > SYSCTL_INT(_net_inet_ip, IPCTL_SENDREDIRECTS, redirect, CTLFLAG_RW, > &ipsendredirects, 0, "Enable sending IP redirects"); > > The sysctl is ok. and the redirect work ok, I found where the problem is. seems that my problems are carp related :) but I'll share my findings on the "rtfree: 0xc741ee88 has 1 refs" thread and fill PRs where needed. > Yuri > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > -- Best Wishes, Stefan Lambrev ICQ# 24134177 From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 00:24:42 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DBFAD16A418 for ; Wed, 7 Nov 2007 00:24:42 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.236]) by mx1.freebsd.org (Postfix) with ESMTP id 91BA313C48E for ; Wed, 7 Nov 2007 00:24:42 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by nz-out-0506.google.com with SMTP id l8so1363437nzf for ; Tue, 06 Nov 2007 16:24:41 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=qIbFwMiXovWbnJKvsxAMaGSwyneBycJmERPmRkJR76Q=; b=tjORkmt8El0KXS3Ec3kV1u3ggWyeU1JbHFW7G7th7C76wvM3QimuLyacSkCA8u3AWWPnNUbz2Qr1aM1ek+VnyQge1JriaFeaiIHBfVWJaucyfwosr5ucR1aVRV5SE7U/2k+FBh0gnjX7RT/uULhoKedrFGB1giEHm5LjaKb6WrA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=reoX8gC50Xb1P32EyUwF1yFfH5x5Vuvns4pSmlcTqYWQNiG2nGRqlVUBCIufbUBss31YXAIq2ZfqEPDORTrjtVCdBf7HKxX7+y0NJ5BrAMXaHGe1PPL9+JMH07vUauLx8pkVbbwGIYV9Fok8NHgu8gbagV44vg+t+JM/k8rLCmY= Received: by 10.114.52.1 with SMTP id z1mr6866335waz.1194395080489; Tue, 06 Nov 2007 16:24:40 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id v38sm17536865wah.2007.11.06.16.24.36 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 06 Nov 2007 16:24:39 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA70OWQW074246 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 09:24:32 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA70OUDh074245; Wed, 7 Nov 2007 09:24:30 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Wed, 7 Nov 2007 09:24:30 +0900 From: Pyun YongHyeon To: Alexander Shikoff Message-ID: <20071107002430.GA70832@cdnetworks.co.kr> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071106143819.GA22249@crete.org.ua> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 00:24:42 -0000 On Tue, Nov 06, 2007 at 04:38:19PM +0200, Alexander Shikoff wrote: > On Tue, Nov 06, 2007 at 04:19:14PM +0200, Alexander Shikoff wrote: > > Hello, > > > > I have box with 7.0-BETA2 installed (csup-ed and built today). > > There is a problem with on-board Gigabit Realtek card: > > > > re0: port 0xc000-0xc0ff mem 0xf2000000-0xf2000fff irq 17 at device 0.3 > > re0: Using 2 MSI messages > > miibus0: on re0 > > re0: Ethernet address: 00:1a:4d:52:4e:b1 > > re0: [FILTER] > > re0: [FILTER] > > > > It is connected to another FreeBSD 6.2 box with cross-over UTP-cable. > > At the other side there is 'active' status. But re0 at my side > > shows always 'no carrier'. I tried to change UTP-patch-cord but > > without success. > > > > # pciconf -lv > > [...] > > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > > vendor = 'Realtek Semiconductor' > > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > > class = network > > subclass = ethernet > > [...] > > Further investigation... It seems that re(4) driver does not > support auto-negotiation correctly. If I manually set media to 100baseTX and > bring up interface with 'ifconfig re0 up' then it works. > Would you show me more information for link partner(i.e. FreeBSD 6.2 box)? -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 00:41:59 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7C23F16A417 for ; Wed, 7 Nov 2007 00:41:59 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.177]) by mx1.freebsd.org (Postfix) with ESMTP id 489FA13C481 for ; Wed, 7 Nov 2007 00:41:59 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so2733253waf for ; Tue, 06 Nov 2007 16:41:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=a59GMUJmOm8LX/O1S2YGPlwiyTmN/vs54QzJDEcNC88=; b=sMr+VocnntdOMgZ0WVe+nSTlP8hIAOLKJ90m1SFkSXkRX2jMIVd4C6WRXA9T5t5j3fOThH+f/sOkSMv1aYw+/lwoYO50yzZrQ4UkBh4MlRTrsUrst/xVq35K1e4rTPcbmyDIMnVlmJ/fhbZcyh5zpRjThcO+7lG0PvgwU8Xh6t4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=PPBiFkqT5m18/rqZiy0TY5cWU5CNOU4obbLKdNTcdtrbovvuveiV2Qo6XtDa3esXXrAqqgbg4hf6hfQyvNnv2pezhYuFTypJrKPH6WYQBgql16rF2R9qutg1FqFE3uZaRXsQWyD7TK99TLFh/tdMgoLH4ZGq3GoG36QK9nFniL8= Received: by 10.114.153.18 with SMTP id a18mr6890201wae.1194396118931; Tue, 06 Nov 2007 16:41:58 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id m5sm17543938wag.2007.11.06.16.41.55 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 06 Nov 2007 16:41:57 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA70foRW074293 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 09:41:50 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA70fnkc074292; Wed, 7 Nov 2007 09:41:49 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Wed, 7 Nov 2007 09:41:49 +0900 From: Pyun YongHyeon To: Garrett Cooper Message-ID: <20071107004149.GB70832@cdnetworks.co.kr> References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> <47202922.3070700@u.washington.edu> <47209570.20609@tomjudge.com> <4723330A.7070803@u.washington.edu> <4728B256.5080005@u.washington.edu> <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> <472FA362.6040608@u.washington.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <472FA362.6040608@u.washington.edu> User-Agent: Mutt/1.4.2.1i Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 00:41:59 -0000 On Mon, Nov 05, 2007 at 03:12:34PM -0800, Garrett Cooper wrote: > Garrett Cooper wrote: > >On Oct 31, 2007, at 9:50 AM, Garrett Cooper wrote: > >>I'm running tcpdump on my Mac and I noted a lot of 'bad checksums' > >>(0x081c was the official error in all cases), then consulted the msk > >>driver. It appears that there's a bug with Yukon II chipsets with the > >>hardware checksumming and I wonder whether or not the chipset that I > >>have is affected by this issue as well. > >>I'll provide my chipset/model info in my next reply (can't access it > >>from this PC). > >>-Garrett > > > >Got a wee bit busy there. > > > >Anyhow, here's the chipset info (snippet) reported from dmesg: > > > >[gcooper@shiina: ~]$ ssh -C optimus "dmesg | grep msk" > >Password: > >mskc0: port 0xd800-0xd8ff mem > >0xfe9fc000-0xfe9fffff irq 17 at device 0.0 on pci2 > >msk0: > >on mskc0 > >msk0: Ethernet address: 00:1b:fc:45:9b:5c > >miibus0: on msk0 > > > >-Garrett > > The issue indeed is with the msk(4) driver in FreeBSD. > I just plugged in an em(4) compatible card, powered it up and now my > server works like a champ with the XP machine. I'm confused. As I said in previous mail please check network cables such that down-shifting wouldn't take part in this issue. If that does not fix the issue, force speed/duplex on both ends. > As a reference the MB's affected by this are mostly the ASUS MB's, i.e. > P5B and P5K series ones. MSI MB's may be affected by this issue as well > because I think they come with msk(4) compatible chipsets onboard.. Bad checksum seems to be different issue to me. Capture traffic on Mac with tcpdump and give me a URL for the pcap file. Btw, it would be even better if you can show me the PHY driver (e1000phy(4)) information in dmesg output. -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 07:37:22 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5AB9916A41A for ; Wed, 7 Nov 2007 07:37:22 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from crow.padonki.org.ua (crow.padonki.org.ua [213.186.192.71]) by mx1.freebsd.org (Postfix) with ESMTP id 142B913C4A6 for ; Wed, 7 Nov 2007 07:37:20 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from minotaur by crow.padonki.org.ua with local (Exim 4.66 (FreeBSD)) (envelope-from ) id 1IpfTI-0008P2-SQ; Wed, 07 Nov 2007 09:37:08 +0200 Date: Wed, 7 Nov 2007 09:37:08 +0200 From: Alexander Shikoff To: Pyun YongHyeon Message-ID: <20071107073708.GA32211@crete.org.ua> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-u Content-Disposition: inline In-Reply-To: <20071107002430.GA70832@cdnetworks.co.kr> User-Agent: Mutt/1.5.16 (2007-06-09) Sender: Alexander Shikoff Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Alexander Shikoff List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 07:37:22 -0000 On Wed, Nov 07, 2007 at 09:24:30AM +0900, Pyun YongHyeon wrote: > > > # pciconf -lv > > > [...] > > > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > > > vendor = 'Realtek Semiconductor' > > > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > > > class = network > > > subclass = ethernet > > > [...] > > > > Further investigation... It seems that re(4) driver does not > > support auto-negotiation correctly. If I manually set media to 100baseTX and > > bring up interface with 'ifconfig re0 up' then it works. > > > > Would you show me more information for link partner(i.e. FreeBSD 6.2 box)? Yes, of course: FreeBSD 6.2-STABLE 7.0-BETA2 rl0 <===================> re0 rl0: port 0x9000-0x90ff mem 0xfa000000-0xfa0000ff irq 21 at device 1.0 on pci2 miibus0: on rl0 rl0: Ethernet address: 00:e0:7d:db:ca:98 rl0: link state changed to UP # pciconf -lv rl0@pci2:1:0: class=0x020000 card=0x813910ec chip=0x813910ec rev=0x10 hdr=0x00 vendor = 'Realtek Semiconductor' device = 'RT8139 (A/B/C/810x/813x/C+) Fast Ethernet Adapter' class = network subclass = ethernet -- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49 From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 07:51:59 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A253016A41A for ; Wed, 7 Nov 2007 07:51:59 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.182]) by mx1.freebsd.org (Postfix) with ESMTP id 6E44813C4A8 for ; Wed, 7 Nov 2007 07:51:58 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so2835376waf for ; Tue, 06 Nov 2007 23:51:43 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=azia0OMDoGRPrj23VKTYDStxmC+rm4m2bRiXtbVGm1c=; b=utxE5uMzOInQvNo0fnjQob/Dw+KpPozSn9P2jxeYkt+iIXfLwpEts6siNfyLIlLFx/FZv8i0KAzXkIzgfZozBT6AkdvuGMGjMRDxjkOc9LXFZjGPbO5vIpudrGvTC0T3+VD0QJUeq8kZM1gTsT7elKaDB+vlZuTln6jdhac+wc0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=V8A//u4lwoEfA4sYaXWoCkK4hVxFT0/cIh0IuWzUCajH5AsDTewyr7VNVcJX/piBwBPAeK/FVpUP/od2oNkrC7X0rGoZkIJrUSfVqZnF4NoI9UjsZLPtCNKrAgypLrA2RNWKeUKVdnXZatXL6a8meRk9+Jawcqa7xzEYw4wKLPM= Received: by 10.115.59.4 with SMTP id m4mr294532wak.1194421903686; Tue, 06 Nov 2007 23:51:43 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id l36sm18404709waf.2007.11.06.23.51.40 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 06 Nov 2007 23:51:42 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA77pZhH075570 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 16:51:35 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA77pYjf075569; Wed, 7 Nov 2007 16:51:34 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Wed, 7 Nov 2007 16:51:34 +0900 From: Pyun YongHyeon To: Alexander Shikoff Message-ID: <20071107075134.GD70832@cdnetworks.co.kr> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071107073708.GA32211@crete.org.ua> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 07:51:59 -0000 On Wed, Nov 07, 2007 at 09:37:08AM +0200, Alexander Shikoff wrote: > On Wed, Nov 07, 2007 at 09:24:30AM +0900, Pyun YongHyeon wrote: > > > > # pciconf -lv > > > > [...] > > > > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > > > > vendor = 'Realtek Semiconductor' > > > > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > > > > class = network > > > > subclass = ethernet > > > > [...] > > > > > > Further investigation... It seems that re(4) driver does not > > > support auto-negotiation correctly. If I manually set media to 100baseTX and > > > bring up interface with 'ifconfig re0 up' then it works. > > > > > > > Would you show me more information for link partner(i.e. FreeBSD 6.2 box)? > > Yes, of course: > > FreeBSD 6.2-STABLE 7.0-BETA2 > rl0 <===================> re0 > > rl0: port 0x9000-0x90ff mem 0xfa000000-0xfa0000ff irq 21 at device 1.0 on pci2 > miibus0: on rl0 > rl0: Ethernet address: 00:e0:7d:db:ca:98 > rl0: link state changed to UP > > # pciconf -lv > rl0@pci2:1:0: class=0x020000 card=0x813910ec chip=0x813910ec rev=0x10 hdr=0x00 > vendor = 'Realtek Semiconductor' > device = 'RT8139 (A/B/C/810x/813x/C+) Fast Ethernet Adapter' > class = network > subclass = ethernet > Hmm, the link partner uses rl(4) so show me the PHY driver(rlphy(4)?) information. (You can extract it from dmesg(8) output.) Does the link partner has a forced speed/duplex option for rl(4)? -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 08:15:19 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1A35016A46B for ; Wed, 7 Nov 2007 08:15:19 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout5.cac.washington.edu (mxout5.cac.washington.edu [140.142.32.135]) by mx1.freebsd.org (Postfix) with ESMTP id E18DE13C491 for ; Wed, 7 Nov 2007 08:15:18 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.33.7] (may be forged)) by mxout5.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA78F19w003538 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Wed, 7 Nov 2007 00:15:01 -0800 X-Auth-Received: from [127.0.0.1] (node49.244.100.208.1dial.com [208.100.244.49] (may be forged)) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lA78EbVK002184 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 7 Nov 2007 00:14:58 -0800 Message-ID: <473173CB.40606@u.washington.edu> Date: Wed, 07 Nov 2007 00:14:03 -0800 From: Garrett Cooper User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: pyunyh@gmail.com References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> <47202922.3070700@u.washington.edu> <47209570.20609@tomjudge.com> <4723330A.7070803@u.washington.edu> <4728B256.5080005@u.washington.edu> <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> <472FA362.6040608@u.washington.edu> <20071107004149.GB70832@cdnetworks.co.kr> In-Reply-To: <20071107004149.GB70832@cdnetworks.co.kr> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.11.6.235226 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='ECARD_WORD 0, __CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __FRAUD_419_CONTACT_ADDY_B 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 08:15:19 -0000 Pyun YongHyeon wrote: > On Mon, Nov 05, 2007 at 03:12:34PM -0800, Garrett Cooper wrote: > > Garrett Cooper wrote: > > >On Oct 31, 2007, at 9:50 AM, Garrett Cooper wrote: > > >>I'm running tcpdump on my Mac and I noted a lot of 'bad checksums' > > >>(0x081c was the official error in all cases), then consulted the msk > > >>driver. It appears that there's a bug with Yukon II chipsets with the > > >>hardware checksumming and I wonder whether or not the chipset that I > > >>have is affected by this issue as well. > > >>I'll provide my chipset/model info in my next reply (can't access it > > >>from this PC). > > >>-Garrett > > > > > >Got a wee bit busy there. > > > > > >Anyhow, here's the chipset info (snippet) reported from dmesg: > > > > > >[gcooper@shiina: ~]$ ssh -C optimus "dmesg | grep msk" > > >Password: > > >mskc0: port 0xd800-0xd8ff mem > > >0xfe9fc000-0xfe9fffff irq 17 at device 0.0 on pci2 > > >msk0: > > >on mskc0 > > >msk0: Ethernet address: 00:1b:fc:45:9b:5c > > >miibus0: on msk0 > > > > > >-Garrett > > > > The issue indeed is with the msk(4) driver in FreeBSD. > > I just plugged in an em(4) compatible card, powered it up and now my > > server works like a champ with the XP machine. > > I'm confused. As I said in previous mail please check network cables > such that down-shifting wouldn't take part in this issue. If that > does not fix the issue, force speed/duplex on both ends. > Which I made sure of. Enforcing duplexing from the FreeBSD (and I assume Windows?) end worked successfully. So, unless something's doing a really shoddy job of detecting the media type for a number of different cables, I don't think that . > > As a reference the MB's affected by this are mostly the ASUS MB's, i.e. > > P5B and P5K series ones. MSI MB's may be affected by this issue as well > > because I think they come with msk(4) compatible chipsets onboard.. > > Bad checksum seems to be different issue to me. Capture traffic on > Mac with tcpdump and give me a URL for the pcap file. > Btw, it would be even better if you can show me the PHY driver > (e1000phy(4)) information in dmesg output. Will do once I get my gigabit switch back from Netgear (bloody port routing controller card on the switch died after transferring a few GB of data, sadly enough :(...). I assume the e1000phy patch is already in 8-CURRENT? What exactly does output from e1000phy(4) output look like though? My thought about this is that all of the TCP packets received from the FreeBSD machine were considered bad, so the XP machine gave up after so many tries and bad checksum reports. I could be wrong though. Thanks for the advice, -Garrett From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 08:32:24 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D971016A41A for ; Wed, 7 Nov 2007 08:32:24 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from crow.padonki.org.ua (crow.padonki.org.ua [213.186.192.71]) by mx1.freebsd.org (Postfix) with ESMTP id 94AFD13C4BE for ; Wed, 7 Nov 2007 08:32:24 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from minotaur by crow.padonki.org.ua with local (Exim 4.66 (FreeBSD)) (envelope-from ) id 1IpgKS-0008qU-MD; Wed, 07 Nov 2007 10:32:04 +0200 Date: Wed, 7 Nov 2007 10:32:04 +0200 From: Alexander Shikoff To: Pyun YongHyeon Message-ID: <20071107083204.GA33900@crete.org.ua> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> <20071107075134.GD70832@cdnetworks.co.kr> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-u Content-Disposition: inline In-Reply-To: <20071107075134.GD70832@cdnetworks.co.kr> User-Agent: Mutt/1.5.16 (2007-06-09) Sender: Alexander Shikoff Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Alexander Shikoff List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 08:32:24 -0000 On Wed, Nov 07, 2007 at 04:51:34PM +0900, Pyun YongHyeon wrote: > On Wed, Nov 07, 2007 at 09:37:08AM +0200, Alexander Shikoff wrote: > > On Wed, Nov 07, 2007 at 09:24:30AM +0900, Pyun YongHyeon wrote: > > > > > # pciconf -lv > > > > > [...] > > > > > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > > > > > vendor = 'Realtek Semiconductor' > > > > > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > > > > > class = network > > > > > subclass = ethernet > > > > > [...] > > > > > > > > Further investigation... It seems that re(4) driver does not > > > > support auto-negotiation correctly. If I manually set media to 100baseTX and > > > > bring up interface with 'ifconfig re0 up' then it works. > > > > > > > > > > Would you show me more information for link partner(i.e. FreeBSD 6.2 box)? > > > > Yes, of course: > > > > FreeBSD 6.2-STABLE 7.0-BETA2 > > rl0 <===================> re0 > > > > rl0: port 0x9000-0x90ff mem 0xfa000000-0xfa0000ff irq 21 at device 1.0 on pci2 > > miibus0: on rl0 > > rl0: Ethernet address: 00:e0:7d:db:ca:98 > > rl0: link state changed to UP > > > > # pciconf -lv > > rl0@pci2:1:0: class=0x020000 card=0x813910ec chip=0x813910ec rev=0x10 hdr=0x00 > > vendor = 'Realtek Semiconductor' > > device = 'RT8139 (A/B/C/810x/813x/C+) Fast Ethernet Adapter' > > class = network > > subclass = ethernet > > > > Hmm, the link partner uses rl(4) so show me the PHY driver(rlphy(4)?) > information. (You can extract it from dmesg(8) output.) rlphy0: on miibus0 rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto > Does the link partner has a forced speed/duplex option for rl(4)? No. # ifconfig rl0 rl0: flags=8843 mtu 1500 options=8 inet 10.0.34.1 netmask 0xffffff00 broadcast 10.0.34.255 ether 00:e0:7d:db:ca:98 media: Ethernet autoselect (100baseTX ) status: active -- Kind Regards, Alexander Shikoff minotaur@crete.org.ua From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 10:14:26 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6C7D816A419 for ; Wed, 7 Nov 2007 10:14:26 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.185]) by mx1.freebsd.org (Postfix) with ESMTP id E01DB13C491 for ; Wed, 7 Nov 2007 10:14:24 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so1788222rvb for ; Wed, 07 Nov 2007 02:14:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=a3slybTMvngSl5fh8uGLHxwLQQs5E6SuGZwMyBR2/lM=; b=O9Q+cBr5uiII/n6nlqZZ8Oan+faDLn79ChV4XNKCEkFdBgmXgWh3JE/CW4EjNa4ubn60x7jmbHd6i8mS2E/j3+VJ8H/B3FecBryk4PTwR5WTH2FOjAlKgcJO2OfxeGmNn3Vyr34uPpG+soZZdk2IbsEj9jzafhbnMnEuaEEEbz8= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=nR82IahhLAOC604sMyQUBmmqLBvXFg5PrrSaWafq4p4yo+c6B49917sLlLcYp0CPeVynYXBkmcWRpvl+CtxFCJ2UFQ9DFdNmjqSs9na6oYmZC4xNLoBAiRY1VZGBuGszp2sFYmQm8p5Dc/APHk65mXmxjQp8hqU9mvulez616SE= Received: by 10.140.203.9 with SMTP id a9mr3416288rvg.1194430454026; Wed, 07 Nov 2007 02:14:14 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id c19sm18340041rvf.2007.11.07.02.14.11 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 07 Nov 2007 02:14:13 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA7AE8Ql076027 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 19:14:08 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA7AE800076026; Wed, 7 Nov 2007 19:14:08 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Wed, 7 Nov 2007 19:14:07 +0900 From: Pyun YongHyeon To: Alexander Shikoff Message-ID: <20071107101407.GF70832@cdnetworks.co.kr> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> <20071107075134.GD70832@cdnetworks.co.kr> <20071107083204.GA33900@crete.org.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071107083204.GA33900@crete.org.ua> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 10:14:26 -0000 On Wed, Nov 07, 2007 at 10:32:04AM +0200, Alexander Shikoff wrote: > On Wed, Nov 07, 2007 at 04:51:34PM +0900, Pyun YongHyeon wrote: > > On Wed, Nov 07, 2007 at 09:37:08AM +0200, Alexander Shikoff wrote: > > > On Wed, Nov 07, 2007 at 09:24:30AM +0900, Pyun YongHyeon wrote: > > > > > > # pciconf -lv > > > > > > [...] > > > > > > re0@pci0:3:0:0: class=0x020000 card=0xe0001458 chip=0x816810ec rev=0x01 hdr=0x00 > > > > > > vendor = 'Realtek Semiconductor' > > > > > > device = 'RTL8168/8111 PCI-E Gigabit Ethernet NIC' > > > > > > class = network > > > > > > subclass = ethernet > > > > > > [...] > > > > > > > > > > Further investigation... It seems that re(4) driver does not > > > > > support auto-negotiation correctly. If I manually set media to 100baseTX and > > > > > bring up interface with 'ifconfig re0 up' then it works. > > > > > > > > > > > > > Would you show me more information for link partner(i.e. FreeBSD 6.2 box)? > > > > > > Yes, of course: > > > > > > FreeBSD 6.2-STABLE 7.0-BETA2 > > > rl0 <===================> re0 > > > > > > rl0: port 0x9000-0x90ff mem 0xfa000000-0xfa0000ff irq 21 at device 1.0 on pci2 > > > miibus0: on rl0 > > > rl0: Ethernet address: 00:e0:7d:db:ca:98 > > > rl0: link state changed to UP > > > > > > # pciconf -lv > > > rl0@pci2:1:0: class=0x020000 card=0x813910ec chip=0x813910ec rev=0x10 hdr=0x00 > > > vendor = 'Realtek Semiconductor' > > > device = 'RT8139 (A/B/C/810x/813x/C+) Fast Ethernet Adapter' > > > class = network > > > subclass = ethernet > > > > > > > Hmm, the link partner uses rl(4) so show me the PHY driver(rlphy(4)?) > > information. (You can extract it from dmesg(8) output.) > rlphy0: on miibus0 > rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto > > > Does the link partner has a forced speed/duplex option for rl(4)? > No. > # ifconfig rl0 > rl0: flags=8843 mtu 1500 > options=8 > inet 10.0.34.1 netmask 0xffffff00 broadcast 10.0.34.255 > ether 00:e0:7d:db:ca:98 > media: Ethernet autoselect (100baseTX ) > status: active > I couldn't see guilty code. In fact I couldn't reproduce it here. Since RTL8168/8111 has built-in crossover detection feature how about using straight cable? -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 10:33:00 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2901A16A419 for ; Wed, 7 Nov 2007 10:33:00 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.190]) by mx1.freebsd.org (Postfix) with ESMTP id E934213C491 for ; Wed, 7 Nov 2007 10:32:59 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so1792236rvb for ; Wed, 07 Nov 2007 02:32:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=eQGU0D9GJHztN7rQbR345iiEblQgLSL97E9lQscrtwk=; b=LdhU1yFgudTMub+BW88XCq4F5XvdevmAsfnKuhmWjmReIWYd7x4GPNVwPwUCA3iArFMX3vTbkivrMjF3FKv23ctPGgyEradCdkPnj9t0RrI00E/lmXPBOsHGN5qic1LQbgX56X0+pcvbZAfSSIPYbftQAjImXisG+/zd/4rMdDE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=pnsSX4A1JackdjeAG48VabNgUjp49SrTVnz0pkToDWWXPplpJvie+ThrGHSajfi5sTBAyMhXs2mwtFBlR33zzr2hTKLcRWkWPL1J2tG7WJV1JAtyG9wvCYYk1KKee1MxDSeZREz7Np5V5OF+haC3iBkUTqP+g3XVlQnk/BZg1f8= Received: by 10.114.209.1 with SMTP id h1mr7333824wag.1194431569984; Wed, 07 Nov 2007 02:32:49 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id m5sm18563829wag.2007.11.07.02.32.45 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 07 Nov 2007 02:32:48 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA7AWfpl076071 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 19:32:41 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA7AWeNk076070; Wed, 7 Nov 2007 19:32:40 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Wed, 7 Nov 2007 19:32:40 +0900 From: Pyun YongHyeon To: Garrett Cooper Message-ID: <20071107103240.GG70832@cdnetworks.co.kr> References: <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> <47202922.3070700@u.washington.edu> <47209570.20609@tomjudge.com> <4723330A.7070803@u.washington.edu> <4728B256.5080005@u.washington.edu> <9CFC3779-3A4C-4ADD-8F2C-982887CB3039@u.washington.edu> <472FA362.6040608@u.washington.edu> <20071107004149.GB70832@cdnetworks.co.kr> <473173CB.40606@u.washington.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <473173CB.40606@u.washington.edu> User-Agent: Mutt/1.4.2.1i Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 10:33:00 -0000 On Wed, Nov 07, 2007 at 12:14:03AM -0800, Garrett Cooper wrote: > Pyun YongHyeon wrote: > >On Mon, Nov 05, 2007 at 03:12:34PM -0800, Garrett Cooper wrote: > > > Garrett Cooper wrote: > > > >On Oct 31, 2007, at 9:50 AM, Garrett Cooper wrote: > > > >>I'm running tcpdump on my Mac and I noted a lot of 'bad checksums' > > > >>(0x081c was the official error in all cases), then consulted the msk > > > >>driver. It appears that there's a bug with Yukon II chipsets with the > > > >>hardware checksumming and I wonder whether or not the chipset that I > > > >>have is affected by this issue as well. > > > >>I'll provide my chipset/model info in my next reply (can't access it > > > >>from this PC). > > > >>-Garrett > > > > > > > >Got a wee bit busy there. > > > > > > > >Anyhow, here's the chipset info (snippet) reported from dmesg: > > > > > > > >[gcooper@shiina: ~]$ ssh -C optimus "dmesg | grep msk" > > > >Password: > > > >mskc0: port 0xd800-0xd8ff mem > > > >0xfe9fc000-0xfe9fffff irq 17 at device 0.0 on pci2 > > > >msk0: > > > >on mskc0 > > > >msk0: Ethernet address: 00:1b:fc:45:9b:5c > > > >miibus0: on msk0 > > > > > > > >-Garrett > > > > > > The issue indeed is with the msk(4) driver in FreeBSD. > > > I just plugged in an em(4) compatible card, powered it up and now my > > > server works like a champ with the XP machine. > > > >I'm confused. As I said in previous mail please check network cables > >such that down-shifting wouldn't take part in this issue. If that > >does not fix the issue, force speed/duplex on both ends. > > > > Which I made sure of. Enforcing duplexing from the FreeBSD (and I assume > Windows?) end worked successfully. So, unless something's doing a really > shoddy job of detecting the media type for a number of different cables, > I don't think that . If you use forced speed/duplex settings, both FreeBSD and Windows *should* use the same speed/duplex. Failing that will result in speed/duplex mismatches which in turn creates lots of unexpected results(poor performance, packet loss, watchdog timeout etc). Requiring forced speed/duplex normally means a bug in PHY driver. Since I still don't know what PHY model/revision was attached to msk(4) I'm not sure about that. > > > > As a reference the MB's affected by this are mostly the ASUS MB's, i.e. > > > P5B and P5K series ones. MSI MB's may be affected by this issue as well > > > because I think they come with msk(4) compatible chipsets onboard.. > > > >Bad checksum seems to be different issue to me. Capture traffic on > >Mac with tcpdump and give me a URL for the pcap file. > >Btw, it would be even better if you can show me the PHY driver > >(e1000phy(4)) information in dmesg output. > > Will do once I get my gigabit switch back from Netgear (bloody port > routing controller card on the switch died after transferring a few GB > of data, sadly enough :(...). I assume the e1000phy patch is already in > 8-CURRENT? What exactly does output from e1000phy(4) output look like > though? > Sorry, I don't know what e1000phy patch you refers. "dmesg | grep ^e1000phy" will show you PHY related information. > My thought about this is that all of the TCP packets received from the > FreeBSD machine were considered bad, so the XP machine gave up after so > many tries and bad checksum reports. I could be wrong though. > To narrow down the issue, disable checksum offload/TSO in msk(4) and see Mac box still receives bad packets generated from msk(4). To disable checksum offload/TSO, use the following command. #ifconfig msk0 -tso -txcsum > Thanks for the advice, > -Garrett -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 11:55:55 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 711F816A41B for ; Wed, 7 Nov 2007 11:55:55 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.184]) by mx1.freebsd.org (Postfix) with ESMTP id 04E4013C48E for ; Wed, 7 Nov 2007 11:55:54 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so1711378nfb for ; Wed, 07 Nov 2007 03:55:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:cc:message-id:from:to:in-reply-to:content-type:content-transfer-encoding:mime-version:subject:date:references:x-mailer:sender; bh=nSrCHLZSie8Ahx9ADWE6BaipwJJrSZw79bfXF4/W+0s=; b=TXCp+tVafddxcvIRYhL+0KiMtTj3g5YD/CZcywikaG0H9kpZPz68YoqXZXxX/l7gmywV0QqXSafWRshHq53DoxagCVxGhyQteJJWbmmw4Dwetxd7xFNaP2hrK78SoTBa5YE4HxilFSFui0QBPp0cFEO5MTtYL3Veldj2JEy+THM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:cc:message-id:from:to:in-reply-to:content-type:content-transfer-encoding:mime-version:subject:date:references:x-mailer:sender; b=Hly07ZDJ4nVaKXbzVHkpZ4YnFfAyUQCxvSCh6T33z4V5qXET8oH3XTd4PJRblB32PCvrwwa0CYChJqrwqV2X/DFtUunpE5BmUCzHo47hOotWc+x1ds3cyFcvXWuqeRtl5SfOe2j9G1BuZix3HvfVmmlvQpF0G0CmWM/mm9HUTuA= Received: by 10.86.4.2 with SMTP id 2mr5172357fgd.1194435056926; Wed, 07 Nov 2007 03:30:56 -0800 (PST) Received: from ?172.17.8.93? ( [193.136.24.191]) by mx.google.com with ESMTPS id e20sm1402421fga.2007.11.07.03.30.36 (version=SSLv3 cipher=OTHER); Wed, 07 Nov 2007 03:30:45 -0800 (PST) Message-Id: <0AB7127C-ED54-474A-897E-0DB8EF94F42D@FreeBSD.org> From: Rui Paulo To: Roman Divacky In-Reply-To: <20071105153459.GA52205@freebsd.org> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v912) Date: Wed, 7 Nov 2007 11:30:34 +0000 References: <20071105153459.GA52205@freebsd.org> X-Mailer: Apple Mail (2.912) Sender: Rui Paulo Cc: net@freebsd.org Subject: Re: [PATCH]: implementation of SIOCGIFINDEX in linuxulator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 11:55:55 -0000 On 5 Nov 2007, at 15:34, Roman Divacky wrote: > hi > > I implemented SIOCGIFINDEX in linuxulator and I would like you > to review the patch.. the implementation is trivial, just mapping > it to the native fbsd call. > > the patch can be found here: http://www.vlakno.cz/~rdivacky/linux_socket.patch > > I have a report that it helps some java program. please review it so > it can be commited Perhaps I'm missing something, but what should happen with LINUX_SIOCGIFCOUNT ? Regards. -- Rui Paulo -- Rui Paulo From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 12:32:08 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C002316A46C for ; Wed, 7 Nov 2007 12:32:08 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from crow.padonki.org.ua (crow.padonki.org.ua [213.186.192.71]) by mx1.freebsd.org (Postfix) with ESMTP id 7752113C4BB for ; Wed, 7 Nov 2007 12:32:08 +0000 (UTC) (envelope-from minotaur@padonki.org.ua) Received: from minotaur by crow.padonki.org.ua with local (Exim 4.68 (FreeBSD)) (envelope-from ) id 1IpjSZ-0000fA-H2; Wed, 07 Nov 2007 13:52:39 +0200 Date: Wed, 7 Nov 2007 13:52:39 +0200 From: Alexander Shikoff To: Pyun YongHyeon Message-ID: <20071107115239.GA1462@crete.org.ua> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> <20071107075134.GD70832@cdnetworks.co.kr> <20071107083204.GA33900@crete.org.ua> <20071107101407.GF70832@cdnetworks.co.kr> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-u Content-Disposition: inline In-Reply-To: <20071107101407.GF70832@cdnetworks.co.kr> User-Agent: Mutt/1.5.16 (2007-06-09) Sender: Alexander Shikoff Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Alexander Shikoff List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 12:32:08 -0000 On Wed, Nov 07, 2007 at 07:14:07PM +0900, Pyun YongHyeon wrote: > I couldn't see guilty code. In fact I couldn't reproduce it here. > Since RTL8168/8111 has built-in crossover detection feature how about > using straight cable? Further investigation: auto-negotiation works only after 'iconfig re0 up' command. How to reproduce: 1. Connect cross-over cable via re0 at 7.0-box and rl0 at 6.2-box. 1. Do not place any configuration for re0 in rc.conf 2. Boot a 7.0-BETA2 box. Just after reboot re0 does not get UP status. I see: # ifconfig re0 re0: flags=8802 metric 0 mtu 1500 options=9b ether 00:1a:4d:52:4e:b1 media: Ethernet autoselect (10baseT/UTP ) status: no carrier ... and in console: re0: link state changed to DOWN 4. Force re0 UP with ifconfig re0 up. Then re0 starts and auto-negotiation works: # ifconfig re0 up # ifconfig re0: flags=8843 metric 0 mtu 1500 options=9b ether 00:1a:4d:52:4e:b1 media: Ethernet autoselect (100baseTX ) status: active So this problem turns into problem of automatic start of re0 interface. Sorry for this inconvenience with negotiation, but issue with automatic start is actual. Thanks! -- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49 From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 12:32:27 2007 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 89BE916A420 for ; Wed, 7 Nov 2007 12:32:27 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from vlakno.cz (vlk.vlakno.cz [62.168.28.247]) by mx1.freebsd.org (Postfix) with ESMTP id 4043B13C481 for ; Wed, 7 Nov 2007 12:32:26 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from localhost (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id F368D669C48; Wed, 7 Nov 2007 13:32:06 +0100 (CET) X-Virus-Scanned: amavisd-new at vlakno.cz Received: from vlakno.cz ([127.0.0.1]) by localhost (vlk.vlakno.cz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DOXolsKIkLLg; Wed, 7 Nov 2007 13:32:05 +0100 (CET) Received: from vlk.vlakno.cz (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id 6580B669C32; Wed, 7 Nov 2007 13:32:05 +0100 (CET) Received: (from rdivacky@localhost) by vlk.vlakno.cz (8.13.8/8.13.8/Submit) id lA7CW5k4030863; Wed, 7 Nov 2007 13:32:05 +0100 (CET) (envelope-from rdivacky) Date: Wed, 7 Nov 2007 13:32:05 +0100 From: Roman Divacky To: Rui Paulo Message-ID: <20071107123204.GA30802@freebsd.org> References: <20071105153459.GA52205@freebsd.org> <0AB7127C-ED54-474A-897E-0DB8EF94F42D@FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <0AB7127C-ED54-474A-897E-0DB8EF94F42D@FreeBSD.org> User-Agent: Mutt/1.4.2.3i Cc: net@FreeBSD.org Subject: Re: [PATCH]: implementation of SIOCGIFINDEX in linuxulator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 12:32:27 -0000 On Wed, Nov 07, 2007 at 11:30:34AM +0000, Rui Paulo wrote: > > On 5 Nov 2007, at 15:34, Roman Divacky wrote: > > >hi > > > >I implemented SIOCGIFINDEX in linuxulator and I would like you > >to review the patch.. the implementation is trivial, just mapping > >it to the native fbsd call. > > > >the patch can be found here: > >http://www.vlakno.cz/~rdivacky/linux_socket.patch > > > >I have a report that it helps some java program. please review it so > >it can be commited > > > Perhaps I'm missing something, but what should happen with > LINUX_SIOCGIFCOUNT ? it should just return 0. its not implemented in linux and just returns 0 there too.. the tester reports that it works in this implementation so I guess it's just ok. roman From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 15:36:21 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D26BD16A46E for ; Wed, 7 Nov 2007 15:36:21 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.185]) by mx1.freebsd.org (Postfix) with ESMTP id 5ABF213C4B3 for ; Wed, 7 Nov 2007 15:36:21 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so1769806nfb for ; Wed, 07 Nov 2007 07:36:13 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:cc:message-id:from:to:in-reply-to:content-type:content-transfer-encoding:mime-version:subject:date:references:x-mailer:sender; bh=f36KjNu5WhHDYb727/ywOB4sy0zpLZPvLutHDGvS/8Q=; b=hdvOWTuxYr7Xka6TqRM7LdpR1HYbGD4GaVlVl7IDE8PkZoojUS4uVDXzjYjfnf1R1RpV3IIFuPQ6e3OHq4CVIbHrdu/HKk+t2BVATNQKM4I1O8QcxUCxJJY/AtO/Td0H29yU5lh6UeNSbQT5tq1dPC6UOpeUF7CXj5FpLolz9AI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:cc:message-id:from:to:in-reply-to:content-type:content-transfer-encoding:mime-version:subject:date:references:x-mailer:sender; b=Minr4B0lxEFchAjHUxqD4tLgJWjmCYtICJXrZ9nnLSZ/F+5OX/SFfeS2lx7+bg6CQOp2MojTCW9RGKZPxMHzc1qj6amBaolr1SxdRtVWfmIBDl/sjS+soS5bQSHWK3JzXEH45xF0Q9b4B/IHBCOOYUJtzs06+h61ChpUGfzsrHQ= Received: by 10.86.58.3 with SMTP id g3mr5335571fga.1194449773183; Wed, 07 Nov 2007 07:36:13 -0800 (PST) Received: from ?172.17.0.111? ( [193.136.24.188]) by mx.google.com with ESMTPS id 4sm857282fgg.2007.11.07.07.36.05 (version=SSLv3 cipher=OTHER); Wed, 07 Nov 2007 07:36:06 -0800 (PST) Message-Id: From: Rui Paulo To: Roman Divacky In-Reply-To: <20071107123204.GA30802@freebsd.org> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v912) Date: Wed, 7 Nov 2007 15:36:03 +0000 References: <20071105153459.GA52205@freebsd.org> <0AB7127C-ED54-474A-897E-0DB8EF94F42D@FreeBSD.org> <20071107123204.GA30802@freebsd.org> X-Mailer: Apple Mail (2.912) Sender: Rui Paulo Cc: net@FreeBSD.org Subject: Re: [PATCH]: implementation of SIOCGIFINDEX in linuxulator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 15:36:21 -0000 On 7 Nov 2007, at 12:32, Roman Divacky wrote: > On Wed, Nov 07, 2007 at 11:30:34AM +0000, Rui Paulo wrote: >> >> On 5 Nov 2007, at 15:34, Roman Divacky wrote: >> >>> hi >>> >>> I implemented SIOCGIFINDEX in linuxulator and I would like you >>> to review the patch.. the implementation is trivial, just mapping >>> it to the native fbsd call. >>> >>> the patch can be found here: >>> http://www.vlakno.cz/~rdivacky/linux_socket.patch >>> >>> I have a report that it helps some java program. please review it so >>> it can be commited >> >> >> Perhaps I'm missing something, but what should happen with >> LINUX_SIOCGIFCOUNT ? > > it should just return 0. its not implemented in linux and just > returns 0 > there too.. the tester reports that it works in this implementation > so I guess it's just ok. Alright, thanks for the clarification. Your patch looks fine. Regards. -- Rui Paulo From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 18:46:13 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D02E816A46B; Wed, 7 Nov 2007 18:46:13 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from relanium.yandex.ru (relanium.yandex.ru [213.180.193.88]) by mx1.freebsd.org (Postfix) with ESMTP id 3B75D13C4B0; Wed, 7 Nov 2007 18:46:12 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.local.yandex.ru (dhcp250-185.yandex.ru [87.250.250.185]) by relanium.yandex.ru (8.14.1/8.14.1) with ESMTP id lA7ITSEM084101 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 7 Nov 2007 21:29:29 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.local.yandex.ru (localhost [127.0.0.1]) by sepulcator.local.yandex.ru (8.14.1/8.13.8) with ESMTP id lA7ITSjQ066621; Wed, 7 Nov 2007 21:29:28 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: (from dindin@localhost) by sepulcator.local.yandex.ru (8.14.1/8.13.8/Submit) id lA7ITSji066620; Wed, 7 Nov 2007 21:29:28 +0300 (MSK) (envelope-from dindin@yandex-team.ru) X-Authentication-Warning: sepulcator.yandex.ru: dindin set sender to dindin@yandex-team.ru using -f Date: Wed, 7 Nov 2007 21:29:28 +0300 From: Denis Barov To: freebsd-net@freebsd.org Message-ID: <20071107182928.GA66533@sepulcator.local.yandex.ru> Mail-Followup-To: Denis Barov , freebsd-net@freebsd.org, freebsd-ports@freebsd.org, thompsa@freebsd.org, ports@FreeBSD.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="fdj2RfSjLxBAspz7" Content-Disposition: inline X-Operating-System: FreeBSD sepulcator.local.yandex.ru 7.0-BETA2 FreeBSD 7.0-BETA2 User-Agent: mutt-ng/devel-r804 (FreeBSD) X-Antivirus: Dr.Web (R) for Mail Servers on relanium.yandex.ru host X-Antivirus-Code: 100000 Cc: ports@freebsd.org, thompsa@freebsd.org, freebsd-ports@freebsd.org Subject: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 18:46:13 -0000 --fdj2RfSjLxBAspz7 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi all! I found, that port net-mgmt/bsd-airtools marked as broken: BROKEN=3D Does not compile with GCC 4.2 but, it's not really so.=20 It's broken after Wed Jul 11 21:25:48 2007 UTC commit by thompsa@freebsd.org, when some ioctls was deleted from kernel. For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h bsd-airtools compiled well: --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 19:36:15.000000000 +0300 +++ /usr/src/sys/dev/wi/if_wavelan_ieee.h 2007-07-12 01:25:48.000000000 +0400 @@ -59,7 +59,7 @@ */ #define WI_MAX_DATALEN 512 =20 -#if 1 +#if 0 struct wi_req { u_int16_t wi_len; u_int16_t wi_type; But, still missing some ioctls. dstumbler said error: unable to ioctl device socket: Invalid argument May be I can do something helpful? --=20 Denis Barov Yandex http://www.yandex.ru WEB-Search Administtration Team e-mail: dindin@yandex-team.ru --fdj2RfSjLxBAspz7 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iQCVAwUBRzIEBrQNqrxww2yeAQJRbAQAzoKO8b92kl3b7gLOsGFy6JLeCn/++ENP NurAfqRms6TF6kTn/wG7T2FEovNhWNibYbWrj49zgkwpoV3uXWjJRLUC7Xh1FaRP BhmexfK+ErVbV5HiVeuuZCRBRqXMZoci9p8I4X/l2g5EBbPom9pHZdtpbygEAtAT SJqqaXuad6c= =1Zbr -----END PGP SIGNATURE----- --fdj2RfSjLxBAspz7-- From owner-freebsd-net@FreeBSD.ORG Wed Nov 7 21:22:50 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 40C9516A421 for ; Wed, 7 Nov 2007 21:22:50 +0000 (UTC) (envelope-from ericx@vineyard.net) Received: from vineyard.net (k1.vineyard.net [204.17.195.90]) by mx1.freebsd.org (Postfix) with ESMTP id 0F18313C4B8 for ; Wed, 7 Nov 2007 21:22:50 +0000 (UTC) (envelope-from ericx@vineyard.net) Received: from localhost (loopback [127.0.0.1]) by vineyard.net (Postfix) with ESMTP id 3D46D9151C for ; Wed, 7 Nov 2007 16:03:29 -0500 (EST) X-Virus-Scanned: by AMaViS-king1 at Vineyard.NET Received: from vineyard.net ([127.0.0.1]) by localhost (king1.vineyard.net [127.0.0.1]) (amavisd-new, port 10024) with LMTP id d-FOHsFmZRPX for ; Wed, 7 Nov 2007 16:03:29 -0500 (EST) Received: from cheesenip.vineyard.net (cheesenip.vineyard.net [204.17.195.113]) by vineyard.net (Postfix) with ESMTP id DD51F9151B for ; Wed, 7 Nov 2007 16:03:28 -0500 (EST) Message-ID: <47322820.90300@vineyard.net> Date: Wed, 07 Nov 2007 16:03:28 -0500 From: "Eric W. Bates" Organization: Vineyard.NET, Inc. User-Agent: Thunderbird 2.0.0.0 (X11/20070606) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: ospf over IPSec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Nov 2007 21:22:50 -0000 I have to try and get OSPF working over an ESP tunnel. The idea is to allow graceful fall over between a dedicated T1 and a backup tunnel over the Internet. I just realized that without an esp0 interface in ifconfig, and without the IPSec associations accessible in the routing table, I have no idea whether this is even possible. Has anyone successfully used OSPF over a tunnel? Can you recommend a routing program? We've been very happy with zebra over the years; but I understand OpenOSPF and Quagga might be the current favorites. Thanks for your time. -- Eric W. Bates ericx@vineyard.net From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 05:37:02 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7C29316A41A; Thu, 8 Nov 2007 05:37:02 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from mail.ciam.ru (ns.ciam.ru [213.247.195.75]) by mx1.freebsd.org (Postfix) with ESMTP id 2572E13C48A; Thu, 8 Nov 2007 05:37:02 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from [87.240.16.199] (helo=solem.sem-home.ciam.ru) by mail.ciam.ru with esmtpa (Exim 4.x) id 1IpzWT-000GqO-GB; Thu, 08 Nov 2007 08:01:45 +0300 Message-ID: <473297D0.6010705@FreeBSD.org> Date: Thu, 08 Nov 2007 08:00:00 +0300 From: Sergey Matveychuk User-Agent: Thunderbird 2.0.0.6 (X11/20070826) MIME-Version: 1.0 To: Denis Barov , freebsd-net@freebsd.org, freebsd-ports@freebsd.org, thompsa@freebsd.org, ports@FreeBSD.org References: <20071107182928.GA66533@sepulcator.local.yandex.ru> In-Reply-To: <20071107182928.GA66533@sepulcator.local.yandex.ru> Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 05:37:02 -0000 Denis Barov wrote: > Hi all! > I found, that port net-mgmt/bsd-airtools marked as broken: > > BROKEN= Does not compile with GCC 4.2 > > but, it's not really so. > > It's broken after Wed Jul 11 21:25:48 2007 UTC commit by > thompsa@freebsd.org, when some ioctls was deleted from kernel. > > For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h > bsd-airtools compiled well: > > --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 > 19:36:15.000000000 +0300 > +++ /usr/src/sys/dev/wi/if_wavelan_ieee.h 2007-07-12 > 01:25:48.000000000 +0400 > @@ -59,7 +59,7 @@ > */ > #define WI_MAX_DATALEN 512 > > -#if 1 > +#if 0 > struct wi_req { > u_int16_t wi_len; > u_int16_t wi_type; > > > But, still missing some ioctls. dstumbler said > error: unable to ioctl device socket: Invalid argument > > May be I can do something helpful? I guess you should back not just these header definitions but ioctl implementations too. Or ask thompsa if you could use something instead. -- Dixi. Sem. From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 05:50:24 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 822B616A417 for ; Thu, 8 Nov 2007 05:50:24 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id 090BE13C48D for ; Thu, 8 Nov 2007 05:50:23 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 660DA5ECD; Thu, 8 Nov 2007 18:50:10 +1300 (NZDT) Date: Thu, 8 Nov 2007 18:50:10 +1300 From: Andrew Thompson To: Sergey Matveychuk Message-ID: <20071108055010.GA62962@heff.fud.org.nz> References: <20071107182928.GA66533@sepulcator.local.yandex.ru> <473297D0.6010705@FreeBSD.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <473297D0.6010705@FreeBSD.org> User-Agent: Mutt/1.5.16 (2007-06-09) Cc: ports@FreeBSD.org, freebsd-net@freebsd.org, Denis Barov , freebsd-ports@freebsd.org Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 05:50:24 -0000 On Thu, Nov 08, 2007 at 08:00:00AM +0300, Sergey Matveychuk wrote: > Denis Barov wrote: >> Hi all! >> I found, that port net-mgmt/bsd-airtools marked as broken: >> BROKEN= Does not compile with GCC 4.2 >> but, it's not really so. It's broken after Wed Jul 11 21:25:48 2007 UTC >> commit by >> thompsa@freebsd.org, when some ioctls was deleted from kernel. >> For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h >> bsd-airtools compiled well: >> --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 >> 19:36:15.000000000 +0300 >> +++ /usr/src/sys/dev/wi/if_wavelan_ieee.h 2007-07-12 >> 01:25:48.000000000 +0400 >> @@ -59,7 +59,7 @@ >> */ >> #define WI_MAX_DATALEN 512 >> -#if 1 >> +#if 0 >> struct wi_req { >> u_int16_t wi_len; >> u_int16_t wi_type; >> But, still missing some ioctls. dstumbler said >> error: unable to ioctl device socket: Invalid argument >> May be I can do something helpful? > > I guess you should back not just these header definitions but ioctl > implementations too. Or ask thompsa if you could use something instead. The net80211 system supports the IEEE80211_IOC_SCAN_REQ and IEEE80211_IOC_SCAN_RESULTS ioctls which work on _all_ wireless interfaces. These have been present since 6.0 and the above wi(4) specific interface have been removed as the driver has been brought into line. cheers, Andrew From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 07:20:26 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5752316A41A for ; Thu, 8 Nov 2007 07:20:26 +0000 (UTC) (envelope-from emss@free.fr) Received: from kraid.nerim.net (kraid.ipv6.nerim.net [IPv6:2001:7a8:1:1::95]) by mx1.freebsd.org (Postfix) with ESMTP id C8CDB13C48D for ; Thu, 8 Nov 2007 07:20:25 +0000 (UTC) (envelope-from emss@free.fr) Received: from srvbsdnanssv.interne.kisoft-services.com (kisoft.net1.nerim.net [62.212.107.51]) by kraid.nerim.net (Postfix) with ESMTP id 19194CF0C3; Thu, 8 Nov 2007 08:20:24 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by srvbsdnanssv.interne.kisoft-services.com (Postfix) with ESMTP id 15E331708F; Thu, 8 Nov 2007 08:20:23 +0100 (CET) X-Virus-Scanned: amavisd-new at interne.kisoft-services.com Received: from srvbsdnanssv.interne.kisoft-services.com ([127.0.0.1]) by localhost (srvbsdnanssv.interne.kisoft-services.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P2I6BWpVmYLj; Thu, 8 Nov 2007 08:20:19 +0100 (CET) Received: by srvbsdnanssv.interne.kisoft-services.com (Postfix, from userid 1001) id D036117111; Thu, 8 Nov 2007 08:20:19 +0100 (CET) To: "Eric W. Bates" From: Eric Masson In-Reply-To: <47322820.90300@vineyard.net> (Eric W. Bates's message of "Wed, 07 Nov 2007 16:03:28 -0500") References: <47322820.90300@vineyard.net> X-Operating-System: FreeBSD 6.2-RELEASE-p7 i386 Date: Thu, 08 Nov 2007 08:20:19 +0100 Message-ID: <861wb1ryoc.fsf@srvbsdnanssv.interne.kisoft-services.com> User-Agent: Gnus/5.1008 (Gnus v5.10.8) XEmacs/21.5-b28 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 8bit Cc: freebsd-net@freebsd.org Subject: Re: ospf over IPSec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 07:20:26 -0000 "Eric W. Bates" writes: Hi, > Has anyone successfully used OSPF over a tunnel? Just look here : http://rfc-ref.org/RFC-TEXTS/3884/ -- S> Je cherche aussi des adresses de lieux contenant des fossiles dans S> la région parisienne http://www.senat.fr/ -+- DP in : La dianurette et les fossiles -+- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 09:23:01 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 63E6C16A417; Thu, 8 Nov 2007 09:23:01 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from relanium.yandex.ru (relanium.yandex.ru [213.180.193.88]) by mx1.freebsd.org (Postfix) with ESMTP id C094613C48A; Thu, 8 Nov 2007 09:23:00 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.yandex.ru (dhcp250-185.yandex.ru [87.250.250.185]) by relanium.yandex.ru (8.14.1/8.14.1) with ESMTP id lA89Mfdb040391 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 8 Nov 2007 12:22:41 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.yandex.ru (localhost [127.0.0.1]) by sepulcator.yandex.ru (8.14.1/8.13.8) with ESMTP id lA89Mf4R001965; Thu, 8 Nov 2007 12:22:41 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: (from dindin@localhost) by sepulcator.yandex.ru (8.14.1/8.13.8/Submit) id lA89MfDV001964; Thu, 8 Nov 2007 12:22:41 +0300 (MSK) (envelope-from dindin@yandex-team.ru) X-Authentication-Warning: sepulcator.yandex.ru: dindin set sender to dindin@yandex-team.ru using -f Date: Thu, 8 Nov 2007 12:22:41 +0300 From: Denis Barov To: freebsd-net@freebsd.org, freebsd-ports@freebsd.org Message-ID: <20071108092241.GC1777@sepulcator.yandex.ru> Mail-Followup-To: Denis Barov , freebsd-net@freebsd.org, freebsd-ports@freebsd.org References: <20071107182928.GA66533@sepulcator.local.yandex.ru> <473297D0.6010705@FreeBSD.org> <20071108055010.GA62962@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="OXfL5xGRrasGEqWY" Content-Disposition: inline In-Reply-To: <20071108055010.GA62962@heff.fud.org.nz> X-Operating-System: FreeBSD sepulcator.yandex.ru 7.0-BETA2 FreeBSD 7.0-BETA2 User-Agent: mutt-ng/devel-r804 (FreeBSD) X-Antivirus: Dr.Web (R) for Mail Servers on relanium.yandex.ru host X-Antivirus-Code: 100000 Cc: Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 09:23:01 -0000 --OXfL5xGRrasGEqWY Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu Nov 08, 2007 at 18:50:10 +1300, Andrew Thompson wrote: > On Thu, Nov 08, 2007 at 08:00:00AM +0300, Sergey Matveychuk wrote: > > Denis Barov wrote: > >> Hi all! > >> I found, that port net-mgmt/bsd-airtools marked as broken: > >> BROKEN=3D Does not compile with GCC 4.2 > >> but, it's not really so. It's broken after Wed Jul 11 21:25:48 2007 UT= C=20 > >> commit by > >> thompsa@freebsd.org, when some ioctls was deleted from kernel. > >> For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h > >> bsd-airtools compiled well: > >> --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 > >> 19:36:15.000000000 +0300 > >> +++ /usr/src/sys/dev/wi/if_wavelan_ieee.h 2007-07-12 > >> 01:25:48.000000000 +0400 > >> @@ -59,7 +59,7 @@ > >> */ > >> #define WI_MAX_DATALEN 512 > >> -#if 1 > >> +#if 0 > >> struct wi_req { > >> u_int16_t wi_len; > >> u_int16_t wi_type; > >> But, still missing some ioctls. dstumbler said > >> error: unable to ioctl device socket: Invalid argument > >> May be I can do something helpful? > > > > I guess you should back not just these header definitions but ioctl=20 > > implementations too. Or ask thompsa if you could use something instead. >=20 > The net80211 system supports the IEEE80211_IOC_SCAN_REQ and > IEEE80211_IOC_SCAN_RESULTS ioctls which work on _all_ wireless > interfaces. These have been present since 6.0 and the above wi(4) > specific interface have been removed as the driver has been brought into > line. >=20 >=20 > cheers, > Andrew > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" Does that mean I need to rewrite some bsd-airtools code? --=20 Denis Barov Yandex http://www.yandex.ru WEB-Search Administtration Team e-mail: dindin@yandex-team.ru --OXfL5xGRrasGEqWY Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iQCVAwUBRzLVYLQNqrxww2yeAQISUAQAx8EuR4hu37/mRMuGdrCFU5PHD56CUNF9 W6kmKWwzRUwgmU5EX4kdbpfT19irjXdZNOjErrpKx1+Huem+GQTxZ4SYCp9ei1ca tWnCIfR7qKic7yACPRT6YZI8EaOHGxsGi/ZmeVUTNpwdai5DcRr7g+DHygw1YcAr Zjwu+BHq2XM= =fzag -----END PGP SIGNATURE----- --OXfL5xGRrasGEqWY-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 09:35:42 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C053316A417; Thu, 8 Nov 2007 09:35:42 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id 579F913C491; Thu, 8 Nov 2007 09:35:42 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 2F0875F26; Thu, 8 Nov 2007 22:35:31 +1300 (NZDT) Date: Thu, 8 Nov 2007 22:35:31 +1300 From: Andrew Thompson To: Denis Barov , freebsd-net@freebsd.org, freebsd-ports@freebsd.org Message-ID: <20071108093531.GA65172@heff.fud.org.nz> References: <20071107182928.GA66533@sepulcator.local.yandex.ru> <473297D0.6010705@FreeBSD.org> <20071108055010.GA62962@heff.fud.org.nz> <20071108092241.GC1777@sepulcator.yandex.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071108092241.GC1777@sepulcator.yandex.ru> User-Agent: Mutt/1.5.16 (2007-06-09) Cc: Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 09:35:42 -0000 On Thu, Nov 08, 2007 at 12:22:41PM +0300, Denis Barov wrote: > On Thu Nov 08, 2007 at 18:50:10 +1300, Andrew Thompson wrote: > > On Thu, Nov 08, 2007 at 08:00:00AM +0300, Sergey Matveychuk wrote: > > > Denis Barov wrote: > > >> Hi all! > > >> I found, that port net-mgmt/bsd-airtools marked as broken: > > >> BROKEN= Does not compile with GCC 4.2 > > >> but, it's not really so. It's broken after Wed Jul 11 21:25:48 2007 UTC > > >> commit by > > >> thompsa@freebsd.org, when some ioctls was deleted from kernel. > > >> For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h > > >> bsd-airtools compiled well: > > >> --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 > > > > > > I guess you should back not just these header definitions but ioctl > > > implementations too. Or ask thompsa if you could use something instead. > > > > The net80211 system supports the IEEE80211_IOC_SCAN_REQ and > > IEEE80211_IOC_SCAN_RESULTS ioctls which work on _all_ wireless > > interfaces. These have been present since 6.0 and the above wi(4) > > specific interface have been removed as the driver has been brought into > > line. > > Does that mean I need to rewrite some bsd-airtools code? Yes, src/sbin/ifconfig/ifieee80211.c is the best reference and others have already converted other wireless scanning apps. Andrew From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 09:54:44 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7583216A41A; Thu, 8 Nov 2007 09:54:44 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from relanium.yandex.ru (relanium.yandex.ru [213.180.193.88]) by mx1.freebsd.org (Postfix) with ESMTP id A1CE313C48A; Thu, 8 Nov 2007 09:54:43 +0000 (UTC) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.yandex.ru (dhcp250-185.yandex.ru [87.250.250.185]) by relanium.yandex.ru (8.14.1/8.14.1) with ESMTP id lA89sZ38047795 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 8 Nov 2007 12:54:35 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: from sepulcator.yandex.ru (localhost [127.0.0.1]) by sepulcator.yandex.ru (8.14.1/8.13.8) with ESMTP id lA89sZBa002362; Thu, 8 Nov 2007 12:54:35 +0300 (MSK) (envelope-from dindin@yandex-team.ru) Received: (from dindin@localhost) by sepulcator.yandex.ru (8.14.1/8.13.8/Submit) id lA89sZT6002361; Thu, 8 Nov 2007 12:54:35 +0300 (MSK) (envelope-from dindin@yandex-team.ru) X-Authentication-Warning: sepulcator.yandex.ru: dindin set sender to dindin@yandex-team.ru using -f Date: Thu, 8 Nov 2007 12:54:35 +0300 From: Denis Barov To: freebsd-net@freebsd.org, freebsd-ports@freebsd.org Message-ID: <20071108095435.GE1777@sepulcator.yandex.ru> Mail-Followup-To: Denis Barov , freebsd-net@freebsd.org, freebsd-ports@freebsd.org References: <20071107182928.GA66533@sepulcator.local.yandex.ru> <473297D0.6010705@FreeBSD.org> <20071108055010.GA62962@heff.fud.org.nz> <20071108092241.GC1777@sepulcator.yandex.ru> <20071108093531.GA65172@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="c3bfwLpm8qysLVxt" Content-Disposition: inline In-Reply-To: <20071108093531.GA65172@heff.fud.org.nz> X-Operating-System: FreeBSD sepulcator.yandex.ru 7.0-BETA2 FreeBSD 7.0-BETA2 User-Agent: mutt-ng/devel-r804 (FreeBSD) X-Antivirus: Dr.Web (R) for Mail Servers on relanium.yandex.ru host X-Antivirus-Code: 100000 Cc: Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 09:54:44 -0000 --c3bfwLpm8qysLVxt Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu Nov 08, 2007 at 22:35:31 +1300, Andrew Thompson wrote: > On Thu, Nov 08, 2007 at 12:22:41PM +0300, Denis Barov wrote: > > On Thu Nov 08, 2007 at 18:50:10 +1300, Andrew Thompson wrote: > > > On Thu, Nov 08, 2007 at 08:00:00AM +0300, Sergey Matveychuk wrote: > > > > Denis Barov wrote: > > > >> Hi all! > > > >> I found, that port net-mgmt/bsd-airtools marked as broken: > > > >> BROKEN=3D Does not compile with GCC 4.2 > > > >> but, it's not really so. It's broken after Wed Jul 11 21:25:48 200= 7 UTC=20 > > > >> commit by > > > >> thompsa@freebsd.org, when some ioctls was deleted from kernel. > > > >> For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h > > > >> bsd-airtools compiled well: > > > >> --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 > > > > > > > > I guess you should back not just these header definitions but ioctl= =20 > > > > implementations too. Or ask thompsa if you could use something inst= ead. > > >=20 > > > The net80211 system supports the IEEE80211_IOC_SCAN_REQ and > > > IEEE80211_IOC_SCAN_RESULTS ioctls which work on _all_ wireless > > > interfaces. These have been present since 6.0 and the above wi(4) > > > specific interface have been removed as the driver has been brought i= nto > > > line. > >=20 > > Does that mean I need to rewrite some bsd-airtools code? >=20 > Yes, src/sbin/ifconfig/ifieee80211.c is the best reference and others > have already converted other wireless scanning apps. >=20 I'll try. --=20 Denis Barov Yandex http://www.yandex.ru WEB-Search Administtration Team e-mail: dindin@yandex-team.ru --c3bfwLpm8qysLVxt Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iQCVAwUBRzLc2rQNqrxww2yeAQJnkAP/eFuj3Ktlp483QK4kpWt7STSAXjiwa2mu LiAh2XARWoeGUSN+hHA+0V/YV4X4uHKOh1F0Ij0JD9Sy7xfv8HNm3gKlixreTLak sFmdLlrFeUE9z7kdXqO6VN3IHi1weseKxoMluxuoU8d6grFpkIPkt48oZ/RczBsl Mu5ZgxmTP3I= =hED9 -----END PGP SIGNATURE----- --c3bfwLpm8qysLVxt-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 11:26:00 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 09F6216A421 for ; Thu, 8 Nov 2007 11:26:00 +0000 (UTC) (envelope-from hg@sircon.no) Received: from public.sircon.net (public.sircon.net [82.116.79.123]) by mx1.freebsd.org (Postfix) with SMTP id 3899213C480 for ; Thu, 8 Nov 2007 11:25:59 +0000 (UTC) (envelope-from hg@sircon.no) Received: (qmail 38729 invoked by uid 0); 8 Nov 2007 10:59:11 -0000 Received: from [82.116.79.55] by public.sircon.net ESMTP MEsmtpd (v1.04 [2004-11-17] on FreeBSD i386) (c) Martin Edenhofer; Thu Nov 8 11:59:11 2007 X-MEsmtpd-Page: http://martin.edenhofer.de/Projects X-MEsmtpd-Sender: sircon.no/sircon.no on 82.116.79.55 X-MEsmtpd-Abuse: Report spam/abuse to abuse@sircon.no Message-ID: <4732EC16.6060800@sircon.no> Date: Thu, 08 Nov 2007 11:59:34 +0100 From: =?ISO-8859-1?Q?H=E5kon_Granlund?= Organization: SirCon as User-Agent: Thunderbird 1.5.0.14pre (X11/20071023) MIME-Version: 1.0 To: Klavs Klavsen References: <2522.62.242.232.132.1194275152.squirrel@www.enableit.dk> In-Reply-To: <2522.62.242.232.132.1194275152.squirrel@www.enableit.dk> X-Enigmail-Version: 0.94.2.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-Mesmtpd-Mailerfrom: =?ISO-8859-1?Q?H=E5kon_Granlund?= Cc: freebsd-net@freebsd.org Subject: Re: Anyone using CARP on vlans? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 11:26:00 -0000 Klavs Klavsen wrote: > Hi guys, > > I can see that there's been problems in the past with CARP and vlan support. > > I would be happy, if you could tell me if you have any experience with > running carp on vlan interfaces? > > I intend to run it on a FreeBSD 6.2 with em interfaces. This works fine > for another firewall, but it has no vlans. > We've been using CARP on both virtual and physical NICs for almost two years. I haven't seen anything directly related to VLANs, but rather on CARP. We're using re, em, xl, bge, sk and even the dc drivers - as both vlandev and vanilla. Here's one of the PRs (there are a couple, but I think they're all referring to the same bug) http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/92776 The patch committed doesn't fix the problem on my end, though. As long as you don't touch the CARPs once they're up you're ok. For a never-changing network that we're running, that's ok. Besides, we have two CARP-machines, so if one hits the panic, the other does the job very well. -- Håkon From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 15:42:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ECF9916A418; Thu, 8 Nov 2007 15:42:16 +0000 (UTC) (envelope-from sam@errno.com) Received: from ebb.errno.com (ebb.errno.com [69.12.149.25]) by mx1.freebsd.org (Postfix) with ESMTP id 9C72413C491; Thu, 8 Nov 2007 15:42:16 +0000 (UTC) (envelope-from sam@errno.com) Received: from trouble.errno.com (trouble.errno.com [10.0.0.248]) (authenticated bits=0) by ebb.errno.com (8.13.6/8.12.6) with ESMTP id lA8Fg9mc008922 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 8 Nov 2007 07:42:09 -0800 (PST) (envelope-from sam@errno.com) Message-ID: <47332E51.8030700@errno.com> Date: Thu, 08 Nov 2007 07:42:09 -0800 From: Sam Leffler User-Agent: Thunderbird 2.0.0.6 (X11/20070814) MIME-Version: 1.0 To: Andrew Thompson References: <20071107182928.GA66533@sepulcator.local.yandex.ru> <473297D0.6010705@FreeBSD.org> <20071108055010.GA62962@heff.fud.org.nz> <20071108092241.GC1777@sepulcator.yandex.ru> <20071108093531.GA65172@heff.fud.org.nz> In-Reply-To: <20071108093531.GA65172@heff.fud.org.nz> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-DCC-Rhyolite-Metrics: o.com; whitelist Cc: freebsd-net@freebsd.org, Denis Barov , freebsd-ports@freebsd.org Subject: Re: net-mgmt/bsd-airtools broken not because of gcc4 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 15:42:17 -0000 Andrew Thompson wrote: > On Thu, Nov 08, 2007 at 12:22:41PM +0300, Denis Barov wrote: > >> On Thu Nov 08, 2007 at 18:50:10 +1300, Andrew Thompson wrote: >> >>> On Thu, Nov 08, 2007 at 08:00:00AM +0300, Sergey Matveychuk wrote: >>> >>>> Denis Barov wrote: >>>> >>>>> Hi all! >>>>> I found, that port net-mgmt/bsd-airtools marked as broken: >>>>> BROKEN= Does not compile with GCC 4.2 >>>>> but, it's not really so. It's broken after Wed Jul 11 21:25:48 2007 UTC >>>>> commit by >>>>> thompsa@freebsd.org, when some ioctls was deleted from kernel. >>>>> For example, after patching /usr/include/dev/wi/if_wavelan_ieee.h >>>>> bsd-airtools compiled well: >>>>> --- /usr/include/dev/wi/if_wavelan_ieee.h 2007-11-07 >>>>> >>>> I guess you should back not just these header definitions but ioctl >>>> implementations too. Or ask thompsa if you could use something instead. >>>> >>> The net80211 system supports the IEEE80211_IOC_SCAN_REQ and >>> IEEE80211_IOC_SCAN_RESULTS ioctls which work on _all_ wireless >>> interfaces. These have been present since 6.0 and the above wi(4) >>> specific interface have been removed as the driver has been brought into >>> line. >>> >> Does that mean I need to rewrite some bsd-airtools code? >> > > Yes, src/sbin/ifconfig/ifieee80211.c is the best reference and others > have already converted other wireless scanning apps. > > I can't recall if dstumbler is part of airtools but I've had a hack port to the new ioctls sitting here for years: http://www.freebsd.org/~sam/dstumbler.tgz It's certainly bitrot'd. I gave up trying to get the maintainer's attention long ago. OTOH ifconfig's code is definitely the best reference right now. wpa_supplicant also does scanning; check usr.sbin/wpa/wpa_supplicant/driver_freebsd.c. Sam From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 19:28:22 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5D55316A4A6 for ; Thu, 8 Nov 2007 19:28:22 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (tim.des.no [194.63.250.121]) by mx1.freebsd.org (Postfix) with ESMTP id 1908213C4D3 for ; Thu, 8 Nov 2007 19:28:22 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (localhost [127.0.0.1]) by spam.des.no (Postfix) with ESMTP id A0938208F for ; Thu, 8 Nov 2007 20:08:52 +0100 (CET) X-Spam-Tests: AWL X-Spam-Learn: disabled X-Spam-Score: -0.1/3.0 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on tim.des.no Received: from ds4.des.no (des.no [80.203.243.180]) by smtp.des.no (Postfix) with ESMTP id 736B4209E for ; Thu, 8 Nov 2007 20:08:52 +0100 (CET) Received: by ds4.des.no (Postfix, from userid 1001) id 58770844A6; Thu, 8 Nov 2007 20:08:52 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: net@freebsd.org Date: Thu, 08 Nov 2007 20:08:52 +0100 Message-ID: <86zlxoblmj.fsf@ds4.des.no> User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: Subject: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 19:28:22 -0000 Given appropriate definitions for $eth and $lan, you'd expect the following rule to simply pass all traffic originating from and destined for the LAN: pass on $eth from $lan to $lan However, in pf, "keep state" is *implicit* (why?), so you'd expect it to turn into something like this: pass on $eth from $lan to $lan keep state but what you actually get is this: pass on $eth from $lan to $lan flags S/SA keep state which only matches TCP handshakes, so your UDP streams are screwed. Workaround: explicitly specify TCP and UDP, causing pf to split the rule into two: pass on $eth inet proto { tcp, udp } from $lan to $lan becomes pass on $eth inet proto tcp from $lan to $lan flags S/SA keep state pass on $eth inet proto udp from $lan to $lan keep state There does not seem to be any way to turn off this misguided rewriting of firewall rules. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 19:43:41 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DF98116A41A for ; Thu, 8 Nov 2007 19:43:41 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.174]) by mx1.freebsd.org (Postfix) with ESMTP id 6E8C713C4C6 for ; Thu, 8 Nov 2007 19:43:41 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-049-089.pools.arcor-ip.net [88.66.49.89]) by mrelayeu.kundenserver.de (node=mrelayeu7) with ESMTP (Nemesis) id 0ML2xA-1IqDHp2t0W-000557; Thu, 08 Nov 2007 20:43:34 +0100 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Thu, 8 Nov 2007 20:43:22 +0100 User-Agent: KMail/1.9.7 References: <86zlxoblmj.fsf@ds4.des.no> In-Reply-To: <86zlxoblmj.fsf@ds4.des.no> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart4037246.dFbJLhBaAX"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200711082043.31664.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18fB3coJvGiSMlOiMwwiLnGUXAZg2e7dfvbqDI E5EHp9x7GJWXKksWLIw5p5JLTlFYNDP4cJ8a+PbtKY0fObie1G DrsFXKFw6QNuuUWc3PU7cAJvy5M6C1Bmrp6NApPwjo= Cc: Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 19:43:42 -0000 --nextPart4037246.dFbJLhBaAX Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > Given appropriate definitions for $eth and $lan, you'd expect the > following rule to simply pass all traffic originating from and destined > for the LAN: > > pass on $eth from $lan to $lan > > However, in pf, "keep state" is *implicit* (why?), so you'd expect it > to turn into something like this: > > pass on $eth from $lan to $lan keep state > > but what you actually get is this: > > pass on $eth from $lan to $lan flags S/SA keep state > > which only matches TCP handshakes, so your UDP streams are screwed. I don't think this is true. It will match any protocol, but if it is tcp=20 it will make sure it's the initial SYN. This is necessary in order to=20 have the state tracking work with window scaling etc. In my quick testing, icmp and udp both match the expanded rule. > Workaround: explicitly specify TCP and UDP, causing pf to split the > rule into two: > > pass on $eth inet proto { tcp, udp } from $lan to $lan > > becomes > > pass on $eth inet proto tcp from $lan to $lan flags S/SA keep state > pass on $eth inet proto udp from $lan to $lan keep state > > There does not seem to be any way to turn off this misguided rewriting > of firewall rules. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart4037246.dFbJLhBaAX Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHM2bjXyyEoT62BG0RAtPzAJ9LXUs7iBmmOwpu9z0SPVlx9sqGXwCaAreA Xgi5RouXTetQd1Z3z7V6dk4= =C2aX -----END PGP SIGNATURE----- --nextPart4037246.dFbJLhBaAX-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 20:01:26 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 241F616A418 for ; Thu, 8 Nov 2007 20:01:26 +0000 (UTC) (envelope-from robert@blacquiere.nl) Received: from smtp-vbr10.xs4all.nl (smtp-vbr10.xs4all.nl [194.109.24.30]) by mx1.freebsd.org (Postfix) with ESMTP id B0DBE13C4C1 for ; Thu, 8 Nov 2007 20:01:25 +0000 (UTC) (envelope-from robert@blacquiere.nl) Received: from guldan-dsl.demon.nl (guldan-dsl.demon.nl [83.160.7.100]) by smtp-vbr10.xs4all.nl (8.13.8/8.13.8) with ESMTP id lA8JoJeM008182; Thu, 8 Nov 2007 20:50:19 +0100 (CET) (envelope-from robert@blacquiere.nl) Received: from shellvm.blacquiere.nl ([192.168.201.5] helo=shell.blacquiere.nl) by guldan-dsl.demon.nl with esmtp (Exim 4.66 (FreeBSD)) (envelope-from ) id 1IqDOH-000JKO-M2; Thu, 08 Nov 2007 20:50:18 +0100 Date: Thu, 8 Nov 2007 20:50:13 +0100 From: Robert Blacquiere To: Dag-Erling Sm??rgrav Message-ID: <20071108195013.GD5029@shellvm.blacquiere.nl> References: <86zlxoblmj.fsf@ds4.des.no> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <86zlxoblmj.fsf@ds4.des.no> User-Agent: Mutt/1.4.2.2i X-Disclaimer: running FreeBSD X-SA-Exim-Connect-IP: 192.168.201.5 X-SA-Exim-Mail-From: robert@blacquiere.nl X-Spam-Checker-Version: SpamAssassin 3.1.8 (2007-02-13) on mailvm.blacquiere.nl X-Spam-Level: X-Spam-Status: No, score=-4.4 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.1.8 X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on guldan-dsl.demon.nl) X-Virus-Scanned: by XS4ALL Virus Scanner Cc: net@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 20:01:26 -0000 On Thu, Nov 08, 2007 at 08:08:52PM +0100, Dag-Erling Sm??rgrav wrote: > Given appropriate definitions for $eth and $lan, you'd expect the > following rule to simply pass all traffic originating from and destined > for the LAN: > > pass on $eth from $lan to $lan > > However, in pf, "keep state" is *implicit* (why?), so you'd expect it to > turn into something like this: I think this was turned on in the OpenBSD as of 4.0 i think. Default keep state. To negate this behavour in OpenBSD pf you can add no state : pass on $eth from $lan to $lan no state I'me not sure if this also works on FreeBSD Regards -- Microsoft: Where do you want to go today? Linux: Where do you want to go tomorrow? FreeBSD: Are you guys coming or what? OpenBSD: Hey guys you left some holes out there! From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 20:06:33 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E604216A417 for ; Thu, 8 Nov 2007 20:06:32 +0000 (UTC) (envelope-from mail@oliroll.de) Received: from wp056.webpack.hosteurope.de (wp056.webpack.hosteurope.de [80.237.132.63]) by mx1.freebsd.org (Postfix) with ESMTP id 84AE813C4A6 for ; Thu, 8 Nov 2007 20:06:32 +0000 (UTC) (envelope-from mail@oliroll.de) Received: from dslb-084-056-150-191.pools.arcor-ip.net ([84.56.150.191] helo=[192.168.178.21]); authenticated by wp056.webpack.hosteurope.de running ExIM using esmtpsa (TLSv1:RC4-MD5:128) id 1IqDNF-0003Wf-Hf; Thu, 08 Nov 2007 20:49:09 +0100 Message-ID: <47336835.8010405@oliroll.de> Date: Thu, 08 Nov 2007 20:49:09 +0100 From: Oliver Roll User-Agent: Thunderbird 2.0.0.6 (X11/20070801) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit X-bounce-key: webpack.hosteurope.de;mail@oliroll.de;1194552392;8ba67846; Subject: Activating both options IPSEC and SCTP in kernel fails X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 20:06:33 -0000 Hello all, I want to enable both IPSEC and SCTP on my FreeBSD 6.2 machines. I applied the newest kernel patch from sctp.org (of september 2007) and activated options SCTP. This works well, SCTP works well. It is also possible to activate options IPSEC and compile a kernel but unfortunately _not_ in combination with options SCTP. Those are the errors occurring when trying to make buildkernel with both options activated: In file included from /usr/src/sys/netipsec/ipsec.h:46, from /usr/src/sys/netinet/sctp_os_bsd.h:78, from /usr/src/sys/netinet/sctp_os.h:59, from /usr/src/sys/netinet/sctp_pcb.h:39, from /usr/src/sys/netinet/in_proto.c:92: /usr/src/sys/netipsec/keydb.h:54: error: redefinition of `struct secasindex' /usr/src/sys/netipsec/keydb.h:64: error: redefinition of `struct secashead' /usr/src/sys/netipsec/keydb.h:74: error: redefinition of `struct _satree' /usr/src/sys/netipsec/keydb.h:78: error: syntax error before '.' token /usr/src/sys/netipsec/keydb.h:87: error: redefinition of `struct secasvar' /usr/src/sys/netipsec/keydb.h:139: error: redefinition of `struct secreplay' /usr/src/sys/netipsec/keydb.h:149: error: redefinition of `struct secreg' /usr/src/sys/netipsec/keydb.h:156: error: redefinition of `struct secacq' [...snipped some warnings...] In file included from /usr/src/sys/netinet/sctp_os_bsd.h:78, from /usr/src/sys/netinet/sctp_os.h:59, from /usr/src/sys/netinet/sctp_pcb.h:39, from /usr/src/sys/netinet/in_proto.c:92: /usr/src/sys/netipsec/ipsec.h:57: error: redefinition of `struct secpolicyindex' /usr/src/sys/netipsec/ipsec.h:73: error: redefinition of `struct secpolicy' /usr/src/sys/netipsec/ipsec.h:110: error: redefinition of `struct ipsecrequest' /usr/src/sys/netipsec/ipsec.h:136: error: redefinition of `struct inpcbpolicy' /usr/src/sys/netipsec/ipsec.h:143: error: redefinition of `struct secspacq' /usr/src/sys/netipsec/ipsec.h:209: error: redefinition of `struct ipsecstat' /usr/src/sys/netipsec/ipsec.h:321: error: redefinition of `struct ipsec_output_state' /usr/src/sys/netipsec/ipsec.h:327: error: redefinition of `struct ipsec_history' /usr/src/sys/netipsec/ipsec.h:332: warning: redundant redeclaration of 'ipsec_debug' /usr/src/sys/netinet6/ipsec.h:314: warning: previous declaration of 'ipsec_debug' was here /usr/src/sys/netipsec/ipsec.h:335: error: conflicting types for 'ip4_def_policy' /usr/src/sys/netinet6/ipsec.h:318: error: previous declaration of 'ip4_def_policy' was here /usr/src/sys/netipsec/ipsec.h:335: error: conflicting types for 'ip4_def_policy' /usr/src/sys/netinet6/ipsec.h:318: error: previous declaration of 'ip4_def_policy' was here [...snipped some warnings...] In file included from /usr/src/sys/netinet/sctp_os_bsd.h:78, from /usr/src/sys/netinet/sctp_os.h:59, from /usr/src/sys/netinet/sctp_pcb.h:39, from /usr/src/sys/netinet/in_proto.c:92: /usr/src/sys/netipsec/ipsec.h:347:1: "ipseclog" redefined In file included from /usr/src/sys/netinet/in_proto.c:74: /usr/src/sys/netinet6/ipsec.h:330:1: this is the location of the previous definition /usr/src/sys/netipsec/ipsec.h:372: error: conflicting types for 'ipsec_get_reqlevel' /usr/src/sys/netinet6/ipsec.h:345: error: previous declaration of 'ipsec_get_reqlevel' was here /usr/src/sys/netipsec/ipsec.h:372: error: conflicting types for 'ipsec_get_reqlevel' /usr/src/sys/netinet6/ipsec.h:345: error: previous declaration of 'ipsec_get_reqlevel' was here *** Error code 1 Stop in /usr/obj/usr/src/sys/SCTP. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. (The whole log of make buildkernel can be found at http://oliver-roll.com/make_buildkernel.log (~800 KB), only the error messages at http://oliver-roll.com/errors.txt and my kernel configuration file at http://oliver-roll.com/SCTP.txt). I think there is a conflict between /usr/src/sys/netpisec/keydb.h and /usr/src/sys/keydb.h which are both included somewhere in the code. Can anybody give me a hint about how to solve this conflict? Thanks & regards, Oliver From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 20:38:36 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4F18D16A473 for ; Thu, 8 Nov 2007 20:38:36 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (tim.des.no [194.63.250.121]) by mx1.freebsd.org (Postfix) with ESMTP id 2FF3513C4B6 for ; Thu, 8 Nov 2007 20:38:35 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (localhost [127.0.0.1]) by spam.des.no (Postfix) with ESMTP id F32802094; Thu, 8 Nov 2007 21:18:33 +0100 (CET) X-Spam-Tests: AWL X-Spam-Learn: disabled X-Spam-Score: -0.1/3.0 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on tim.des.no Received: from ds4.des.no (des.no [80.203.243.180]) by smtp.des.no (Postfix) with ESMTP id 79E422093; Thu, 8 Nov 2007 21:18:33 +0100 (CET) Received: by ds4.des.no (Postfix, from userid 1001) id 645E784445; Thu, 8 Nov 2007 21:18:33 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Max Laier References: <86zlxoblmj.fsf@ds4.des.no> <200711082043.31664.max@love2party.net> Date: Thu, 08 Nov 2007 21:18:33 +0100 In-Reply-To: <200711082043.31664.max@love2party.net> (Max Laier's message of "Thu\, 8 Nov 2007 20\:43\:22 +0100") Message-ID: <86ve8cbiee.fsf@ds4.des.no> User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 20:38:36 -0000 Max Laier writes: > On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: >> but what you actually get is this: >> >> pass on $eth from $lan to $lan flags S/SA keep state >> >> which only matches TCP handshakes, so your UDP streams are screwed. > I don't think this is true. With "pass on $eth from $lan to $lan", NFS doesn't work. With "pass on $eth inet proto { tcp, udp } from $lan to $lan", it does. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 20:40:37 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7B36C16A477 for ; Thu, 8 Nov 2007 20:40:37 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by mx1.freebsd.org (Postfix) with ESMTP id 09AB413C481 for ; Thu, 8 Nov 2007 20:40:37 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-048-233.pools.arcor-ip.net [88.66.48.233]) by mrelayeu.kundenserver.de (node=mrelayeu1) with ESMTP (Nemesis) id 0MKwpI-1IqEAv0y0Y-0002dj; Thu, 08 Nov 2007 21:40:29 +0100 From: Max Laier Organization: FreeBSD To: Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= Date: Thu, 8 Nov 2007 21:39:44 +0100 User-Agent: KMail/1.9.7 References: <86zlxoblmj.fsf@ds4.des.no> <200711082043.31664.max@love2party.net> <86ve8cbiee.fsf@ds4.des.no> In-Reply-To: <86ve8cbiee.fsf@ds4.des.no> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1473742.UZxcrOatyN"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200711082139.52958.max@love2party.net> X-Provags-ID: V01U2FsdGVkX19vVDtQ6x3+WjUHATHC1w4pkW5XK2kOkxkm1mv glWpy4hISynH0SINZhxdD9Pi5OmUNvCts72qwF1vP9y2e/61oA OwJBcU4tGLjlEH5ztTyfFR4Xqzrj9TAMbyDRLOVTSk= Cc: freebsd-net@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 20:40:37 -0000 --nextPart1473742.UZxcrOatyN Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > Max Laier writes: > > On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > >> but what you actually get is this: > >> > >> pass on $eth from $lan to $lan flags S/SA keep state > >> > >> which only matches TCP handshakes, so your UDP streams are screwed. > > > > I don't think this is true. > > With "pass on $eth from $lan to $lan", NFS doesn't work. With "pass on > $eth inet proto { tcp, udp } from $lan to $lan", it does. Works for me. I can NFS over UDP in both directions with the following=20 rules (expanded): block drop log all pass log on bge0 from (bge0:network) to (bge0:network) flags S/SA keep=20 state =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1473742.UZxcrOatyN Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHM3QYXyyEoT62BG0RAhQpAKCAJ8T0zjHRdqjlgqz6pqpSP7A1LwCfbCOs iSjNzqkwUENZGZaB8zf7Vh8= =rPAJ -----END PGP SIGNATURE----- --nextPart1473742.UZxcrOatyN-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 21:59:58 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2DEC616A469 for ; Thu, 8 Nov 2007 21:59:58 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.174]) by mx1.freebsd.org (Postfix) with ESMTP id B6C5D13C4BF for ; Thu, 8 Nov 2007 21:59:56 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-048-233.pools.arcor-ip.net [88.66.48.233]) by mrelayeu.kundenserver.de (node=mrelayeu4) with ESMTP (Nemesis) id 0ML21M-1IqFPg1J0V-0001r3; Thu, 08 Nov 2007 22:59:48 +0100 From: Max Laier Organization: FreeBSD To: Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= Date: Thu, 8 Nov 2007 22:59:35 +0100 User-Agent: KMail/1.9.7 References: <86zlxoblmj.fsf@ds4.des.no> <200711082043.31664.max@love2party.net> <86ve8cbiee.fsf@ds4.des.no> In-Reply-To: <86ve8cbiee.fsf@ds4.des.no> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart7391990.YQgzZXk0e7"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200711082259.46222.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18onGROJaZpg+ePK8syqbphevALyKbBQeEnh8C I+SC76M+lw2Gi5FZeGAzXzNelS71fllKzUDFtbjQdJFko8ujSq ratKKOZnT+BQq2D0dXQWZty5UW66L+1fuy3Mjjz53c= Cc: freebsd-net@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 21:59:58 -0000 --nextPart7391990.YQgzZXk0e7 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > Max Laier writes: > > On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > >> but what you actually get is this: > >> > >> pass on $eth from $lan to $lan flags S/SA keep state > >> > >> which only matches TCP handshakes, so your UDP streams are screwed. > > > > I don't think this is true. > > With "pass on $eth from $lan to $lan", NFS doesn't work. With "pass on > $eth inet proto { tcp, udp } from $lan to $lan", it does. thinking about it, this could be a strange interaction with skip steps. =20 Could you provide "pfctl -gvsr" with either rule(s)? In private mail if=20 you prefer. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart7391990.YQgzZXk0e7 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHM4bSXyyEoT62BG0RAkbQAJ9x7UNJ18jmrHaTc2IvWqr1buwd6gCePBUx /eP/vpTyAbYBHjweuiSau70= =O0jZ -----END PGP SIGNATURE----- --nextPart7391990.YQgzZXk0e7-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 8 22:34:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AB0A016A420 for ; Thu, 8 Nov 2007 22:34:30 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (tim.des.no [194.63.250.121]) by mx1.freebsd.org (Postfix) with ESMTP id 37ABD13C494 for ; Thu, 8 Nov 2007 22:34:30 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (localhost [127.0.0.1]) by spam.des.no (Postfix) with ESMTP id 9E5912092; Thu, 8 Nov 2007 23:34:14 +0100 (CET) X-Spam-Tests: AWL X-Spam-Learn: disabled X-Spam-Score: -0.1/3.0 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on tim.des.no Received: from ds4.des.no (des.no [80.203.243.180]) by smtp.des.no (Postfix) with ESMTP id 6E752208D; Thu, 8 Nov 2007 23:34:14 +0100 (CET) Received: by ds4.des.no (Postfix, from userid 1001) id 4CF958448F; Thu, 8 Nov 2007 23:34:14 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Max Laier References: <86zlxoblmj.fsf@ds4.des.no> <200711082043.31664.max@love2party.net> <86ve8cbiee.fsf@ds4.des.no> <200711082259.46222.max@love2party.net> Date: Thu, 08 Nov 2007 23:34:14 +0100 In-Reply-To: <200711082259.46222.max@love2party.net> (Max Laier's message of "Thu\, 8 Nov 2007 22\:59\:35 +0100") Message-ID: <86fxzgl63d.fsf@ds4.des.no> User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2007 22:34:30 -0000 Max Laier writes: > On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > > With "pass on $eth from $lan to $lan", NFS doesn't work. With "pass on > > $eth inet proto { tcp, udp } from $lan to $lan", it does. > thinking about it, this could be a strange interaction with skip > steps. Could you provide "pfctl -gvsr" with either rule(s)? In > private mail if you prefer. With (NFS works): @0 block return quick inet6 all [ Skip steps: i=3D3 d=3D3 p=3D2 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 0 Bytes: 0 States: 0 = ] @1 block return log all [ Skip steps: i=3D3 d=3D3 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 0 Bytes: 0 States: 0 = ] @2 pass inet proto icmp all icmp-type echoreq keep state [ Skip steps: f=3Dend sa=3D4 sp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 0 Bytes: 0 States: 0 = ] @3 pass in on sk0 inet proto tcp from any to (sk0:1) port =3D ssh flags S/S= A keep state [ Skip steps: i=3Dend f=3Dend p=3D5 sp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 0 Bytes: 0 States: 0 = ] @4 pass on sk0 inet proto tcp from (sk0:network:1) to (sk0:network:1) flags= S/SA keep state [ Skip steps: i=3Dend d=3D6 f=3Dend sa=3D6 sp=3Dend da=3D6 dp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 61 Packets: 1386 Bytes: 158934 States: 2 = ] @5 pass on sk0 inet proto udp from (sk0:network:1) to (sk0:network:1) keep = state [ Skip steps: i=3Dend f=3Dend sp=3Dend dp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 267 Bytes: 47931 States: 3 = ] @6 pass out on sk0 inet proto tcp from (sk0:1) to ! (sk0:network:1) flags S= /SA keep state [ Skip steps: i=3Dend d=3Dend f=3Dend sa=3Dend sp=3Dend da=3Dend dp=3Dend= ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 143 Packets: 0 Bytes: 0 States: 0 = ] @7 pass out on sk0 inet proto udp from (sk0:1) to ! (sk0:network:1) keep st= ate [ Skip steps: i=3Dend d=3Dend f=3Dend p=3Dend sa=3Dend sp=3Dend da=3Dend = dp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 52 Packets: 0 Bytes: 0 States: 0 = ] Without (NFS doesn't work): @0 block return quick inet6 all [ Skip steps: i=3D3 d=3D3 p=3D2 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 0 Bytes: 0 States: 0 = ] @1 block return log all [ Skip steps: i=3D3 d=3D3 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 4 Bytes: 5784 States: 0 = ] @2 pass inet proto icmp all icmp-type echoreq keep state [ Skip steps: f=3D4 sa=3D4 sp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 0 Bytes: 0 States: 0 = ] @3 pass in on sk0 inet proto tcp from any to (sk0:1) port =3D ssh flags S/S= A keep state [ Skip steps: i=3Dend sp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 69 Bytes: 9760 States: 1 = ] @4 pass on sk0 from (sk0:network:1) to (sk0:network:1) flags S/SA keep state [ Skip steps: i=3Dend f=3Dend p=3Dend sp=3Dend dp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 30 Bytes: 3443 States: 13= ] @5 pass out on sk0 from (sk0:1) to ! (sk0:network:1) flags S/SA keep state [ Skip steps: i=3Dend d=3Dend f=3Dend p=3Dend sa=3Dend sp=3Dend da=3Dend = dp=3Dend ] [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] [ Evaluations: 18 Packets: 0 Bytes: 0 States: 0 = ] DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 00:00:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6BE0116A4D5 for ; Fri, 9 Nov 2007 00:00:16 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.186]) by mx1.freebsd.org (Postfix) with ESMTP id F3C7813C48E for ; Fri, 9 Nov 2007 00:00:15 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-048-233.pools.arcor-ip.net [88.66.48.233]) by mrelayeu.kundenserver.de (node=mrelayeu3) with ESMTP (Nemesis) id 0MKxQS-1IqHHw1ECJ-0006kY; Fri, 09 Nov 2007 00:59:57 +0100 From: Max Laier Organization: FreeBSD To: Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= Date: Fri, 9 Nov 2007 00:59:46 +0100 User-Agent: KMail/1.9.7 References: <86zlxoblmj.fsf@ds4.des.no> <200711082259.46222.max@love2party.net> <86fxzgl63d.fsf@ds4.des.no> In-Reply-To: <86fxzgl63d.fsf@ds4.des.no> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2660290.oMDQ0VjJXA"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200711090059.54990.max@love2party.net> X-Provags-ID: V01U2FsdGVkX1/FhWCd5u7iJiaOXU3g8wrO0PccT/trfq2/uK0 0kRuimocgLnMzxcHNbdse9IN/oXvYSMYClFKLYTC+BI3rTWrIm lXGeYlnd1C1YG8+O86+Y1hTP42znQAwR6QlIuwfW/s= Cc: freebsd-net@freebsd.org, dhartmei@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 00:00:16 -0000 --nextPart2660290.oMDQ0VjJXA Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > Max Laier writes: > > On Thursday 08 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > > > With "pass on $eth from $lan to $lan", NFS doesn't work. With "pass = on > > > $eth inet proto { tcp, udp } from $lan to $lan", it does. > > thinking about it, this could be a strange interaction with skip > > steps. Could you provide "pfctl -gvsr" with either rule(s)? In > > private mail if you prefer. >=20 > With (NFS works): >=20 > @0 block return quick inet6 all > [ Skip steps: i=3D3 d=3D3 p=3D2 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 0 Bytes: 0 States: = 0 ] > @1 block return log all > [ Skip steps: i=3D3 d=3D3 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 0 Bytes: 0 States: = 0 ] > @2 pass inet proto icmp all icmp-type echoreq keep state > [ Skip steps: f=3Dend sa=3D4 sp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 0 Bytes: 0 States: = 0 ] > @3 pass in on sk0 inet proto tcp from any to (sk0:1) port =3D ssh flags S= /SA keep state > [ Skip steps: i=3Dend f=3Dend p=3D5 sp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 0 Bytes: 0 States: = 0 ] > @4 pass on sk0 inet proto tcp from (sk0:network:1) to (sk0:network:1) fla= gs S/SA keep state > [ Skip steps: i=3Dend d=3D6 f=3Dend sa=3D6 sp=3Dend da=3D6 dp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 61 Packets: 1386 Bytes: 158934 States: = 2 ] > @5 pass on sk0 inet proto udp from (sk0:network:1) to (sk0:network:1) kee= p state > [ Skip steps: i=3Dend f=3Dend sp=3Dend dp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 267 Bytes: 47931 States: = 3 ] > @6 pass out on sk0 inet proto tcp from (sk0:1) to ! (sk0:network:1) flags= S/SA keep state > [ Skip steps: i=3Dend d=3Dend f=3Dend sa=3Dend sp=3Dend da=3Dend dp=3De= nd ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 143 Packets: 0 Bytes: 0 States: = 0 ] > @7 pass out on sk0 inet proto udp from (sk0:1) to ! (sk0:network:1) keep = state > [ Skip steps: i=3Dend d=3Dend f=3Dend p=3Dend sa=3Dend sp=3Dend da=3Den= d dp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 52 Packets: 0 Bytes: 0 States: = 0 ] >=20 > Without (NFS doesn't work): >=20 > @0 block return quick inet6 all > [ Skip steps: i=3D3 d=3D3 p=3D2 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 0 Bytes: 0 States: = 0 ] > @1 block return log all > [ Skip steps: i=3D3 d=3D3 sa=3D4 sp=3Dend da=3D3 dp=3D3 ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 4 Bytes: 5784 States: = 0 ] > @2 pass inet proto icmp all icmp-type echoreq keep state > [ Skip steps: f=3D4 sa=3D4 sp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 0 Bytes: 0 States: = 0 ] > @3 pass in on sk0 inet proto tcp from any to (sk0:1) port =3D ssh flags S= /SA keep state > [ Skip steps: i=3Dend sp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 69 Bytes: 9760 States: = 1 ] > @4 pass on sk0 from (sk0:network:1) to (sk0:network:1) flags S/SA keep st= ate > [ Skip steps: i=3Dend f=3Dend p=3Dend sp=3Dend dp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 30 Bytes: 3443 States: = 13 ] > @5 pass out on sk0 from (sk0:1) to ! (sk0:network:1) flags S/SA keep state > [ Skip steps: i=3Dend d=3Dend f=3Dend p=3Dend sa=3Dend sp=3Dend da=3Den= d dp=3Dend ] > [ queue: qname=3D qid=3D0 pqname=3D pqid=3D0 ] > [ Evaluations: 18 Packets: 0 Bytes: 0 States: = 0 ] No, I don't see why these two should behave differently, but you should add a "scrub in on sk0" in any case. Daniel, do you spot anything strange with these skip steps (or otherwise)? =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart2660290.oMDQ0VjJXA Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHM6L6XyyEoT62BG0RAr0wAJ9a0i3IkHtUln8gRr4rvnUA5R9V6wCfQO7f 85T5XWEDnMK5fbO/eg/2H4A= =egnl -----END PGP SIGNATURE----- --nextPart2660290.oMDQ0VjJXA-- From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 01:05:59 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 236F916A46C for ; Fri, 9 Nov 2007 01:05:59 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.183]) by mx1.freebsd.org (Postfix) with ESMTP id CD11013C494 for ; Fri, 9 Nov 2007 01:05:58 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so731778pyb for ; Thu, 08 Nov 2007 17:05:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=zvFoGP0KT3ya1egQHhVGz3AauC7yq4wyi8gEZRKaFlY=; b=L+LohudT5Xkp9wMF+gBIeJc0tyGWDNHZU3FD1/lSRUCCCYg+0WlaYmUln02ASMLuN18NuY5GAvGinIKWujAm4mgm6vcQsBXDUP2i2dH5PvlnSLSXJyFeICWSpq6mFosqpc7hUkNxgMMXsri5qd/YnTC4szjPu/5jqaykEmb7+YI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=NWDSKGVXWfrq/beeh8AppAc8nJ2N24nzt9VOKtGWQsUIBFj2ATwlpQrdxC/fTp71PUFJBxidKOKCUC58ICETa40QLaUsLeEQeSFyxyc3DiAI1rzXM1gyfZT2h0gWTjxV96bvznj65StMjX6/yHqownB9U/F7ruidDiYQGNAbDuo= Received: by 10.65.133.8 with SMTP id k8mr5815388qbn.1194570348637; Thu, 08 Nov 2007 17:05:48 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id 34sm2511718nza.2007.11.08.17.05.45 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 08 Nov 2007 17:05:47 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA915eQ6083128 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 9 Nov 2007 10:05:40 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA915dls083127; Fri, 9 Nov 2007 10:05:39 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Fri, 9 Nov 2007 10:05:38 +0900 From: Pyun YongHyeon To: Alexander Shikoff Message-ID: <20071109010538.GA82809@cdnetworks.co.kr> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> <20071107075134.GD70832@cdnetworks.co.kr> <20071107083204.GA33900@crete.org.ua> <20071107101407.GF70832@cdnetworks.co.kr> <20071107115239.GA1462@crete.org.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071107115239.GA1462@crete.org.ua> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 01:05:59 -0000 On Wed, Nov 07, 2007 at 01:52:39PM +0200, Alexander Shikoff wrote: > On Wed, Nov 07, 2007 at 07:14:07PM +0900, Pyun YongHyeon wrote: > > I couldn't see guilty code. In fact I couldn't reproduce it here. > > Since RTL8168/8111 has built-in crossover detection feature how about > > using straight cable? > > Further investigation: auto-negotiation works only after 'iconfig re0 up' > command. > > How to reproduce: > 1. Connect cross-over cable via re0 at 7.0-box and rl0 at 6.2-box. > 1. Do not place any configuration for re0 in rc.conf > 2. Boot a 7.0-BETA2 box. Just after reboot re0 does not get UP status. > I see: > # ifconfig re0 > re0: flags=8802 metric 0 mtu 1500 > options=9b > ether 00:1a:4d:52:4e:b1 > media: Ethernet autoselect (10baseT/UTP ) > status: no carrier > ... and in console: > re0: link state changed to DOWN > Because re(4) is not running yet it's normal to see 'no carrier' from ifconfig(8) output. > 4. Force re0 UP with ifconfig re0 up. Then re0 starts and auto-negotiation > works: > # ifconfig re0 up > # ifconfig > re0: flags=8843 metric 0 mtu 1500 > options=9b > ether 00:1a:4d:52:4e:b1 > media: Ethernet autoselect (100baseTX ) > status: active > > So this problem turns into problem of automatic start of re0 interface. Probably not. If you want to get established valid link with link partner you should make re(4) up to start link negotiation with link partner. > Sorry for this inconvenience with negotiation, but issue with automatic > start is actual. Thanks! > -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 07:54:18 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D886216A419 for ; Fri, 9 Nov 2007 07:54:18 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.178]) by mx1.freebsd.org (Postfix) with ESMTP id 988BA13C4A7 for ; Fri, 9 Nov 2007 07:54:18 +0000 (UTC) (envelope-from pyunyh@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so530035waf for ; Thu, 08 Nov 2007 23:54:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=Ltbb+ysZv2FjHg+qe6AcP1PKm9I+LBiOM63LtYkMbKU=; b=NTIg7LNpUidZ6QP05Shds3E1VDEk+SARLCB0x9ovlIxOJzbsREi+P4C6uY6J/g0IaawoilE/F4komkRbfV3OdpcT7NhB6YqGs42XGh+ImZ7qaMfAIFtcWfFlhyfN4HTDgzxZfptWU4xKNlT5Xn4ncJN9yJvXpHc4jEUDniMl+50= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:reply-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=HwJfgj54ALde23Go3+zBs5SUydM/q7ljiMECvg004xKehPnQcDwN9wp03mFK6r6S6Wm3+QoeSML7oFLePb5oTeaYD0unQpzPE3u8teWUESoU+Fk4j/ES4B5G09ScyDKMLheo3/v42sQhv74gIx4rZmYeKQJKaz/G6TPf1zrAyEg= Received: by 10.114.123.1 with SMTP id v1mr903519wac.1194594850251; Thu, 08 Nov 2007 23:54:10 -0800 (PST) Received: from michelle.cdnetworks.co.kr ( [211.53.35.84]) by mx.google.com with ESMTPS id l22sm3034361waf.2007.11.08.23.54.05 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 08 Nov 2007 23:54:07 -0800 (PST) Received: from michelle.cdnetworks.co.kr (localhost.cdnetworks.co.kr [127.0.0.1]) by michelle.cdnetworks.co.kr (8.13.5/8.13.5) with ESMTP id lA97rtB4084265 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 9 Nov 2007 16:53:55 +0900 (KST) (envelope-from pyunyh@gmail.com) Received: (from yongari@localhost) by michelle.cdnetworks.co.kr (8.13.5/8.13.5/Submit) id lA97rtiv084264; Fri, 9 Nov 2007 16:53:55 +0900 (KST) (envelope-from pyunyh@gmail.com) Date: Fri, 9 Nov 2007 16:53:54 +0900 From: Pyun YongHyeon To: Alexander Shikoff Message-ID: <20071109075354.GC82809@cdnetworks.co.kr> References: <20071106141913.GA93023@crete.org.ua> <20071106143819.GA22249@crete.org.ua> <20071107002430.GA70832@cdnetworks.co.kr> <20071107073708.GA32211@crete.org.ua> <20071107075134.GD70832@cdnetworks.co.kr> <20071107083204.GA33900@crete.org.ua> <20071107101407.GF70832@cdnetworks.co.kr> <20071107115239.GA1462@crete.org.ua> <20071109010538.GA82809@cdnetworks.co.kr> <20071109052145.GA35604@crete.org.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071109052145.GA35604@crete.org.ua> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: re0: RealTek 8168/8111B: no carrier X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: pyunyh@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 07:54:18 -0000 On Fri, Nov 09, 2007 at 07:21:45AM +0200, Alexander Shikoff wrote: > On Fri, Nov 09, 2007 at 10:05:38AM +0900, Pyun YongHyeon wrote: > > Because re(4) is not running yet it's normal to see 'no carrier' from > > ifconfig(8) output. > > > > > 4. Force re0 UP with ifconfig re0 up. Then re0 starts and auto-negotiation > > > works: > > > # ifconfig re0 up > > > # ifconfig > > > re0: flags=8843 metric 0 mtu 1500 > > > options=9b > > > ether 00:1a:4d:52:4e:b1 > > > media: Ethernet autoselect (100baseTX ) > > > status: active > > > > > > So this problem turns into problem of automatic start of re0 interface. > > > > Probably not. If you want to get established valid link with link > > partner you should make re(4) up to start link negotiation with > > link partner. > > Of course, I can put ifconfig re0 up in rc.conf. But why re(4) does not > start up atomatically while another drivers (for example rl(4)) does? > I think there are some inconsistency here. It's interaction between MAC and PHY. PHY hardware of re(4) requires an explicit kick command as most other PHYs to establish a valid link with link partner. However rlphy(4) does not need the kick command and rl(4) does not honor link state correctly and its internal PHY also lacks some features to report correct link status. If you see the rl(4) code you will notice there is no link state change handler and rl(4) doesn't reprogram MAC to reflect negotiated duplex link. Also rememer that without up/running network driver you wouldn't get correct link status as both parties should agree on speed/duplex settings in order to operate correctly. The link state you can see prior to running a network driver would be transitional one and would be changed after driver running and link negotiation complete. -- Regards, Pyun YongHyeon From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 11:20:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3772F16A421 for ; Fri, 9 Nov 2007 11:20:52 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (tim.des.no [194.63.250.121]) by mx1.freebsd.org (Postfix) with ESMTP id CE42113C4B0 for ; Fri, 9 Nov 2007 11:20:51 +0000 (UTC) (envelope-from des@des.no) Received: from tim.des.no (localhost [127.0.0.1]) by spam.des.no (Postfix) with ESMTP id 97EAA20A5; Fri, 9 Nov 2007 12:20:33 +0100 (CET) X-Spam-Tests: AWL X-Spam-Learn: disabled X-Spam-Score: -0.1/3.0 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on tim.des.no Received: from ds4.des.no (des.no [80.203.243.180]) by smtp.des.no (Postfix) with ESMTP id 8A291209F; Fri, 9 Nov 2007 12:20:33 +0100 (CET) Received: by ds4.des.no (Postfix, from userid 1001) id 735D9844A0; Fri, 9 Nov 2007 12:20:33 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Max Laier References: <86zlxoblmj.fsf@ds4.des.no> <200711082259.46222.max@love2party.net> <86fxzgl63d.fsf@ds4.des.no> <200711090059.54990.max@love2party.net> Date: Fri, 09 Nov 2007 12:20:33 +0100 In-Reply-To: <200711090059.54990.max@love2party.net> (Max Laier's message of "Fri\, 9 Nov 2007 00\:59\:46 +0100") Message-ID: <86y7d7k6m6.fsf@ds4.des.no> User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org, dhartmei@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 11:20:52 -0000 Max Laier writes: > No, I don't see why these two should behave differently, but you should > add a "scrub in on sk0" in any case. scrub is known and documented to interfere with NFS. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 16:47:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5B43016A473; Fri, 9 Nov 2007 16:47:52 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.179]) by mx1.freebsd.org (Postfix) with ESMTP id 8A4F313C491; Fri, 9 Nov 2007 16:47:50 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-048-233.pools.arcor-ip.net [88.66.48.233]) by mrelayeu.kundenserver.de (node=mrelayeu5) with ESMTP (Nemesis) id 0ML25U-1IqX1B1M6T-0004x2; Fri, 09 Nov 2007 17:47:41 +0100 From: Max Laier Organization: FreeBSD To: Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= Date: Fri, 9 Nov 2007 17:47:27 +0100 User-Agent: KMail/1.9.7 References: <86zlxoblmj.fsf@ds4.des.no> <200711090059.54990.max@love2party.net> <86y7d7k6m6.fsf@ds4.des.no> In-Reply-To: <86y7d7k6m6.fsf@ds4.des.no> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart4393533.MPXJtRLKbN"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200711091747.37523.max@love2party.net> X-Provags-ID: V01U2FsdGVkX1853WWg83r0lVjHbdk/A8yJLXk+O6XdZvyMz3Q yO0jawbgwfFSdkVDqOMjYrNR4N1tg0Kj5gr487yCqcAnA0/QMr YWctxlnyb/O6iSeemTuG8ID0k1NTmhbsBMldaNnm0Q= Cc: freebsd-net@freebsd.org, dhartmei@freebsd.org Subject: Re: pf misfeature X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 16:47:52 -0000 --nextPart4393533.MPXJtRLKbN Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 09 November 2007, Dag-Erling Sm=C3=B8rgrav wrote: > Max Laier writes: > > No, I don't see why these two should behave differently, but you > > should add a "scrub in on sk0" in any case. > > scrub is known and documented to interfere with NFS. Only with broken NFS clients and even then a combination of "no-df"=20 and "random-id" parameters can be used to make them work, too. Without=20 reassembly stateful filtering is impossible (though this still doesn't=20 explain why an explicit "udp keep state"-rule would work). =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart4393533.MPXJtRLKbN Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHNI8pXyyEoT62BG0RAtSNAJ9fVIKW6ExTL52yd8yvhxtTa1+3VgCfYj4Y FlsDPE/O/+FJKeTPLE0rUPw= =ivD3 -----END PGP SIGNATURE----- --nextPart4393533.MPXJtRLKbN-- From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 20:38:19 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8442B16A418 for ; Fri, 9 Nov 2007 20:38:19 +0000 (UTC) (envelope-from andrey.kosachenko@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.187]) by mx1.freebsd.org (Postfix) with ESMTP id 33B7313C4B9 for ; Fri, 9 Nov 2007 20:38:18 +0000 (UTC) (envelope-from andrey.kosachenko@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so719960fka for ; Fri, 09 Nov 2007 12:38:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; bh=XyYGGeKuyf9DeNlNCXLml094+TDjQzv8XvF5o/ViRP0=; b=hXqYzJD8tiZ/zEEpXXWe7gDYPgJKGBxEjzzzgvjOrtYde6S17Z+bsppRG0/i7kFhMPLIayOLMSmYLgXjsmaky1do+p6L02C4KPb4BYFxPRJtWzPS4ThhBshfbZwN5BYpS0wmMD4lXBCcR/cm1yzVi0wj79rNM4TlFPYCJPfjbXA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; b=fonnQiNZXrSugODZTOQQEk6GzGfrs6YaQ9NCBzXpBuSfcE4gBJQnsL8ywBx0yDE6MWjTqOcafBuvCkG4ieeDzgTVepjv/35P9Ls73emZUAwOlXrW/BeUEVioWL5NKVH2ppTgBxWpW+kmO+guGBW+BQ+4hM87lNE/tn2bX2O88eU= Received: by 10.82.174.20 with SMTP id w20mr1621703bue.1194639162807; Fri, 09 Nov 2007 12:12:42 -0800 (PST) Received: from avalon.lan ( [195.60.174.17]) by mx.google.com with ESMTPS id z34sm3219290ikz.2007.11.09.12.12.40 (version=TLSv1/SSLv3 cipher=RC4-MD5); Fri, 09 Nov 2007 12:12:41 -0800 (PST) Message-ID: <4734BFDD.2020005@gmail.com> Date: Fri, 09 Nov 2007 22:15:25 +0200 From: Andrey Kosachenko User-Agent: Thunderbird 2.0.0.6 (X11/20070808) MIME-Version: 1.0 To: freebsd-current@freebsd.org, freebsd-net@freebsd.org Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Bug?: (bge) BCM5787 makes 7.0/8-CURRENT completely unusable (Was: Issue: bge still freezes RELENG_7 system on HP Compaq 6710b) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 20:38:19 -0000 Good time of the day. I'm not pleased to emphasize that BGE makes FreeBSD 7.0/8.0 systems completely unusable on machines with BCM5787 (NetLink BCM5787M Gigabit Ethernet) Install CD hangs as soon as it tries to load driver for Ethernet device (tested on 7-CURRENT (snapshots 200708, 200709, 200710) 7-BETA1.5, 7-BETA2 and 8-CURRENT. After looking through the lists I realized that earlier similar problem connected with BCM5787 detection was exposed and a corresponding PR was opened. I mean (kern/105005) http://www.freebsd.org/cgi/query-pr.cgi?pr=105005 Those PR (kern/105005) was closed later. Nevertheless the root of the problem is remained I suppose. Just an excerpt of reports: 7-current freeze on HP6710b with BroadCom (bge0) - (http://lists.freebsd.org/pipermail/freebsd-current/2007-October/077781.html) bge driver causes freeze - (http://lists.freebsd.org/pipermail/freebsd-current/2007-September/077347.html) kern/116328: [bge]: Solid hang with bge interface (http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/116328) Compaq HP 6710b freezes on 7-CURRENT-SNAP-200708 - (http://lists.freebsd.org/pipermail/freebsd-current/2007-September/076856.html) panic in 8-CURRENT / BGE hang - (http://lists.freebsd.org/pipermail/freebsd-current/2007-November/079518.html) Sad but true. It is also noticeable that BGE handles BCM5787 in RELENG_6 properly and there is no complains. So I would like to know if there anyone who experiences the same problems with BCM5787 and bge on non-HP machines? And should described problem be considered as a bug with corresponding PR opening? Thanks. -- Sincerely, Andrey. From owner-freebsd-net@FreeBSD.ORG Fri Nov 9 20:48:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 467E416A417 for ; Fri, 9 Nov 2007 20:48:16 +0000 (UTC) (envelope-from andrey.kosachenko@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.187]) by mx1.freebsd.org (Postfix) with ESMTP id B117513C4B8 for ; Fri, 9 Nov 2007 20:48:15 +0000 (UTC) (envelope-from andrey.kosachenko@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so723308fka for ; Fri, 09 Nov 2007 12:48:07 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:content-type; bh=GdGngf3ikFV4SfG1gmDagko0jo4SWBhL+e+iaAhIHHs=; b=nga76Lt2qOR+ucp3l+yGmGIXDZYBNiPIsVwqX7bQPROYFIgT5TZK6JRH4Bq/aY8iYf65vHeTZ4/CJQVCGB7BdgnbZUX2LVtOYZwDLOWZDCCFdoHRdhi3zzAUYpNnvrftEnqtFpk4Rq5/X4rrKsiaWI+ixMecD6L6YcFNG58JliI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:content-type; b=G+fbaFKj64r4D+YVOteYiUko9mI/pI98y4RUuU+AGrSbiz6qH+5jpRX/H0eaJtWjawRc9PBzXil4MXeyZkKrWi2pDgKyZbY3l0VM5ab505MiwwZkA1zcux2A9IcEvdyJfcAVHEzs8YPm9aTJv49oNegMNbAAncFLgskDfH6+MWI= Received: by 10.82.181.10 with SMTP id d10mr3851429buf.1194640916022; Fri, 09 Nov 2007 12:41:56 -0800 (PST) Received: from avalon.lan ( [195.60.174.17]) by mx.google.com with ESMTPS id b36sm3281570ika.2007.11.09.12.41.46 (version=TLSv1/SSLv3 cipher=RC4-MD5); Fri, 09 Nov 2007 12:41:54 -0800 (PST) Message-ID: <4734C6AF.2000602@gmail.com> Date: Fri, 09 Nov 2007 22:44:31 +0200 From: Andrey Kosachenko User-Agent: Thunderbird 2.0.0.6 (X11/20070808) MIME-Version: 1.0 To: freebsd-current@freebsd.org, freebsd-net@freebsd.org Content-Type: multipart/mixed; boundary="------------000403040209040609070908" Cc: Subject: Re: Bug?: (bge) BCM5787 makes 7.0/8-CURRENT completely unusable (Was: Issue: bge still freezes RELENG_7 system on HP Compaq 6710b) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 20:48:16 -0000 This is a multi-part message in MIME format. --------------000403040209040609070908 Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit I suppose output of "uname -a", "pciconf -lv" and "dmesg" would be useful. > Good time of the day. > > I'm not pleased to emphasize that BGE makes FreeBSD 7.0/8.0 systems > completely unusable on machines with BCM5787 (NetLink BCM5787M Gigabit > Ethernet) > > Install CD hangs as soon as it tries to load driver for Ethernet device > (tested on 7-CURRENT (snapshots 200708, 200709, 200710) 7-BETA1.5, > 7-BETA2 and 8-CURRENT. > > After looking through the lists I realized that earlier similar problem > connected with BCM5787 detection was exposed and a corresponding PR was > opened. I mean (kern/105005) > http://www.freebsd.org/cgi/query-pr.cgi?pr=105005 > Those PR (kern/105005) was closed later. Nevertheless the root of the > problem is remained I suppose. Just an excerpt of reports: > > 7-current freeze on HP6710b with BroadCom (bge0) - > (http://lists.freebsd.org/pipermail/freebsd-current/2007-October/077781.html) > bge driver causes freeze - > (http://lists.freebsd.org/pipermail/freebsd-current/2007-September/077347.html) > kern/116328: [bge]: Solid hang with bge interface > (http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/116328) > Compaq HP 6710b freezes on 7-CURRENT-SNAP-200708 - > (http://lists.freebsd.org/pipermail/freebsd-current/2007-September/076856.html) > panic in 8-CURRENT / BGE hang - > (http://lists.freebsd.org/pipermail/freebsd-current/2007-November/079518.html) > > Sad but true. > It is also noticeable that BGE handles BCM5787 in RELENG_6 properly and > there is no complains. > > So I would like to know if there anyone who experiences the same > problems with BCM5787 and bge on non-HP machines? And should described > problem be considered as a bug with corresponding PR opening? -- Sincerely, Andrey --------------000403040209040609070908 Content-Type: text/plain; name="dmesg.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="dmesg.txt" Copyright (c) 1992-2007 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 7.0-BETA2 #0: Thu Nov 8 23:58:43 EET 2007 root@:/usr/obj/usr/src/sys/FREE-SMP-ULE-08112007-v1 Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: Intel(R) Core(TM)2 Duo CPU T7300 @ 2.00GHz (1995.01-MHz 686-class CPU) Origin = "GenuineIntel" Id = 0x6fa Stepping = 10 Features=0xbfebfbff Features2=0xe3bd AMD Features=0x20100000 AMD Features2=0x1 Cores per package: 2 real memory = 1065025536 (1015 MB) avail memory = 1032839168 (984 MB) ACPI APIC Table: FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs cpu0 (BSP): APIC ID: 0 cpu1 (AP): APIC ID: 1 ioapic0: Changing APIC ID to 1 ioapic0 irqs 0-23 on motherboard kbd1 at kbdmux0 acpi0: on motherboard acpi0: [ITHREAD] acpi0: Power Button (fixed) acpi0: reservation of 0, a0000 (3) failed acpi0: reservation of 100000, 3f700000 (3) failed Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000 acpi_timer0: <24-bit timer at 3.579545MHz> port 0x1008-0x100b on acpi0 acpi_ec0: port 0x62,0x66 on acpi0 acpi_hpet0: iomem 0xfed00000-0xfed003ff on acpi0 Timecounter "HPET" frequency 14318180 Hz quality 900 cpu0: on acpi0 est0: on cpu0 p4tcc0: on cpu0 cpu1: on acpi0 est1: on cpu1 p4tcc1: on cpu1 pcib0: port 0xcf8-0xcff on acpi0 pci0: on pcib0 vgapci0: port 0x4000-0x4007 mem 0xe4300000-0xe43fffff,0xd0000000-0xdfffffff irq 16 at device 2.0 on pci0 agp0: on vgapci0 agp0: detected 7676k stolen memory agp0: aperture size is 256M vgapci1: mem 0xe4400000-0xe44fffff at device 2.1 on pci0 uhci0: port 0x4020-0x403f irq 16 at device 26.0 on pci0 uhci0: [GIANT-LOCKED] uhci0: [ITHREAD] usb0: on uhci0 usb0: USB revision 1.0 uhub0: on usb0 uhub0: 2 ports with 2 removable, self powered uhci1: port 0x4040-0x405f irq 17 at device 26.1 on pci0 uhci1: [GIANT-LOCKED] uhci1: [ITHREAD] usb1: on uhci1 usb1: USB revision 1.0 uhub1: on usb1 uhub1: 2 ports with 2 removable, self powered ehci0: mem 0xe4500000-0xe45003ff irq 18 at device 26.7 on pci0 ehci0: [GIANT-LOCKED] ehci0: [ITHREAD] usb2: EHCI version 1.0 usb2: companion controllers, 2 ports each: usb0 usb1 usb2: on ehci0 usb2: USB revision 2.0 uhub2: on usb2 uhub2: 4 ports with 4 removable, self powered pci0: at device 27.0 (no driver attached) pcib1: irq 16 at device 28.0 on pci0 pci8: on pcib1 pcib2: irq 17 at device 28.1 on pci0 pci16: on pcib2 pci16: at device 0.0 (no driver attached) pcib3: irq 18 at device 28.2 on pci0 pci24: on pcib3 pci24: at device 0.0 (no driver attached) pcib4: irq 16 at device 28.4 on pci0 pci40: on pcib4 uhci2: port 0x4060-0x407f irq 20 at device 29.0 on pci0 uhci2: [GIANT-LOCKED] uhci2: [ITHREAD] usb3: on uhci2 usb3: USB revision 1.0 uhub3: on usb3 uhub3: 2 ports with 2 removable, self powered uhci3: port 0x4080-0x409f irq 21 at device 29.1 on pci0 uhci3: [GIANT-LOCKED] uhci3: [ITHREAD] usb4: on uhci3 usb4: USB revision 1.0 uhub4: on usb4 uhub4: 2 ports with 2 removable, self powered uhci4: port 0x40a0-0x40bf irq 18 at device 29.2 on pci0 uhci4: [GIANT-LOCKED] uhci4: [ITHREAD] usb5: on uhci4 usb5: USB revision 1.0 uhub5: on usb5 uhub5: 2 ports with 2 removable, self powered ehci1: mem 0xe4508000-0xe45083ff irq 20 at device 29.7 on pci0 ehci1: [GIANT-LOCKED] ehci1: [ITHREAD] usb6: EHCI version 1.0 usb6: companion controllers, 2 ports each: usb3 usb4 usb5 usb6: on ehci1 usb6: USB revision 2.0 uhub6: on usb6 uhub6: 6 ports with 6 removable, self powered pcib5: at device 30.0 on pci0 pci2: on pcib5 cbb0: mem 0xe4200000-0xe4200fff irq 16 at device 4.0 on pci2 cardbus0: on cbb0 pccard0: <16-bit PCCard bus> on cbb0 cbb0: [ITHREAD] isab0: at device 31.0 on pci0 isa0: on isab0 atapci0: port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0x40c0-0x40cf irq 16 at device 31.1 on pci0 ata0: on atapci0 ata0: [ITHREAD] ata1: on atapci0 ata1: [ITHREAD] atapci1: port 0x13f0-0x13f7,0x15f4-0x15f7,0x1370-0x1377,0x1574-0x1577,0x4100-0x411f mem 0xe4509000-0xe45097ff irq 17 at device 31.2 on pci0 atapci1: [ITHREAD] atapci1: AHCI Version 01.10 controller with 3 ports detected ata2: on atapci1 ata2: [ITHREAD] ata3: on atapci1 ata3: port not implemented ata3: [ITHREAD] ata4: on atapci1 ata4: port not implemented ata4: [ITHREAD] battery0: on acpi0 battery1: on acpi0 acpi_acad0: on acpi0 acpi_button0: on acpi0 acpi_lid0: on acpi0 acpi_tz0: on acpi0 acpi_tz0: _CRT value is absurd, ignored (256.0C) acpi_tz1: on acpi0 acpi_tz2: on acpi0 acpi_tz3: on acpi0 acpi_tz4: on acpi0 atkbdc0: port 0x60,0x64 irq 1 on acpi0 atkbd0: irq 1 on atkbdc0 kbd0 at atkbd0 atkbd0: [GIANT-LOCKED] atkbd0: [ITHREAD] psm0: irq 12 on atkbdc0 psm0: [GIANT-LOCKED] psm0: [ITHREAD] psm0: model IntelliMouse, device ID 3 pmtimer0 on isa0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> vga0: at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0 ppc0: at port 0x378-0x37f irq 7 on isa0 ppc0: SMC-like chipset (ECP/EPP/PS2/NIBBLE) in COMPATIBLE mode ppc0: FIFO with 16/16/8 bytes threshold ppbus0: on ppc0 lpt0: on ppbus0 lpt0: Interrupt-driven port ppi0: on ppbus0 ppc0: [GIANT-LOCKED] ppc0: [ITHREAD] sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 8250 or not responding sio0: [FILTER] sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled ugen0: on uhub3 Timecounters tick every 1.000 msec acd0: DVDR at ata0-master PIO4 ad4: 152627MB at ata2-master SATA150 acpi_tz0: _CRT value is absurd, ignored (256.0C) SMP: AP CPU #1 Launched! Trying to mount root from ufs:/dev/ad4s3a --------------000403040209040609070908 Content-Type: text/plain; name="pciconf-lv.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="pciconf-lv.txt" hostb0@pci0:0:0:0: class=0x060000 card=0x30c0103c chip=0x2a008086 rev=0x0c hdr=0x00 vendor = 'Intel Corporation' device = 'Mobile PM965/GM965/GL960 Express Processor to DRAM Controller' class = bridge subclass = HOST-PCI vgapci0@pci0:0:2:0: class=0x030000 card=0x30c0103c chip=0x2a028086 rev=0x0c hdr=0x00 vendor = 'Intel Corporation' device = 'Mobile 965 Express Integrated Graphics Controller' class = display subclass = VGA vgapci1@pci0:0:2:1: class=0x038000 card=0x30c0103c chip=0x2a038086 rev=0x0c hdr=0x00 vendor = 'Intel Corporation' device = 'Mobile 965 Express Integrated Graphics Controller' class = display uhci0@pci0:0:26:0: class=0x0c0300 card=0x30c0103c chip=0x28348086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB UHCI' class = serial bus subclass = USB uhci1@pci0:0:26:1: class=0x0c0300 card=0x30c0103c chip=0x28358086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB UHCI' class = serial bus subclass = USB ehci0@pci0:0:26:7: class=0x0c0320 card=0x30c0103c chip=0x283a8086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '81EC1043 (?) ICH8 Enhanced USB2 Enhanced Host Controller' class = serial bus subclass = USB none0@pci0:0:27:0: class=0x040300 card=0x30c0103c chip=0x284b8086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H &SUBSYS_81EC1043&REV_02\3&11583659&0&D8' class = multimedia pcib1@pci0:0:28:0: class=0x060400 card=0x30c0103c chip=0x283f8086 rev=0x03 hdr=0x01 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) PCIe Port 1' class = bridge subclass = PCI-PCI pcib2@pci0:0:28:1: class=0x060400 card=0x30c0103c chip=0x28418086 rev=0x03 hdr=0x01 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) PCIe Port 2' class = bridge subclass = PCI-PCI pcib3@pci0:0:28:2: class=0x060400 card=0x30c0103c chip=0x28438086 rev=0x03 hdr=0x01 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) PCIe Port 3' class = bridge subclass = PCI-PCI pcib4@pci0:0:28:4: class=0x060400 card=0x30c0103c chip=0x28478086 rev=0x03 hdr=0x01 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) PCIe Port 5' class = bridge subclass = PCI-PCI uhci2@pci0:0:29:0: class=0x0c0300 card=0x30c0103c chip=0x28308086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB UHCI' class = serial bus subclass = USB uhci3@pci0:0:29:1: class=0x0c0300 card=0x30c0103c chip=0x28318086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB UHCI' class = serial bus subclass = USB uhci4@pci0:0:29:2: class=0x0c0300 card=0x30c0103c chip=0x28328086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB UHCI' class = serial bus subclass = USB ehci1@pci0:0:29:7: class=0x0c0320 card=0x30c0103c chip=0x28368086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) USB2 EHCI' class = serial bus subclass = USB pcib5@pci0:0:30:0: class=0x060401 card=0x30c0103c chip=0x24488086 rev=0xf3 hdr=0x01 vendor = 'Intel Corporation' device = '82801BAM/CAM/DBM (ICH2-M/3-M/4-M) Hub Interface to PCI Bridge' class = bridge subclass = PCI-PCI isab0@pci0:0:31:0: class=0x060100 card=0x30c0103c chip=0x28158086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = 'ICH8M-E (ICH8 Family) LPC Interface Controller' class = bridge subclass = PCI-ISA atapci0@pci0:0:31:1: class=0x01018a card=0x30c0103c chip=0x28508086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801H (ICH8 Family) Ultra ATA Storage Controllers' class = mass storage subclass = ATA atapci1@pci0:0:31:2: class=0x010601 card=0x30c0103c chip=0x28298086 rev=0x03 hdr=0x00 vendor = 'Intel Corporation' device = '82801 Intel(R) 82801HEM/HBM SATA AHCI Controller' class = mass storage none1@pci0:16:0:0: class=0x028000 card=0x135c103c chip=0x42228086 rev=0x02 hdr=0x00 vendor = 'Intel Corporation' device = '10418086 Intel 3945ABG Wireless LAN controller' class = network none2@pci0:24:0:0: class=0x020000 card=0x30c0103c chip=0x169314e4 rev=0x02 hdr=0x00 vendor = 'Broadcom Corporation' device = 'BCM 5787A Ethernet Controller Broadcom Netlink Gigabit' class = network subclass = ethernet cbb0@pci0:2:4:0: class=0x060700 card=0x30c0103c chip=0x04761180 rev=0xb6 hdr=0x02 vendor = 'Ricoh Company, Ltd.' device = 'unknown Ricoh R/RL/5C476(II)' class = bridge subclass = PCI-CardBus --------------000403040209040609070908 Content-Type: text/plain; name="uname-a.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="uname-a.txt" FreeBSD 7.0-BETA2 FreeBSD 7.0-BETA2 #0: Thu Nov 8 23:58:43 EET 2007 root@:/usr/obj/usr/src/sys/FREE-SMP-ULE-08112007-v1 i386 --------------000403040209040609070908-- From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 00:09:15 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 895F316A417 for ; Sat, 10 Nov 2007 00:09:15 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.181]) by mx1.freebsd.org (Postfix) with ESMTP id 4C79013C4C8 for ; Sat, 10 Nov 2007 00:09:15 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so1398339pyb for ; Fri, 09 Nov 2007 16:09:07 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=bTWGoPBEAmk6rR2Gb/h0QePWMcyFe6wf7XL2JhRpUBc=; b=XlItE3Kummi8utSYBiTcpV+gD7YbDFP8hfW+swImKm26mxVhCdaKr15Co6dBC8RoVwf5525FHHgE775+JfUOYhsm8h/W9FVNE1PQr0JEl9zWw9MEsQratJGvgtS8/VIwrViGuNmd4Ww7uxhOvADYiC2BASrb4r8fvc8R5HceyHM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=eWVkAtjDWtr43S0K0RNAlWoULfkSGRQOHCt3hCtVzU7equ85iW8vGiVjVtLlU9R+sHgnetzQO8KjAkwNUQPBP+nTQIofxUIhWrq8mNV72onxtlwvgD2HNng/Hub1jY6Vw8voa3CkJHiWR8XOYaKHDPnC4HrCnEqz16WcRBX9oFs= Received: by 10.35.79.3 with SMTP id g3mr2696335pyl.1194653346885; Fri, 09 Nov 2007 16:09:06 -0800 (PST) Received: by 10.35.67.16 with HTTP; Fri, 9 Nov 2007 16:09:06 -0800 (PST) Message-ID: Date: Fri, 9 Nov 2007 16:09:06 -0800 From: "Matt Reimer" To: net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: Subject: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 00:09:15 -0000 On a eight core machine running RELENG_7 I'm seeing TCP stalls, sometimes lasting up to 60 seconds or so. While trying to track this down I noticed that net.inet.tcp.syncache.count is negative. Should it be possible for the count to go negative? Perhaps it indicates a race, or the counter is wrongly being decremented twice? Matt # sysctl net.inet.tcp.syncache net.inet.tcp.syncache.rst_on_sock_fail: 1 net.inet.tcp.syncache.rexmtlimit: 3 net.inet.tcp.syncache.hashsize: 512 net.inet.tcp.syncache.count: -97 net.inet.tcp.syncache.cachelimit: 15360 net.inet.tcp.syncache.bucketlimit: 30 From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 04:13:16 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C534016A420 for ; Sat, 10 Nov 2007 04:13:16 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay03.pair.com (relay03.pair.com [209.68.5.17]) by mx1.freebsd.org (Postfix) with SMTP id 6DD5913C4B2 for ; Sat, 10 Nov 2007 04:13:16 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 40071 invoked from network); 10 Nov 2007 03:46:22 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 10 Nov 2007 03:46:22 -0000 X-pair-Authenticated: 209.68.2.70 Date: Fri, 9 Nov 2007 21:46:21 -0600 (CST) From: Mike Silbersack To: Matt Reimer In-Reply-To: Message-ID: <20071109213846.O46803@odysseus.silby.com> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 04:13:16 -0000 On Fri, 9 Nov 2007, Matt Reimer wrote: > On a eight core machine running RELENG_7 I'm seeing TCP stalls, > sometimes lasting up to 60 seconds or so. While trying to track this > down I noticed that net.inet.tcp.syncache.count is negative. Should it > be possible for the count to go negative? Perhaps it indicates a race, > or the counter is wrongly being decremented twice? I just took a look at the code, and you are correct that the count is not locked; it looks like you're hitting the race. However, it doesn't look like anything is checking the count, so that should not be the cause of your TCP stalls. Can you install netperf and run both the TCP_STREAM and UDP_STREAM tests just to make sure that your network card is working properly? We've recently found that the fast interrupt handlers we use in some network drivers act strangely when sharing interrupts. So, that's a first thing to test before we poke at the upper layers. If that doesn't help, can you post more details about how you are stressing the system? Thanks, -Mike From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 07:23:39 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0B18316A419 for ; Sat, 10 Nov 2007 07:23:39 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.178]) by mx1.freebsd.org (Postfix) with ESMTP id ACE4F13C48A for ; Sat, 10 Nov 2007 07:23:38 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so110518pyb for ; Fri, 09 Nov 2007 23:23:32 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=ivVNwN80QmjpA5P9Y1Xd35RdyEeToOVHGcstN4r95Ok=; b=p6R20sdRHZlBzmc3+0kKfR/WHB62H6s4v5oF9BzBbcYAHxQ3x7XdWbN0enHCQQy93yQogEuRC8B3xF/21tHEaVZ3+oZPqjRB4Bj2tR+lEdi57qeH/Pq3MiJsU1QyE9H4C6LG8rjK0dUo9rrgrGlucVSin/RDn0YAtH37s0xc8sE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Car7iBeUu6g8OYQz1ZalxXnOsPmXNwadW94NXpmqISDNvMIy3RnpEARkCF4QolXTAhgLp5U3QH3bv1VA1RcVLyEGlDgp11JLXaN0NQBVuTe8W/5R8ji17IANA0klBVYtYSfydcmd+ctr11jhSjM7+z1l9IqXchZRIrl14lkQUv4= Received: by 10.35.129.19 with SMTP id g19mr3051318pyn.1194679412002; Fri, 09 Nov 2007 23:23:32 -0800 (PST) Received: by 10.35.67.16 with HTTP; Fri, 9 Nov 2007 23:23:31 -0800 (PST) Message-ID: Date: Fri, 9 Nov 2007 23:23:31 -0800 From: "Matt Reimer" To: "Mike Silbersack" In-Reply-To: <20071109213846.O46803@odysseus.silby.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20071109213846.O46803@odysseus.silby.com> Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 07:23:39 -0000 On Nov 9, 2007 7:46 PM, Mike Silbersack wrote: > > On Fri, 9 Nov 2007, Matt Reimer wrote: > > > On a eight core machine running RELENG_7 I'm seeing TCP stalls, > > sometimes lasting up to 60 seconds or so. While trying to track this > > down I noticed that net.inet.tcp.syncache.count is negative. Should it > > be possible for the count to go negative? Perhaps it indicates a race, > > or the counter is wrongly being decremented twice? > > I just took a look at the code, and you are correct that the count is not > locked; it looks like you're hitting the race. However, it doesn't look > like anything is checking the count, so that should not be the cause of > your TCP stalls. Yeah, that's the conclusion I came to also. > Can you install netperf and run both the TCP_STREAM and UDP_STREAM tests > just to make sure that your network card is working properly? We've > recently found that the fast interrupt handlers we use in some network > drivers act strangely when sharing interrupts. So, that's a first thing > to test before we poke at the upper layers. Ok, I've run netperf in both directions. The box I've been targeting is 66.230.193.105 aka wordpress1. [root@wordpress2 ~]# netperf -p 5000 -t TCP_STREAM -H 66.230.193.105 TCP STREAM TEST from 0.0.0.0 (0.0.0.0) port 0 AF_INET to 66.230.193.105 (66.230.193.105) port 0 AF_INET Recv Send Send Socket Socket Message Elapsed Size Size Size Time Throughput bytes bytes bytes secs. 10^6bits/sec 65536 32768 32768 10.03 93.00 [root@wordpress2 ~]# netperf -p 5000 -t UDP_STREAM -H 66.230.193.105 UDP UNIDIRECTIONAL SEND TEST from 0.0.0.0 (0.0.0.0) port 0 AF_INET to 66.230.193.105 (66.230.193.105) port 0 AF_INET Socket Message Elapsed Messages Size Size Time Okay Errors Throughput bytes bytes secs # # 10^6bits/sec 9216 9216 10.01 13145 2588457 96.81 41600 10.01 13145 96.81 [root@wordpress1 ~]# netperf -H 66.230.193.106 -p 5000 -t TCP_STREAM TCP STREAM TEST from 0.0.0.0 (0.0.0.0) port 0 AF_INET to 66.230.193.106 (66.230.193.106) port 0 AF_INET Recv Send Send Socket Socket Message Elapsed Size Size Size Time Throughput bytes bytes bytes secs. 10^6bits/sec 65536 32768 32768 10.02 94.03 [root@wordpress1 ~]# netperf -H 66.230.193.106 -p 5000 -t UDP_STREAM UDP UNIDIRECTIONAL SEND TEST from 0.0.0.0 (0.0.0.0) port 0 AF_INET to 66.230.193.106 (66.230.193.106) port 0 AF_INET Socket Message Elapsed Messages Size Size Time Okay Errors Throughput bytes bytes secs # # 10^6bits/sec 9216 9216 10.00 13151 2532692 96.95 41600 10.00 13135 96.83 > If that doesn't help, can you post more details about how you are > stressing the system? Yes, I'll get you whatever information you want. The machine is a Dell 1950 with 8 x 1.6GHz Xeon 5310s, 8G RAM, and this NIC: bce0@pci0:9:0:0: class=0x020000 card=0x01b31028 chip=0x164c14e4 rev=0x12 hdr=0x00 vendor = 'Broadcom Corporation' device = '5708C Broadcom NetXtreme II Gigabit Ethernet Adapter' class = network subclass = ethernet [root@wordpress1 ~]# ifconfig bce0 bce0: flags=8843 metric 0 mtu 1500 options=1bb ether 00:19:b9:ea:99:a4 inet 66.230.193.105 netmask 0xffffff00 broadcast 66.230.193.255 media: Ethernet autoselect (100baseTX ) status: active I first noticed this problem running ab; then to simplify I used netrate/http[d]. What's strange is that it seems fine over the local network (~15800 requests/sec), but it slowed down dramatically (~150 req/sec) when tested from another network 20 ms away. Running systat -tcp and nload I saw that there was an almost complete stall with only a handful of packets being sent (probably my ssh packets) for a few seconds or sometimes even up to 60 seconds or so. Next I turned on net.inet.tcp.log_debug and ran tcpdump while running ab against netrate/http. Then I looked at the tcpdump capture and looked for a gap in the timestamps when the traffic seemed stalled. I saw that other packets were coming in and going out (e.g. multicast and ARP traffic) but little TCP traffic. From there I looked backwards for the TCP traffic leading up to the stall and saw a strange exchange on the packets with source port 64851 (and others, but I'll stick with this one for illustration): SYN SYN-ACK ACK RST RST Looking at the logs I saw: Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x10; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x18; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST But it doesn't seem to be a memory shortage; vmstat -z during one of those stalls shows: socket: 696, 12330, 14, 3861, 14786330, 0 unpcb: 248, 12330, 6, 1149, 6052662, 0 ipq: 56, 819, 0, 0, 0, 0 udpcb: 280, 12334, 2, 222, 1531, 0 inpcb: 280, 12334, 2271, 2671, 8732131, 0 tcpcb: 688, 12330, 6, 2304, 8732131, 0 tcptw: 88, 2478, 2265, 213, 201553, 6438776 syncache: 112, 15378, 2, 823, 7197735, 0 hostcache: 136, 15372, 0, 112, 19, 0 tcpreass: 40, 1680, 0, 672, 50, 0 Corresponding to these error messages there are two RST packets around 14.528 seconds into the tcpdump. Looking at the code it seems that what must be happening is that syncache_expand() fails somehow, leaving 'so' NULL. Wireshark shows that: SYN SYN-ACK ACK kernel tries to set up the socket; syncache_expand() fails, so it sends... RST but the sending host already saw a SYN-ACK so it sends... "GET /short.html..." kernel replies with another RST since the socket allocation failed So I looked at the logs again and saw that the same thing happens again, 97 seconds later, and then again 103 seconds after that. The sequence of SYNs etc. is identical: Nov 9 19:04:11 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:04:11 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x10; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST Nov 9 19:04:11 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:04:11 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x18; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST And: Nov 9 19:05:55 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:05:55 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x10; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST Nov 9 19:05:55 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80; syncache_socket: Socket create failed due to limits or memory shortage Nov 9 19:05:55 wordpress1 kernel: TCP: [207.210.67.2]:64851 to [66.230.193.105]:80 tcpflags 0x18; tcp_input: Listen socket: Socket allocation failed due to limits or memory shortage, sending RST It seems very fishy that a socket allocation for this port 64851 should fail three times in less than four minutes, when other allocations succeed. Why are these socket creations failing, and consistently failing for the same port numbers? I don't know if it's relevant, but accf_http is loaded on wordpress1. We have seen similar behavior (TCP slowdowns) on a different machines (4 x Xeon 5160) with a different NIC (em0) running RELENG_7, though I haven't diagnosed it to this level of detail. All our RELENG_6 and RELENG_4 machines seem fine. An excerpt from the full tcpdump is available at http://bilbo.vpop.net/~mreimer/tcpdump.bad; I'll make the full 14M dump available upon request. I'll run whatever tests are needed, add debugging printf's, etc. Thanks for your help. Matt From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 08:13:40 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A116616A418 for ; Sat, 10 Nov 2007 08:13:40 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay00.pair.com (relay00.pair.com [209.68.5.9]) by mx1.freebsd.org (Postfix) with SMTP id 5A8B313C481 for ; Sat, 10 Nov 2007 08:13:39 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 10143 invoked from network); 10 Nov 2007 08:13:23 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 10 Nov 2007 08:13:23 -0000 X-pair-Authenticated: 209.68.2.70 Date: Sat, 10 Nov 2007 02:13:22 -0600 (CST) From: Mike Silbersack To: Matt Reimer In-Reply-To: Message-ID: <20071110020333.I46803@odysseus.silby.com> References: <20071109213846.O46803@odysseus.silby.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 08:13:40 -0000 On Fri, 9 Nov 2007, Matt Reimer wrote: > Ok, I've run netperf in both directions. The box I've been targeting > is 66.230.193.105 aka wordpress1. Ok, at least that looks good. > The machine is a Dell 1950 with 8 x 1.6GHz Xeon 5310s, 8G RAM, and this NIC: Nice. > I first noticed this problem running ab; then to simplify I used > netrate/http[d]. What's strange is that it seems fine over the local > network (~15800 requests/sec), but it slowed down dramatically (~150 > req/sec) when tested from another network 20 ms away. Running systat > -tcp and nload I saw that there was an almost complete stall with only > a handful of packets being sent (probably my ssh packets) for a few > seconds or sometimes even up to 60 seconds or so. I think most benchmarking tools end up stalling if all of their threads stall, that may be why the rate falls off after the misbehavior you describe below begins. > Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to > [66.230.193.105]:80; syncache_socket: Socket create failed due to > limits or memory shortage > Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to > [66.230.193.105]:80 tcpflags 0x10; tcp_input: Listen socket: > Socket allocation failed due to limits or memory shortage, sending RST Turns out you'll generally get both of those error messages together, from my reading of the code. Since you eliminated memory shortage in the socket zone, the next thing to check is the length of the listen queues. If the listen queue is backing up because the application isn't accepting fast enough, the errors above should happen. "netstat -Lan" should show you what's going on there. Upping the specified listen queue length in your webserver _may_ be all that is necessary. Try fiddling with that and watching how much they're filling up during testing. The fact that you see the same port repeatedly may indicate that the syncache isn't destroying the syncache entries when you get the socket creation failure. Take a look at "netstat -n" and look for SYN_RECEIVED entries - if they're sticking around for more than a few seconds, this is probably what's happening. (This entire paragraph is speculation, but worth investigating.) > I don't know if it's relevant, but accf_http is loaded on wordpress1. That may be relevant - accepting filtering changes how the listen queues are used. Try going back to non-accept filtering for now. > We have seen similar behavior (TCP slowdowns) on a different machines > (4 x Xeon 5160) with a different NIC (em0) running RELENG_7, though I > haven't diagnosed it to this level of detail. All our RELENG_6 and > RELENG_4 machines seem fine. em is the driver that I was having issues with when it shared an interrupt... :) FWIW, my crazy theory of the moment is this: We have some bug that happens when the listen queues overflow in 7.0, and your test is strenuous enough to hit the listen queue overflow condition, leading to total collapse. I'll have to cobble together a test program to see what happens in the listen queue overflow case. Thanks for the quick feedback, -Mike From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 09:13:20 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B1EA816A468 for ; Sat, 10 Nov 2007 09:13:20 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.182]) by mx1.freebsd.org (Postfix) with ESMTP id 68DE913C4B5 for ; Sat, 10 Nov 2007 09:13:20 +0000 (UTC) (envelope-from mattjreimer@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so138491pyb for ; Sat, 10 Nov 2007 01:13:11 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=R4LiWfTo+A1f8ADYr6khO9N9wR2Fz9xV9vu0F7G4Hzs=; b=ravl5lta4rm7Y7SAbNY8C15p+LP/UGzxO+l7Q27HXCSEj9ZncgyT9mQsK5osHLxjlRbxFwMjWF99quAUTRPxfZKXvNt9f0+AsVuIRoEhZ4l04OEWsfCINtXMwaSd4l80l4VnysP40tEXZhgekosxfdFGkDWhrOaMOMFCR3RUUXo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=bWjzJOWgy6fYxPOe3QyvxbIIaTOomWpwDVXvn1YWr4xq6YQM0Aogye9UOw0TJAH979FoaTpYtp3SXPnzRJ7vK2ss+AkzU0w+ckfKG3gmy3n5Tp+yMVyFnmWhxgZQTQV7a/0rTzyGZSgDXrFmrOnipZ7cfB9K+Zq2hDP28QIIpsU= Received: by 10.35.69.11 with SMTP id w11mr3147948pyk.1194685991663; Sat, 10 Nov 2007 01:13:11 -0800 (PST) Received: by 10.35.67.16 with HTTP; Sat, 10 Nov 2007 01:13:11 -0800 (PST) Message-ID: Date: Sat, 10 Nov 2007 01:13:11 -0800 From: "Matt Reimer" To: "Mike Silbersack" In-Reply-To: <20071110020333.I46803@odysseus.silby.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20071109213846.O46803@odysseus.silby.com> <20071110020333.I46803@odysseus.silby.com> Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 09:13:20 -0000 On Nov 10, 2007 12:13 AM, Mike Silbersack wrote: > > On Fri, 9 Nov 2007, Matt Reimer wrote: > > > I first noticed this problem running ab; then to simplify I used > > netrate/http[d]. What's strange is that it seems fine over the local > > network (~15800 requests/sec), but it slowed down dramatically (~150 > > req/sec) when tested from another network 20 ms away. Running systat > > -tcp and nload I saw that there was an almost complete stall with only > > a handful of packets being sent (probably my ssh packets) for a few > > seconds or sometimes even up to 60 seconds or so. > > I think most benchmarking tools end up stalling if all of their threads > stall, that may be why the rate falls off after the misbehavior you > describe below begins. Ok. FWIW, I'm seeing the same behavior with tools/netrate/http as I am with ab. > > Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to > > [66.230.193.105]:80; syncache_socket: Socket create failed due to > > limits or memory shortage > > Nov 9 19:02:34 wordpress1 kernel: TCP: [207.210.67.2]:64851 to > > [66.230.193.105]:80 tcpflags 0x10; tcp_input: Listen socket: > > Socket allocation failed due to limits or memory shortage, sending RST > > Turns out you'll generally get both of those error messages together, from > my reading of the code. > > Since you eliminated memory shortage in the socket zone, the next thing to > check is the length of the listen queues. If the listen queue is backing > up because the application isn't accepting fast enough, the errors above > should happen. "netstat -Lan" should show you what's going on there. > Upping the specified listen queue length in your webserver _may_ be all > that is necessary. Try fiddling with that and watching how much they're > filling up during testing. I ran "netstat -Lan" every second while running this test and the output never changed from the following, whether before or after the stall: Current listen queue sizes (qlen/incqlen/maxqlen) Proto Listen Local Address tcp4 0/0/128 66.230.193.105.80 tcp4 0/0/10 127.0.0.1.25 tcp4 0/0/128 *.22 tcp4 0/0/128 *.199 > The fact that you see the same port repeatedly may indicate that the > syncache isn't destroying the syncache entries when you get the socket > creation failure. Take a look at "netstat -n" and look for SYN_RECEIVED > entries - if they're sticking around for more than a few seconds, this is > probably what's happening. (This entire paragraph is speculation, but > worth investigating.) During the stall the sockets are all in TIME_WAIT. More relevant info: kern.ipc.maxsockets: 12328 kern.ipc.numopensockets: 46 net.inet.ip.portrange.randomtime: 45 net.inet.ip.portrange.randomcps: 10 net.inet.ip.portrange.randomized: 1 net.inet.ip.portrange.reservedlow: 0 net.inet.ip.portrange.reservedhigh: 1023 net.inet.ip.portrange.hilast: 65535 net.inet.ip.portrange.hifirst: 49152 net.inet.ip.portrange.last: 65535 net.inet.ip.portrange.first: 30000 net.inet.ip.portrange.lowlast: 600 net.inet.ip.portrange.lowfirst: 1023 net.inet.tcp.finwait2_timeout: 60000 net.inet.tcp.fast_finwait2_recycle: 0 [root@wordpress1 /sys/dev]# netstat -m 513/5382/5895 mbufs in use (current/cache/total) 511/3341/3852/25600 mbuf clusters in use (current/cache/total/max) 1/1663 mbuf+clusters out of packet secondary zone in use (current/cache) 0/488/488/0 4k (page size) jumbo clusters in use (current/cache/total/max) 0/0/0/0 9k jumbo clusters in use (current/cache/total/max) 0/0/0/0 16k jumbo clusters in use (current/cache/total/max) 1150K/9979K/11129K bytes allocated to network (current/cache/total) 0/0/0 requests for mbufs denied (mbufs/clusters/mbuf+clusters) 0/0/0 requests for jumbo clusters denied (4k/9k/16k) 0/0/0 sfbufs in use (current/peak/max) 0 requests for sfbufs denied 0 requests for sfbufs delayed 17 requests for I/O initiated by sendfile 0 calls to protocol drain routines > > I don't know if it's relevant, but accf_http is loaded on wordpress1. > > That may be relevant - accepting filtering changes how the listen queues > are used. Try going back to non-accept filtering for now. It still stalls. This time I noticed that tcptw shows 0 free: socket: 696, 12330, 14, 126, 10749, 0 unpcb: 248, 12330, 5, 70, 75, 0 ipq: 56, 819, 0, 0, 0, 0 udpcb: 280, 12334, 2, 40, 184, 0 inpcb: 280, 12334, 2485, 105, 10489, 0 tcpcb: 688, 12330, 7, 73, 10489, 0 tcptw: 88, 2478, 2478, 0, 2478, 7231 syncache: 112, 15378, 1, 65, 9713, 0 hostcache: 136, 15372, 0, 0, 0, 0 tcpreass: 40, 1680, 0, 0, 0, 0 sackhole: 32, 0, 0, 0, 0, 0 But even while tcptw shows 0 free, I can still blast 15800 req/s from another RELENG_7 box to this one during the stall. So I don't know if that means anything. > FWIW, my crazy theory of the moment is this: We have some bug that > happens when the listen queues overflow in 7.0, and your test is strenuous > enough to hit the listen queue overflow condition, leading to total > collapse. I'll have to cobble together a test program to see what happens > in the listen queue overflow case. When I use ab I'm telling it to use a max of 100 simultaneous connections (ab -c 100 -n 50000 http://66.230.193.105/). Wouldn't that be well under the limit? > Thanks for the quick feedback, Thank *you*. Matt From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 09:37:16 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 76E3716A41B for ; Sat, 10 Nov 2007 09:37:16 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay03.pair.com (relay03.pair.com [209.68.5.17]) by mx1.freebsd.org (Postfix) with SMTP id 2B47413C4A8 for ; Sat, 10 Nov 2007 09:37:16 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 74375 invoked from network); 10 Nov 2007 09:36:58 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 10 Nov 2007 09:36:58 -0000 X-pair-Authenticated: 209.68.2.70 Date: Sat, 10 Nov 2007 03:36:57 -0600 (CST) From: Mike Silbersack To: Matt Reimer In-Reply-To: <20071110020333.I46803@odysseus.silby.com> Message-ID: <20071110033031.B46803@odysseus.silby.com> References: <20071109213846.O46803@odysseus.silby.com> <20071110020333.I46803@odysseus.silby.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 09:37:16 -0000 On Sat, 10 Nov 2007, Mike Silbersack wrote: > FWIW, my crazy theory of the moment is this: We have some bug that happens > when the listen queues overflow in 7.0, and your test is strenuous enough to > hit the listen queue overflow condition, leading to total collapse. I'll > have to cobble together a test program to see what happens in the listen > queue overflow case. Post testing, I have a different theory. Can you also try sysctl net.inet.tcp.syncookies=0 I modified netrate's httpd to sleep a lot and found an interesting behavior between listen queue overflows and syncookies: 04:28:21.470931 IP 10.1.1.8.50566 > 10.1.1.6.http: S 287310302:287310302(0) win 32768 04:28:21.470939 IP 10.1.1.6.http > 10.1.1.8.50566: S 4209413098:4209413098(0) ack 287310303 win 65535 04:28:21.473487 IP 10.1.1.8.50566 > 10.1.1.6.http: . ack 1 win 33304 04:28:21.473493 IP 10.1.1.6.http > 10.1.1.8.50566: R 4209413099:4209413099(0) win 0 04:28:21.473642 IP 10.1.1.8.50566 > 10.1.1.6.http: P 1:78(77) ack 1 win 33304 04:28:21.482555 IP 10.1.1.6.http > 10.1.1.8.50566: P 1:126(125) ack 78 win 8326 04:28:21.482563 IP 10.1.1.6.http > 10.1.1.8.50566: F 126:126(0) ack 78 win 8326 04:28:21.487047 IP 10.1.1.8.50566 > 10.1.1.6.http: R 287310380:287310380(0) win 0 04:28:21.487398 IP 10.1.1.8.50566 > 10.1.1.6.http: R 287310380:287310380(0) win 0 The listen queue overflow causes the socket to be closed and a RST sent, but the next packet from 10.1.1.8 crosses it on the wire and activates the syncookie code, reopening the connection. Meanwhile, the RST arrives at 10.1.1.8 and closes its socket, leading to it sending RSTs when the data from 10.1.1.6 arrives. Not sure if that's your problem or not, but it's interesting. -Mike From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 09:41:01 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0975C16A41B for ; Sat, 10 Nov 2007 09:41:01 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay02.pair.com (relay02.pair.com [209.68.5.16]) by mx1.freebsd.org (Postfix) with SMTP id 9454613C4AC for ; Sat, 10 Nov 2007 09:41:00 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 99251 invoked from network); 10 Nov 2007 09:40:39 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 10 Nov 2007 09:40:39 -0000 X-pair-Authenticated: 209.68.2.70 Date: Sat, 10 Nov 2007 03:40:38 -0600 (CST) From: Mike Silbersack To: Matt Reimer In-Reply-To: Message-ID: <20071110033704.D46803@odysseus.silby.com> References: <20071109213846.O46803@odysseus.silby.com> <20071110020333.I46803@odysseus.silby.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Should syncache.count ever be negative? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 09:41:01 -0000 On Sat, 10 Nov 2007, Matt Reimer wrote: > I ran "netstat -Lan" every second while running this test and the > output never changed from the following, whether before or after the > stall: I forgot to mention, check netstat -s for listen queue overflows. > During the stall the sockets are all in TIME_WAIT. More relevant info: In the past that was not a problem, but I should retest this as well. > It still stalls. This time I noticed that tcptw shows 0 free: The tcptw zone is supposed to fill completely, then kick out the oldest entry whenever a new one comes in. So, that sounds ok to me... but like I said, I need to retest that too. > When I use ab I'm telling it to use a max of 100 simultaneous > connections (ab -c 100 -n 50000 http://66.230.193.105/). Wouldn't that > be well under the limit? Yep, should be. Hmph. -Mike From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 17:01:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1EE9716A41A for ; Sat, 10 Nov 2007 17:01:54 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.freebsd.org (Postfix) with ESMTP id C844F13C48A for ; Sat, 10 Nov 2007 17:01:53 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from root by ciao.gmane.org with local (Exim 4.43) id 1Iqtgg-0000VH-4C for freebsd-net@freebsd.org; Sat, 10 Nov 2007 17:00:02 +0000 Received: from host71-40-static.74-81-b.business.telecomitalia.it ([81.74.40.71]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sat, 10 Nov 2007 17:00:02 +0000 Received: from lapo by host71-40-static.74-81-b.business.telecomitalia.it with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sat, 10 Nov 2007 17:00:02 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-net@freebsd.org From: Lapo Luchini Date: Sat, 10 Nov 2007 12:55:51 +0000 (UTC) Lines: 14 Message-ID: References: <20050130235357.GA72888@tygrys.k.telmark.waw.pl> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: main.gmane.org User-Agent: Loom/3.14 (http://gmane.org/) X-Loom-IP: 81.74.40.71 (Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.8.1.9) Gecko/20071025 Firefox/2.0.0.9) Sender: news Subject: Re: if_stf and rfc1918 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 17:01:54 -0000 Hajimu UMEMOTO freebsd.org> writes: > Lukasz> after the packets leave my site they are completly valid 6to4 packets. > Lukasz> Also when 6to4 packets come to me they are handeled properly. > Oops, I completely forget this issue. If there is no objection, I'll > commit following patch into HEAD then MFC to RELENG_5. What about that commit? 0=) I used the patch for a few months now, with complete success, and forgetting to re-apply it on every single buildkernel... having it in the mainline would help people with forgetful minds ;) Lapo From owner-freebsd-net@FreeBSD.ORG Sat Nov 10 23:58:28 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EBFEC16A417 for ; Sat, 10 Nov 2007 23:58:28 +0000 (UTC) (envelope-from emandy@triticom.com) Received: from vesuvius.triticom.com (vesuvius.triticom.com [204.72.168.4]) by mx1.freebsd.org (Postfix) with ESMTP id A28F313C480 for ; Sat, 10 Nov 2007 23:58:28 +0000 (UTC) (envelope-from emandy@triticom.com) Received: from whistler.triticom.com ([204.72.168.89] helo=ermxp) by vesuvius.triticom.com with esmtpsa (TLS-1.0:RSA_ARCFOUR_MD5:16) (Exim 4.63) (envelope-from ) id 1IqzXy-0004LV-10 for freebsd-net@freebsd.org; Sat, 10 Nov 2007 17:15:26 -0600 Message-ID: <008501c823ef$93a26af0$25a8a8c0@ermxp> From: "Ed Mandy" To: Date: Sat, 10 Nov 2007 17:15:25 -0600 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 Subject: System Freezes When MBufClust Usages Rises X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Nov 2007 23:58:29 -0000 We are using FreeBSD to run the Dante SOCKS proxy server to accelerate a high-latency (approximately 1-second round-trip) network link. We need to support many concurrent transfers of large files. To do this, we have set the machine up with the following parameters. Compiled Dante with the following setting in include/config.h SOCKD_BUFSIZETCP = (1024*1000) /etc/sysctl.conf : kern.ipc.maxsockbuf=4194304 net.inet.tcp.sendspace=2097152 net.inet.tcp.recvspace=2097152 /boot/loader.conf : kern.ipc.maxsockets="0" (also tried 25600, 51200, 102400, and 409600) kern.ipc.nmbclusters="0" (also tried 102400 and 409600) (Looking at the code, it seems that 0 means not to set a max for the above two controls.) If kern.ipc.nmbclusters is set to 25600, the system will hard freeze when "vmstat -z" shows the number of clusters reaches 25600. If kern.ipc.nmbclusters is set to 0 (or 102400), the system will hard freeze when "vmstat -z" shows the number of clusters is around 66000. When it freezes, the number of Kbytes allocated to network (as shown by "netstat -m") is roughly 160,000 (160MB). For a while, we thought that there may be a limit of 65536 mbuf clusters, so we tested building the kernel with MCLSHIFT=12, which makes each mbcluster 4096-bytes. With this configuration, nmbclusters only reached about 33000 before the system froze. The number of Kbytes allocated to network (as shown by "netstat -m") still maxed out at around 160,000. Now, it seems that we are running into some other memory limitation that occurs when our network allocation gets close to 160MB. We have tried tuning paramaters such as KVA_PAGES, vm.kmem_size, vm.kmem_size_max, etc. Though, we are unsure if the mods we made there helped in any way. This is all being done on Celeron 2.8GHz machines with 3+ GB of RAM running FreeBSD 5.3. We are very much tied to this platform at the moment, and upgrading is not a realistic option for us. We would like to tune the systems to not lockup. We can currently work around the problem (by using smaller buffers and such), but it is at the expense of network throughput, which is less than ideal. Are there any other parameters that would help us to allocate more memory to the kernel networking? What other options should we look into? Thanks, Ed Mandy