Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 23 Jul 2009 06:23:59 -0700 (PDT)
From:      Umar <unix.co@gmail.com>
To:        freebsd-pf@freebsd.org
Subject:   please Help
Message-ID:  <24625659.post@talk.nabble.com>
next in thread | raw e-mail | index | archive | help 

Dear Members!

I have FreeBSD 7.1 with squid proxy running. PF is configured.

Last few days i am facing some problems. Browsing is stuck time by time on
clients machine. 

I tried to ping my local network from my FreeBSD server there i found the
issue.

here is the output of ping.

[root@proxyServer ~]# ping 10.11.0.3
PING 10.11.0.3 (10.11.0.3): 56 data bytes
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
64 bytes from 10.11.0.3: icmp_seq=3 ttl=64 time=0.111 ms
64 bytes from 10.11.0.3: icmp_seq=4 ttl=64 time=0.147 ms
64 bytes from 10.11.0.3: icmp_seq=5 ttl=64 time=0.099 ms

[root@proxyServer ~]# ping 10.11.0.5
PING 10.11.0.5 (10.11.0.5): 56 data bytes
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
64 bytes from 10.11.0.5: icmp_seq=3 ttl=64 time=0.111 ms
64 bytes from 10.11.0.5: icmp_seq=4 ttl=64 time=0.147 ms
64 bytes from 10.11.0.5: icmp_seq=5 ttl=64 time=0.099 ms

On DNS queury
[root@proxyServer~]# nslookup www.yahoo.com
;; connection timed out; no servers could be reached

[root@proxyServer~]# nslookup www.yahoo.com
Server:         10.11.0.9
Address:        10.11.0.9#53

Non-authoritative answer:
www.yahoo.com   canonical name = www.wa1.b.yahoo.com.
www.wa1.b.yahoo.com     canonical name = www-real.wa1.b.yahoo.com.
Name:   www-real.wa1.b.yahoo.com
Address: 87.248.113.14

As you can see some time its getting response and some times not. If I stop
(PF) then its working fine.

Is there any traffic load issue or PF issue? or any kernel tunning required
for heavy traffic.

Please help

Regards,

Umar
-- 
View this message in context: http://www.nabble.com/please-Help-tp24625659p24625659.html
Sent from the freebsd-pf mailing list archive at Nabble.com.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?24625659.post>