Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 26 Jun 1995 01:01:14 +0100
From:      "Jordan K. Hubbard" <jkh@freebsd.org>
To:        hackers@freebsd.org
Subject:   Well, I'm stumped.. [ij-ppp]
Message-ID:  <199506260001.BAA13537@whisker.internet-eireann.ie>
next in thread | raw e-mail | index | archive | help 
Tonite, after adding a whole batch of afilters and dfilters (as per suggestion)
I went back to auto mode and went out to dinner after reading my mail.
Here's what I found in my ppp log when I came back:

06-25 19:52:07 [12692] CCP: LayerFinish.
06-25 19:52:07 [12692] CCP: state change Req-Sent --> Stopped
06-26 00:08:44 [12692] Idle timer expired.
06-26 00:08:44 [12692] LCP: LayerDown
06-26 00:08:44 [12692] OsLinkdown: 194.9.34.254
06-26 00:08:44 [12692] Phase: Terminate

As you can see, the silly thing stayed up for *4 hours* before finally
going down!

I have the following in my /etc/ppp/ppp.conf file:

default:
 set device /dev/cuaa3
 set speed 38400
 disable lqr
 deny lqr
 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" ATE1Q0M1 OK-AT-OK \\dATD
T\\T TIMEOUT 40 CONNECT"
 set afilter 0 deny icmp
 set afilter 1 deny udp src eq 53
 set afilter 2 deny udp dst eq 53
 set afilter 3 deny udp src eq 520
 set afilter 4 deny udp dst eq 520
 set afilter 5 deny udp src eq 123
 set afilter 6 deny udp dst eq 123
 set afilter 7 permit 0/0 0/0
#
# Don't dial with ICMP, DNS, RIP, NTP packet
#
 set dfilter 0 deny icmp
 set dfilter 1 deny udp src eq 53
 set dfilter 2 deny udp dst eq 53
# include DNS zone transfer request via TCP
 set dfilter 3 deny tcp src eq 53
 set dfilter 4 deny tcp dst eq 53
 set dfilter 5 deny udp src eq 520
 set dfilter 6 deny udp dst eq 520
 set dfilter 7 deny udp src eq 123
 set dfilter 8 deny udp dst eq 123
 set dfilter 9 permit 0/0 0/0
 set timeout 60

eireann:
 <entries specific to my service provider>

Heck, even if the timeout wasn't parsed somehow in the default rule you'd
still think that the default timeout of 360 would have been applied!  Instead,
it stayed up for 240 minutes and wasted a significant amount of phone charges.

Needless to say, I'm going back to non-auto mode, but I really think that
there's a problem here at this point and that it's not just me.

Any suggestions?

						Jordan

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199506260001.BAA13537>