From owner-freebsd-stable@FreeBSD.ORG Fri May 27 17:16:04 2005 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3968816A41C for ; Fri, 27 May 2005 17:16:04 +0000 (GMT) (envelope-from jovanross@msn.com) Received: from hotmail.com (bay107-f8.bay107.hotmail.com [64.4.51.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1578243D1F for ; Fri, 27 May 2005 17:16:03 +0000 (GMT) (envelope-from jovanross@msn.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 27 May 2005 10:16:03 -0700 Message-ID: Received: from 64.4.51.220 by by107fd.bay107.hotmail.msn.com with HTTP; Fri, 27 May 2005 17:16:03 GMT X-Originating-IP: [64.4.51.220] X-Originating-Email: [jovanross@msn.com] X-Sender: jovanross@msn.com From: "Jovan Ross" To: freebsd-stable@freebsd.org Date: Fri, 27 May 2005 13:16:03 -0400 Mime-Version: 1.0 Content-Type: text/plain; format=flowed X-OriginalArrivalTime: 27 May 2005 17:16:03.0632 (UTC) FILETIME=[C2DB7B00:01C562DF] Subject: FreeBSD 5.4 Dropping off Network X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 May 2005 17:16:04 -0000 I am experiencing problems keeping FreeBSD 5.4 connected. I have uptimes of 5 or 6 days - sometimes 10 or 11, then, without freezing the machine totally, it stops responding to network traffic. I get DOS attacked every once and a while and my logs are also filled with failed auths from password crackers but it seems that I have the worst effects from it. I don't have any web traffic yet b/c this is my development machine. I have portsentry with a default open firewall config running. I even took the firewall & portsentry off and I get the same problem. I am new to FreeBSD and have done the standard security procedures that new ones are advised to do: enabled secure level 1 syslogd -ss no portmap ssh protocol 2 no inetd (could this help my server get up again if it loses connectivity or a service fails?) no ftpd no ntpd sysctl: log in vain tcp/udp blackhole 2 tcp blackhole 1 udp ip rtexpire 2 ip rtminexpire 2 nmbclusters 81920 maxfiles 32768 maxfilesperproc 32768 maxusers 512 somaxconn 1024 tcp sendspace 8192 tcp recvspace 16384 tcp always_keepalive 1 maxsockets 163840 maxsockbuf 2097152 Am I missing something? I want to experience the stability that I've been hearing from FreeBSD users but have not been able to achieve it. Could there possibly be a setting that says basically: "In case of attack deny all connections?" I know I may be stretching it but I've exhausted all my other ideas. Please let me know if you need any information - I will gladly send anything.