From owner-freebsd-current@FreeBSD.ORG Tue Nov 10 01:08:54 2009 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 336A4106566C for ; Tue, 10 Nov 2009 01:08:54 +0000 (UTC) (envelope-from rmacklem@uoguelph.ca) Received: from esa-annu.mail.uoguelph.ca (esa-annu.mail.uoguelph.ca [131.104.91.36]) by mx1.freebsd.org (Postfix) with ESMTP id A14C58FC1D for ; Tue, 10 Nov 2009 01:08:53 +0000 (UTC) X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: ApoEAHJM+EqDaFvG/2dsb2JhbADdNYQ+BA X-IronPort-AV: E=Sophos;i="4.44,712,1249272000"; d="scan'208";a="53210202" Received: from amazon.cs.uoguelph.ca ([131.104.91.198]) by esa-annu-pri.mail.uoguelph.ca with ESMTP; 09 Nov 2009 20:08:42 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by amazon.cs.uoguelph.ca (Postfix) with ESMTP id C35CE210108; Mon, 9 Nov 2009 20:08:42 -0500 (EST) X-Virus-Scanned: amavisd-new at amazon.cs.uoguelph.ca Received: from amazon.cs.uoguelph.ca ([127.0.0.1]) by localhost (amazon.cs.uoguelph.ca [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gwskMVM334fE; Mon, 9 Nov 2009 20:08:42 -0500 (EST) Received: from muncher.cs.uoguelph.ca (muncher.cs.uoguelph.ca [131.104.91.102]) by amazon.cs.uoguelph.ca (Postfix) with ESMTP id E4DEE2100FB; Mon, 9 Nov 2009 20:08:41 -0500 (EST) Received: from localhost (rmacklem@localhost) by muncher.cs.uoguelph.ca (8.11.7p3+Sun/8.11.6) with ESMTP id nAA1GJj18103; Mon, 9 Nov 2009 20:16:19 -0500 (EST) X-Authentication-Warning: muncher.cs.uoguelph.ca: rmacklem owned process doing -bs Date: Mon, 9 Nov 2009 20:16:19 -0500 (EST) From: Rick Macklem X-X-Sender: rmacklem@muncher.cs.uoguelph.ca To: Chuck Swiger In-Reply-To: Message-ID: References: <4AF0B7DF.9030405@freebsd.org> <030A8229-9707-4F70-B4BE-584F1BF9ECEC@FreeBSD.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-current Current Subject: Re: Help needed: TCP Wizards (was 8.0-RC1 NFS client timeout issue) X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Nov 2009 01:08:54 -0000 On Mon, 9 Nov 2009, Chuck Swiger wrote: > On Nov 9, 2009, at 3:04 PM, Rick Macklem wrote: > [ ... ] >> It was usually triggered by a server reboot. After the server reboot, >> the server does send an RST to the client. This seems legit, but might >> be what makes Cisco think that "bad things" are happening? (I have no >> access to info about the switches or their configuration, although the >> campus standard is for these ports to be used by a single desktop machine >> only and not a switch or hub.) > > The description you've provided suggests your network admins are configuring > end-user ports with "Port Fast" to avoid the time required to do spanning > tree learning & detection; they want you to not use a switch or hub on such > ports to avoid the risk of creating a loop. Cisco routers have some options > which cause them to drop packets and disable the port in such a mode if it > sees more than the allowed # of ether MAC addresses coming from that port, or > if it receives BPDU packets indicating that a switch was connected to the > port; however, this wouldn't cause RST packets to be generated, you'd just > lose your uplink. > > Seeing forged RST packets suggests that something like the Sandvine PTS > equipment is also around on that network. > I'll admit I've never seen any of the hardware and don't know what all is set up. (The campus networking folks seem to consider such things "need to know" and I'm not in the "need to know" category:-) So, I can't say what is at fault, it just sure looks like the RSTs are coming down the uplink and they even have the MAC of the FreeBSD-CURRENT client. I do recall that we were the biggest Cisco IP phone installation they had ever done, when it went in, but that was a fair number of years ago. rick