Date: Tue, 21 Oct 2008 20:27:54 +1030 From: "Daniel O'Connor" <doconnor@gsoft.com.au> To: Mike Tancsa <mike@sentex.net> Cc: freebsd-stable@freebsd.org Subject: Re: Userland PPP not deleting old IP on disconnect Message-ID: <200810212028.03184.doconnor@gsoft.com.au> In-Reply-To: <200810151339.57406.doconnor@gsoft.com.au> References: <200810092206.02362.doconnor@gsoft.com.au> <200810150238.m9F2cAWu007721@lava.sentex.ca> <200810151339.57406.doconnor@gsoft.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart1878818.PBBI8QdGok Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Wednesday 15 October 2008 13:39:51 Daniel O'Connor wrote: > On Wednesday 15 October 2008 13:08:02 Mike Tancsa wrote: > > > very odd it only just started doing it though.. > > > > do you have tun0 in () on your nat statement ? > > > > eg. > > nat on tun0 from 192.168.23.0/24 to any -> (tun0) > > Yep. > > > You could always add to ppp.linkup something like > > > > pppoe: > > ! /sbin/pfctl -Fnat -f /etc/pf.conf > > Hmm.. I didn't realise you could delete NAT only state like that, I will > give it a try! > > (I've been doing pfctl -k $oldip) > > Thanks. I tried this but no luck. I find that every second connect works, eg.. [midget 20:12] ~ >sudo pfctl -s state | grep 203.31.81.10 No ALTQ support in kernel ALTQ related functions disabled all tcp 203.31.81.10:22 <- 10.0.2.99:55188 ESTABLISHED:ESTABLISHED all tcp 10.0.2.99:55188 -> 121.45.249.156:55188 -> 203.31.81.10:22 ES= TABLISHED:ESTABLISHED all tcp 203.31.81.10:22 <- 10.0.2.99:55190 CLOSED:SYN_SENT all tcp 10.0.2.99:55190 -> 121.45.57.17:55190 -> 203.31.81.10:22 SYN_= SENT:CLOSED all tcp 203.31.81.10:22 <- 10.0.2.99:55194 FIN_WAIT_2:FIN_WAIT_2 all tcp 10.0.2.99:55194 -> 121.45.249.156:55194 -> 203.31.81.10:22 FI= N_WAIT_2:FIN_WAIT_2 As you can see it mentions the old (121.45.57.17) and new (121.45.249.156) IPs.. I have no idea where it is getting that IP from.. ifconfig & netstat don't= =20 show it. I've even tried /etc/rc.d/pf restart but that doesn't fix it.. It's very=20 perplexing :( =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart1878818.PBBI8QdGok Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQBI/aer5ZPcIHs/zowRAlqvAJ9GeEn6h5ESoi0Ny3iDFJL21rQfOACfSZt0 K0fBw2qOAt7rmKsL2J2fIZ8= =cSji -----END PGP SIGNATURE----- --nextPart1878818.PBBI8QdGok--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200810212028.03184.doconnor>