From owner-freebsd-net@FreeBSD.ORG Wed Oct 10 11:57:08 2012 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id A8875816 for ; Wed, 10 Oct 2012 11:57:08 +0000 (UTC) (envelope-from dblais@interplex.ca) Received: from smtp1.interplex.ca (smtp1.interplex.ca [207.134.105.5]) by mx1.freebsd.org (Postfix) with ESMTP id 189EB8FC12 for ; Wed, 10 Oct 2012 11:57:07 +0000 (UTC) Received: by smtp1.interplex.ca (Postfix, from userid 106) id 3605F50959; Wed, 10 Oct 2012 07:57:07 -0400 (EDT) Received: from smtp.interplex.ca (office.abi.ca [207.134.166.34]) by smtp1.interplex.ca (Postfix) with ESMTP id CCD5B508A3 for ; Wed, 10 Oct 2012 07:57:06 -0400 (EDT) Received: from WIN2008.Domnt.abi.ca ([fe80::e06e:fea4:8702:2295]) by WIN2008.Domnt.abi.ca ([fe80::e06e:fea4:8702:2295%12]) with mapi; Wed, 10 Oct 2012 07:57:06 -0400 From: Dominic Blais To: "freebsd-net@freebsd.org" Date: Wed, 10 Oct 2012 07:57:05 -0400 Subject: Default route "random" gateway modification bug Thread-Topic: Default route "random" gateway modification bug Thread-Index: Ac2m3l39o02GBaGGQPykMzeaPsc91w== Message-ID: <2DE61B0869B7484997BCA012845482C7EBE8E2819F@WIN2008.Domnt.abi.ca> Accept-Language: fr-FR, fr-CA Content-Language: fr-FR X-MS-Has-Attach: yes X-MS-TNEF-Correlator: acceptlanguage: fr-FR, fr-CA Content-Type: multipart/related; boundary="_004_2DE61B0869B7484997BCA012845482C7EBE8E2819FWIN2008Domnta_"; type="multipart/alternative" MIME-Version: 1.0 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2012 11:57:08 -0000 --_004_2DE61B0869B7484997BCA012845482C7EBE8E2819FWIN2008Domnta_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi (sorry, I clicked send too fast ;) ), I had to change the server of my customer who have this bug because we want= ed to put 2 redundant servers with carp... I removed the old server and re= placed it with 2 brand new ones. The old one was an HP ML115 and th= e new ones are Lenovo TS120. The new servers are the same model (H= P ML115). I used the same software: - FreeBSD 9.0 - MPD 5.6 - IPFW (pipes only + single pass all rule) - PF ruleset for filter and NAT. And only added: kldload if_carp.ko The problem just happened this last night with that configuration so I may = say it should be replicable if someone did use the same FreeBSD version wit= h ipfw for pipes and pf for rules/nat. We still don't know what is exactly = messing up with the default gateway but we know that it is something with t= he mix of FreeBSD 9, IPFW for pipes and PF for NAT. You must add some traff= ic to it to make it happen since it looks like it's using an IP of a host t= he users communicated with to replace the gateway. I often see, but not onl= y, Microsoft owned IP as my default gateway when it happens. -- [cid:image001.gif@01CDA6BC.D6EB26D0] --_004_2DE61B0869B7484997BCA012845482C7EBE8E2819FWIN2008Domnta_--