From owner-freebsd-bugs Thu Jul 26 17:40: 8 2001 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 15BDD37B406 for ; Thu, 26 Jul 2001 17:40:02 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.4/8.11.4) id f6R0e2h25162; Thu, 26 Jul 2001 17:40:02 -0700 (PDT) (envelope-from gnats) Received: from ion.var.cx (e166066.upc-e.chello.nl [213.93.166.66]) by hub.freebsd.org (Postfix) with ESMTP id BEECD37B403 for ; Thu, 26 Jul 2001 17:31:40 -0700 (PDT) (envelope-from fvw@var.cx) Received: (from fvw@localhost) by ion.var.cx (8.11.3/8.11.3) id f6R2ZVR18145; Fri, 27 Jul 2001 02:35:32 GMT (envelope-from fvw) Message-Id: <200107270235.f6R2ZVR18145@ion.var.cx> Date: Fri, 27 Jul 2001 02:35:32 GMT From: fvw@var.cx Reply-To: fvw@var.cx To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.113 Subject: bin/29253: natd forgets about udp connections Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 29253 >Category: bin >Synopsis: natd forgets about udp connections >Confidential: no >Severity: serious >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Jul 26 17:40:01 PDT 2001 >Closed-Date: >Last-Modified: >Originator: Frank v Waveren >Release: FreeBSD 4.3-RELEASE i386 >Organization: none >Environment: >Description: I have a problem where natd appears to be losing entries from it's table of forwarded connections... I have the sysctl net.inet.ipf.fr_udptimeout set to 864000, and yet, once in a while, natd forgets about the previous traffic all together, as illustrated by the following tcpdumps (this is icq traffic): on ed0 (the public interface): 13:30:26.085447 fes-d006.icq.aol.com.4000 > e166066.upc-e.chello.nl.1026: udp 21 (DF) 13:30:50.033977 fes-d006.icq.aol.com.4000 > e166066.upc-e.chello.nl.1026: udp 70 (DF) 13:30:50.038764 e166066.upc-e.chello.nl.1026 > fes-d006.icq.aol.com.4000: udp 28 13:32:03.114457 fes-d006.icq.aol.com.4000 > e166066.upc-e.chello.nl.1026: udp 70 (DF) 13:32:03.116865 e166066.upc-e.chello.nl > fes-d006.icq.aol.com: icmp: e166066.upc-e.chello.nl udp port 1026 unreachable (DF) 13:32:09.117458 fes-d006.icq.aol.com.4000 > e166066.upc-e.chello.nl.1026: udp 70 (DF) 13:32:09.119853 e166066.upc-e.chello.nl > fes-d006.icq.aol.com: icmp: e166066.upc-e.chello.nl udp port 1026 unreachable (DF) on ed1 (on the local net): 13:30:26.086744 fes-d006.icq.aol.com.4000 > hypnos.1026: udp 21 (DF) 13:30:50.035364 fes-d006.icq.aol.com.4000 > hypnos.1026: udp 70 (DF) 13:30:50.036130 hypnos.1026 > fes-d006.icq.aol.com.4000: udp 28 13:32:25.976894 ... In these examples, e166066.upc-e.chello.nl is the public ip of the nat box, hypnos is the host from which the traffic is coming (this host is behind the nat box). >How-To-Repeat: Just run natd and do udp traffic. >Fix: Unknown. >Release-Note: >Audit-Trail: >Unformatted: >System: FreeBSD ion.var.cx 4.3-RELEASE FreeBSD 4.3-RELEASE #27: Tue May 8 03:18:16 GMT 2001 fvw@noi.var.cx:/usr/src/sys/compile/NOI i386 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message