Date: Fri, 18 Jun 2010 19:01:49 +0100 From: "Steven Hartland" <killing@multiplay.co.uk> To: <freebsd-net@freebsd.org> Cc: liv3d@multiplay.co.uk, geedee@multiplay.co.uk Subject: FreeBSD 8.x + multiple ip ipnat = hard lock Message-ID: <A93BBFFAB9AF4D658C9FF9CD77B91BD2@multiplay.co.uk>
next in thread | raw e-mail | index | archive | help
We're trying to get the following config working but as soon as we try to assign an outbound range to in ipnat.rules the machine will hard lock, not even capslock light will activate. [rc.conf] defaultrouter="217.41.248.1" ifconfig_em0="inet 217.41.248.10 netmask 255.255.255.0" ifconfig_em0_alias0="inet 217.41.248.192/32" ifconfig_em0_alias1="inet 217.41.248.193/32" ipfilter_enable="YES" ipfilter_rules="/etc/ipf.rules" ipv6_ipfilter_rules="" ipfilter_flags="-D -T ipf_nattable_sz=10009,ipf_nattable_max=300000 -E" ipmon_enable="YES" ipmon_flags="-Ds" ipnat_enable="YES" ipnat_rules="/etc/ipnat.rules" [/rc.conf] [ipnat.rules] map em0 10.10.98.0/23 -> 217.41.248.192/31 portmap tcp/udp auto map em0 10.10.98.0/23 -> 217.41.248.192/31 [/ipnat.rules] also tried: [ipnat.rules] map em0 10.10.98.0/23 -> 217.41.248.192/31 [/ipnat.rules] If we change to a /32 all is fine. It can take a few mins to hang but hang it always does. We've swapped out the hardware and upgraded from 8.0 to 8.1-PRE but no change. Does anyone have any ideas what this could be or how do debug? Regards Steve ================================================ This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it. In the event of misdirection, illegible or incomplete transmission please telephone +44 845 868 1337 or return the E.mail to postmaster@multiplay.co.uk.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?A93BBFFAB9AF4D658C9FF9CD77B91BD2>