Date: Mon, 3 Sep 2001 20:34:59 -0700 From: "Mike Richards" <mrichard@creativens.net> To: "diwelf" <diwelf@gmx.net>, "Mike Tancsa" <mike@sentex.net> Cc: <freebsd-stable@freebsd.org> Subject: Re: IPFilter problem on current cvs Message-ID: <013b01c134f2$92bd1600$0501a8c0@creativens.net> References: <5.1.0.14.0.20010818095844.036aa618@192.168.0.12> <004f01c12815$ab9334a0$0200000a@jargon>
next in thread | previous in thread | raw e-mail | index | archive | help
I have the same problem. do an ipfstat -t (your state table). Somehow the state table is becoming full. I have to run an ipf -FS every couple days to fix/prevent it. I have no idea of course why it happens. I don't use DHCP on either of my interfaces. If anyone finds out the cause I'd be happy to know the answer. Mike ----- Original Message ----- From: "diwelf" <diwelf@gmx.net> To: "Mike Tancsa" <mike@sentex.net> Cc: <freebsd-stable@freebsd.org> Sent: Saturday, August 18, 2001 11:43 AM Subject: Re: IPFilter problem on current cvs > Thanks for the quick reply, i'm not too sure if it is or not. How would i go > about checking if it is? I looked through my logs and didn't see anything > pertaining to ipf or ipnat crashing or dhclient crashing or anything of the > above. I did try to kill dhlicent, and restart it,and it got my ip address > and everything else, but it still wasn't forwarding packets. I also tried > killing the rules for ipfilter and reinserting them this didn't do anything > either :( > > matt > > > > > > > Does your forwarding freezing correspond with your dc0 interface renewing > > its DHCP lease ? Any way to try it for a while with statically assigning > > dc0 and IP address ? > > > > ---Mike > > > > At 01:22 AM 8/18/2001 -0400, diwelf wrote: > > >Hello, > > > I'm running fbsd on my p133/32mb ram, 1.4gb hdd. I'm using it as a > > > nat/ipf gateway for the rest of my network. My network is using > > > 10.0.0.0/24. Now, my problem is that every once in a while my box stops > > > forwarding packets out from the firewall. So far, the only solution i've > > > found is to reboot the box, but this is in no way a viable long term > > > solution. I'm quite new to ipf/fbsd so i may be missing something minute > > > somewhere. I've forwarded this messege to both the stable and ipf > mailing > > > lists just incase it's pertaining to freebsd or to ipf itself. I've > > > included my sysctl.conf, kernel config file, rc.conf, ipf.rules, > > > ipnat.rules for review. Thanks in advance > > > > -------------------------------------------------------------------- > > Mike Tancsa, tel +1 519 651 3400 > > Network Administration, mike@sentex.net > > Sentex Communications www.sentex.net > > Cambridge, Ontario Canada www.sentex.net/mike > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?013b01c134f2$92bd1600$0501a8c0>