From owner-freebsd-stable Mon Sep 3 20:34:11 2001 Delivered-To: freebsd-stable@freebsd.org Received: from dino.creativens.net (216.187.75.67.novustelecom.net [216.187.75.67]) by hub.freebsd.org (Postfix) with SMTP id 1815137B403 for ; Mon, 3 Sep 2001 20:34:08 -0700 (PDT) Received: (qmail 18403 invoked from network); 4 Sep 2001 03:30:02 -0000 Received: from unknown (HELO funkblaster) (216.187.75.66) by 216.187.75.67.novustelecom.net with SMTP; 4 Sep 2001 03:30:02 -0000 Message-ID: <013b01c134f2$92bd1600$0501a8c0@creativens.net> From: "Mike Richards" To: "diwelf" , "Mike Tancsa" Cc: References: <5.1.0.14.0.20010818095844.036aa618@192.168.0.12> <004f01c12815$ab9334a0$0200000a@jargon> Subject: Re: IPFilter problem on current cvs Date: Mon, 3 Sep 2001 20:34:59 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have the same problem. do an ipfstat -t (your state table). Somehow the state table is becoming full. I have to run an ipf -FS every couple days to fix/prevent it. I have no idea of course why it happens. I don't use DHCP on either of my interfaces. If anyone finds out the cause I'd be happy to know the answer. Mike ----- Original Message ----- From: "diwelf" To: "Mike Tancsa" Cc: Sent: Saturday, August 18, 2001 11:43 AM Subject: Re: IPFilter problem on current cvs > Thanks for the quick reply, i'm not too sure if it is or not. How would i go > about checking if it is? I looked through my logs and didn't see anything > pertaining to ipf or ipnat crashing or dhclient crashing or anything of the > above. I did try to kill dhlicent, and restart it,and it got my ip address > and everything else, but it still wasn't forwarding packets. I also tried > killing the rules for ipfilter and reinserting them this didn't do anything > either :( > > matt > > > > > > > Does your forwarding freezing correspond with your dc0 interface renewing > > its DHCP lease ? Any way to try it for a while with statically assigning > > dc0 and IP address ? > > > > ---Mike > > > > At 01:22 AM 8/18/2001 -0400, diwelf wrote: > > >Hello, > > > I'm running fbsd on my p133/32mb ram, 1.4gb hdd. I'm using it as a > > > nat/ipf gateway for the rest of my network. My network is using > > > 10.0.0.0/24. Now, my problem is that every once in a while my box stops > > > forwarding packets out from the firewall. So far, the only solution i've > > > found is to reboot the box, but this is in no way a viable long term > > > solution. I'm quite new to ipf/fbsd so i may be missing something minute > > > somewhere. I've forwarded this messege to both the stable and ipf > mailing > > > lists just incase it's pertaining to freebsd or to ipf itself. I've > > > included my sysctl.conf, kernel config file, rc.conf, ipf.rules, > > > ipnat.rules for review. Thanks in advance > > > > -------------------------------------------------------------------- > > Mike Tancsa, tel +1 519 651 3400 > > Network Administration, mike@sentex.net > > Sentex Communications www.sentex.net > > Cambridge, Ontario Canada www.sentex.net/mike > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message