From owner-freebsd-stable@FreeBSD.ORG Thu Apr 22 08:35:12 2010 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 488D91065678 for ; Thu, 22 Apr 2010 08:35:12 +0000 (UTC) (envelope-from nr1c0re@gmail.com) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.154]) by mx1.freebsd.org (Postfix) with ESMTP id B1DDF8FC1D for ; Thu, 22 Apr 2010 08:35:11 +0000 (UTC) Received: by fg-out-1718.google.com with SMTP id e12so248143fga.13 for ; Thu, 22 Apr 2010 01:35:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:received:message-id:subject:from:to:content-type; bh=Y8aTezJESh4uqdtX9d5QW3ki9p+cFCWi8ebtxxDG++w=; b=phuO9p2/egfkfT/sYjDcjyOfZ+8TUdknIE/787sHBEo1xhOPlx0i55/lDCDuYi8hG9 7/R7dzeZovpAkNf2Gy1s3ApIU9znBjGmfY5SDwJ2zGBNBx7s9LMNtuZJNF00I8buG3lg wlKHSRApQmskpbKf/lMQpGahVi9JaT24+cJxc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=E+VmfpdSGvfw0xpXOzw6qeH03biGltiMQCj1fv+nOmUPZDq2WYvUTMHVaHdFHUIp9M qrDzA3hDI14P3Q4u+/h5IhS7w32mHKqbaYFAhj67TDvlMhgebcuB20oLsRABjZn0QwAg tGRnsyfrahV5o7EFKOgctQjsmyPQ5cRHDQU+Q= MIME-Version: 1.0 Received: by 10.86.84.6 with HTTP; Thu, 22 Apr 2010 01:35:10 -0700 (PDT) In-Reply-To: References: Date: Thu, 22 Apr 2010 12:35:10 +0400 Received: by 10.87.66.15 with SMTP id t15mr285533fgk.37.1271925310285; Thu, 22 Apr 2010 01:35:10 -0700 (PDT) Message-ID: From: c0re To: freebsd-stable@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: FreeBSD 7.3, reboot after panic: double fault X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Apr 2010 08:35:12 -0000 Bjoern A. Zeeb, I send you e-mail with link to download kernel and dump. And I remade kernel panic situation on virtual machines. You need 2 freebsd machines for gre tunnel. First need just to make gre tunnel like: ifconfig em0 inet 10.0.0.1 netmask 255.255.255.0 ifconfig gre0 create ifconfig gre0 inet 192.168.0.1 192.168.0.2 tunnel 10.10.0.1 10.10.0.2 netmask 255.255.255.252 link1 up route add 10.10.0.3/32 10.10.0.2 Also this machine will be as a client to connect to remote. So we need to install some browser like lynx. Second machine: Default installation of freebsd 7.3 with "src" checked in distributions. After install - recompile kernel for IPFIREWALL_FORWARD support (mainly): # Local additions options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #enable logging to syslogd(8) options IPFIREWALL_VERBOSE_LIMIT=1000 #limit verbosity options IPFIREWALL_FORWARD #packet destination changes options IPDIVERT #divert sockets options IPSTEALTH #support for stealth forwarding options DUMMYNET device carp And make kernel KERNCONF=MYKERNEL reboot and configure network and firewall: ifconfig em0 inet 10.10.0.2 netmask 255.255.255.0 ifconfig em0 alias inet 10.0.0.3 netmask 255.255.255.255 ifconfig gre0 create ifconfig gre0 inet 192.168.0.2 192.168.0.1 tunnel 10.0.0.2 10.0.0.1 netmask 255.255.255.252 link1 up ipfw add 00100 fwd 192.168.0.1 icmp from 10.0.0.3 to any out via em0 ipfw add 00200 fwd 192.168.0.1 tcp from 10.0.0.3 80 to any out via em0 ipfw add 00300 fwd 192.168.0.1 tcp from 10.0.0.3 443 to any out via em0 ipfw add 00400 allow ip from any to any At that moment you can check icmp ping from 10.0.0.1 10.0.0.3 and ipfw show to view that ipfw fwd counters are working. Next we need to have some tcp service. I used apache2. So in port /usr/ports/www/apache20 make install clean. apache20_enable="YES" in rc.conf In /usr/local/etc/apache2/httpd.conf: edit "Listen 80" to "Listen 10.0.0.3:80 " and add virtual host with 10kb index.html NameVirtualHost 10.0.0.3:80 > DocumentRoot /usr/local/www/test mkdir /usr/local/www/test dd if=/dev/random of=/usr/local/www/test/index.html bc=10k count=1 /usr/local/etc/rc.d/apache2 start At that moment everything ready to panic :) >From first machine i'm trying lynx http://10.0.0.3/ On second machine I see kernel panic. When I was testing - I got no panic at first time. So I generated apache ssl certs and adited ssl.conf. But next time I made same configuration - not only 443, but 80 port connection made kernel panic too.