From owner-freebsd-alpha  Fri Dec 27 14:13:36 2002
Delivered-To: freebsd-alpha@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id AF03F37B401
	for <freebsd-alpha@freebsd.org>; Fri, 27 Dec 2002 14:13:33 -0800 (PST)
Received: from kanga.honeypot.net (kanga.honeypot.net [208.162.254.122])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 85B5443EDC
	for <freebsd-alpha@freebsd.org>; Fri, 27 Dec 2002 14:13:32 -0800 (PST)
	(envelope-from kirk@strauser.com)
Received: from pooh.honeypot.net (pooh.honeypot.net [10.0.1.2])
	by kanga.honeypot.net (8.12.6/8.12.6) with ESMTP id gBRMDVeC008848
	for <freebsd-alpha@freebsd.org>; Fri, 27 Dec 2002 16:13:31 -0600 (CST)
	(envelope-from kirk@strauser.com)
Received: from pooh.honeypot.net (localhost [127.0.0.1])
	by pooh.honeypot.net (8.12.6/8.12.6/Debian-8) with ESMTP id gBRMDVNZ009979
	for <freebsd-alpha@freebsd.org>; Fri, 27 Dec 2002 16:13:31 -0600
Received: (from kirk@localhost)
	by pooh.honeypot.net (8.12.6/8.12.6/Debian-8) id gBRMDVkg009976
	for freebsd-alpha@freebsd.org; Fri, 27 Dec 2002 16:13:31 -0600
To: freebsd-alpha@freebsd.org
Subject: PC64 getting kernel panics while using bridged networking
From: Kirk Strauser <kirk@strauser.com>
Date: 23 Dec 2002 23:02:13 -0600
Message-ID: <874r94f1re.fsf@pooh.honeypot.net>
X-Mailer: Gnus/5.09 (Gnus v5.9.0) Emacs/21.2
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Lines: 92
Sender: owner-freebsd-alpha@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-alpha.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-alpha>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-alpha>
X-Loop: FreeBSD.org

I have a PC64 machine with a recently-installed copy of FreeBSD 5.0-RC1
(plus a cvsup or two since installation).  I want to use it as a bridged
firewall using two fxp NICs.  The kernel is a derivative of GENERIC with
inapplicable devices commented out, and only one option:

    options                PFIL_HOOKS

added (I'm using 5.0 in the first place because I want to use ipf on the
bridge).

My trivial bridge setup is:

    # cat /usr/local/etc/rc.d/0.bridge.sh
    #!/bin/sh

    kldload bridge
    sysctl net.link.ether.bridge_cfg="fxp0,fxp1"
    sysctl net.link.ether.bridge_ipf=1
    sysctl net.link.ether.bridge=1

and my ipf.rules consists of only:

    pass in all
    pass out all

for now.  The setup works well for short periods of time, but the kernel
panics as soon as a small load crosses the bridge.  Excerpts from dmesg:

    fxp0: promiscuous mode enabled
    fxp1: promiscuous mode enabled
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5
    ether_input: drop bdg packet, bif 0x5

    fatal kernel trap:

        trap entry     = 0x4 (unaligned access fault)
        faulting va    = 0xfffffe0000028e9a
        opcode         = 0x28
        register       = 0x3
        pc             = 0xfffffc00003614a8
        ra             = 0xfffffc0000362284
        sp             = 0xfffffe000a36ba60
        curthread      = 0xfffffc000f71fd10
            pid = 19, comm = intr: fxp0

    panic: trap

    syncing disks, buffers remaining...
    done
    Uptime: 8m28s
    Automatic reboot in 15 seconds - press a key on the console to abort
    Rebooting...

I have never experienced these panics using the system in non-bridged mode,
i.e. as a regular host on the network.  The repeatability is 100%: if I
enable bridging, then the kernel panics within minutes.

Any ideas?  I am *very* new to the Alpha platform (I only built my first
machine within the last month), although I have a bit of experience with
FreeBSD/x86.

Please note that although I'd be willing to try a bog-standard GENERIC
kernel, I don't have one on the system anymore, and it takes several hours
to build one.  As I've dedicated tonight to a 'buildworld' to update the
compiler toolchain before giving this another effort, I'll have to wait
until tomorrow (at the earliest) to try it.  However, my kernel really
should be very similar to GENERIC (minus the one addition), and I only used
the minimal optimizations ('-O') from /etc/defaults/make.conf to build it.
-- 
Kirk Strauser
In Googlis non est, ergo non est.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-alpha" in the body of the message