From owner-freebsd-questions Mon Feb 18 0:16:39 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mip.co.za (puck.mip.co.za [209.212.106.44]) by hub.freebsd.org (Postfix) with ESMTP id CD01D37B416 for ; Mon, 18 Feb 2002 00:16:17 -0800 (PST) Received: from patrick (patrick.mip.co.za [10.3.13.181]) by mip.co.za (8.9.3/8.9.3) with SMTP id KAA63390 for ; Mon, 18 Feb 2002 10:15:59 +0200 (SAST) (envelope-from patrick@mip.co.za) From: "Patrick O'Reilly" To: "FreeBSD Question List" Subject: Gateway server "hanging" Date: Mon, 18 Feb 2002 10:22:03 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello everyone! Something I've never seen before happened yesterday - a FreeBSD gateway/firewall server "hanging" ?!? The server is running ipfw and natd, and it handles routing between 6 private networks, and one Internet connection. It runs sshd (so I can do remote support), and net-snmp (so I can monitor it with mrtg). Apart from these services, it does NOTHING ELSE! Yesterday evening it appeared to "hang". An on-site operator reported that the keyboard would not even respond to the num-lock key. Ctl-Alt-Del was also ignored. We were forced to cycle the power! The last messages in /var/log/messages before the reboot were these: ------------------------- Feb 17 18:22:39 perimeter natd[506]: failed to write packet back (Permission denied) Feb 17 18:23:03 perimeter last message repeated 3 times Feb 17 18:24:46 perimeter /kernel: 8.223:22 in via xl0 Feb 17 18:51:11 perimeter /kernel: Copyright (c) 1992-2001 The FreeBSD Project. ------------------------- I understand the natd errors, but that "/kernel: 8.223:22 in via xl0" is foreign to me. (xl0 is the NIC facing the Internet). Any clues anyone? PS: This server is 4.3 RELEASE. Perhaps an update would be in order? Regards, Patrick. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message