From owner-freebsd-net@FreeBSD.ORG  Mon Jan 10 17:12:02 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id D215216A4CE; Mon, 10 Jan 2005 17:12:02 +0000 (GMT)
Received: from mail.foolishgames.com (mail.foolishgames.com [216.55.178.45])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 9430243D1D; Mon, 10 Jan 2005 17:12:02 +0000 (GMT)
	(envelope-from laffer1@mail.foolishgames.com)
Received: from mail.foolishgames.com (localhost.dedicated.abac.net
	[127.0.0.1])j0AIFnL5013271
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Mon, 10 Jan 2005 10:15:49 -0800 (PST)
	(envelope-from laffer1@mail.foolishgames.com)
X-Authentication-Warning: mail.foolishgames.com: Host
	localhost.dedicated.abac.net [127.0.0.1] claimed to be mail.foolishgames.com
Received: from localhost (laffer1@localhost)j0AIFnTX013268;
	Mon, 10 Jan 2005 10:15:49 -0800 (PST)
	(envelope-from laffer1@mail.foolishgames.com)
Date: Mon, 10 Jan 2005 10:15:49 -0800 (PST)
From: laffer1 <laffer1@mail.foolishgames.com>
To: Len Conrad <LConrad@Go2France.com>
In-Reply-To: <6.1.1.1.2.20050110103857.045a9a68@81.255.84.73>
Message-ID: <20050110101200.W13168@mail.foolishgames.com>
References: <6.1.1.1.2.20050110103857.045a9a68@81.255.84.73>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
cc: freebsd-net@freebsd.org
cc: freebsd-questions@freebsd.org
Subject: Re: buildup of Windows time_wait talking to fbsd 4.10
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Jan 2005 17:12:03 -0000



On Mon, 10 Jan 2005, Len Conrad wrote:

>
> We have a windows mailserver that relays its outbound to a fbsd gateway.  We 
> changed to a different fbsd gateway running 4.10. Windows then began having 
> trouble sending to 4.10.  Windows "netstat -an" shows  dozens of lines like 
> this:
>
>         source IP              desitination IP
> ======================================================================
>  TCP    10.1.16.3:1403         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1407         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1415         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1419         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1435         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1462         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1470         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1473         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1478         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1493         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1504         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1507         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1508         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1521         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1526         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1546         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1550         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1568         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1571         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1589         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1592         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1616         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1620         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1629         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1644         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1647         192.168.200.59:25      TIME_WAIT
>  TCP    10.1.16.3:1654         192.168.200.59:25      TIME_WAIT
>
> Eventually, the windows SMTP logs line like "cannot connect to remote IP" or 
> "address already in use" because no local tcp/ip sockets are available, we 
> think.
>
> The new gateway/fbsd 4.10 "sockstat -4" shows no corresponding tcp 
> connections when the Windows server is showing as above.  On the fbsd 4.10 
> machines, smtp logs, syslog, and dmesg show no errors.
>
> We switch the windows box to smtp gateway towards the old box/fbsd 4.7, all 
> is cool.
>
> Suggestions with how to proceed debugging, please.
>
> I'm trying to get the dmesg.boot for the 4.7 and 4.10 boxes now, sorry.
>
> Len

Just off the top of my head...

You mentioned the freebsd machine is the gateway.  Do you have a firewall 
on the host blocking connections from the windows machine?  Do you have a 
different kernel configuration between 4.7 and 4.10?  i.e. do you have 
something like ipdivert, etc in the kernel on one box and not the other? 
Can the windows machine ping the ip 192.168.200.59 as its a different 
class C?

Luke