From owner-freebsd-bugs  Wed Feb  6  6:40:45 2002
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id F010F37B420
	for <freebsd-bugs@hub.freebsd.org>; Wed,  6 Feb 2002 06:40:01 -0800 (PST)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g16Ee1V11796;
	Wed, 6 Feb 2002 06:40:01 -0800 (PST)
	(envelope-from gnats)
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id A925137B400
	for <freebsd-gnats-submit@FreeBSD.org>; Wed,  6 Feb 2002 06:37:46 -0800 (PST)
Received: (from nobody@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g16Ebks97449;
	Wed, 6 Feb 2002 06:37:46 -0800 (PST)
	(envelope-from nobody)
Message-Id: <200202061437.g16Ebks97449@freefall.freebsd.org>
Date: Wed, 6 Feb 2002 06:37:46 -0800 (PST)
From: Brian Minder <bmm@minder.net>
To: freebsd-gnats-submit@FreeBSD.org
X-Send-Pr-Version: www-1.0
Subject: kern/34665: ipfilter rcmd proxy "hangs".
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-bugs.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-bugs>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-bugs>
X-Loop: FreeBSD.org


>Number:         34665
>Category:       kern
>Synopsis:       ipfilter rcmd proxy "hangs".
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Feb 06 06:40:01 PST 2002
>Closed-Date:
>Last-Modified:
>Originator:     Brian Minder
>Release:        RELENG_4 snapshot from 02/05/2002
>Organization:
n/a
>Environment:
FreeBSD austin.qedinfo.com 4.5-STABLE FreeBSD 4.5-STABLE #3: Wed Feb  6 08:30:32 EST 2002     root@austin.qedinfo.com:/usr/obj/usr/src/sys/AUSTIN  i386
      
>Description:
Pushing large amounts of data through the rcmd application proxy that is part of ipfilter causes the proxy to hang eventually.  This occurs after from several hundred MB's to a GB or so.  Subsequent attempts to transfer data hang more and more quickly.  The same data can be moved through other ipfilter proxied protocols, such as active or passive ftp, or non-proxied protocols, such as ssh, at similar speeds with no problem.

My configuration:

fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet 192.168.1.230 netmask 0xffffff00 broadcast 192.168.1.255
        inet6 fe80::290:27ff:fe1b:1a8e%fxp0 prefixlen 64 scopeid 0x1 
        ether 00:90:27:1b:1a:8e 
        media: Ethernet autoselect (100baseTX)
        status: active
fxp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet 192.168.2.62 netmask 0xffffff00 broadcast 192.168.2.255
        inet6 fe80::2d0:b7ff:fe22:196%fxp1 prefixlen 64 scopeid 0x2 
        ether 00:d0:b7:22:01:96 
        media: Ethernet autoselect (100baseTX)
        status: active

ipnat.rules:

map fxp1 0/0 -> 0/0 proxy port shell rcmd/tcp

ipf.rules:

pass in quick from any to any
pass out quick from any to any

dmesg:

FreeBSD 4.5-STABLE #3: Wed Feb  6 08:30:32 EST 2002
    root@austin.qedinfo.com:/usr/obj/usr/src/sys/AUSTIN
Timecounter "i8254"  frequency 1193182 Hz
CPU: Pentium II/Pentium II Xeon/Celeron (350.80-MHz 686-class CPU)
  Origin = "GenuineIntel"  Id = 0x652  Stepping = 2
  Features=0x183f9ff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR>
real memory  = 67108864 (65536K bytes)
avail memory = 59740160 (58340K bytes)
Preloaded elf kernel "kernel" at 0xc04a9000.
Pentium Pro MTRR support enabled
md0: Malloc disk
npx0: <math processor> on motherboard
npx0: INT 16 interface
pcib0: <Intel 82443BX (440 BX) host to PCI bridge> on motherboard
pci0: <PCI bus> on pcib0
pcib1: <Intel 82443BX (440 BX) PCI-PCI (AGP) bridge> at device 1.0 on pci0
pci1: <PCI bus> on pcib1
isab0: <Intel 82371AB PCI to ISA bridge> at device 7.0 on pci0
isa0: <ISA bus> on isab0
atapci0: <Intel PIIX4 ATA33 controller> port 0xf000-0xf00f at device 7.1 on pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
uhci0: <Intel 82371AB/EB (PIIX4) USB controller> port 0xe000-0xe01f irq 11 at device 7.2 on pci0
usb0: <Intel 82371AB/EB (PIIX4) USB controller> on uhci0
usb0: USB revision 1.0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
chip1: <Intel 82371AB Power management controller> port 0x5000-0x500f at device 7.3 on pci0
fxp0: <Intel Pro 10/100B/100+ Ethernet> port 0xe400-0xe41f mem 0xe6100000-0xe61fffff,0xe6200000-0xe6200fff irq 10 at device 9.0 on pci0
fxp0: Ethernet address 00:90:27:1b:1a:8e
inphy0: <i82555 10/100 media interface> on miibus0
inphy0:  10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
fxp1: <Intel Pro 10/100B/100+ Ethernet> port 0xe800-0xe83f mem 0xe6000000-0xe60fffff,0xe6201000-0xe6201fff irq 5 at device 13.0 on pci0
fxp1: Ethernet address 00:d0:b7:22:01:96
inphy1: <i82555 10/100 media interface> on miibus1
inphy1:  10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
orm0: <Option ROMs> at iomem 0xc0000-0xc7fff,0xc8000-0xc8fff on isa0
fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0
fdc0: FIFO enabled, 8 bytes threshold
fd0: <1440-KB 3.5" drive> on fdc0 drive 0
atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0
atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
kbd0 at atkbd0
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=0x300>
sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
sio0: type 16550A
sio1 at port 0x2f8-0x2ff irq 3 on isa0
sio1: type 16550A
ppc0: <Parallel port> at port 0x378-0x37f irq 7 on isa0
ppc0: SMC-like chipset (ECP/EPP/PS2/NIBBLE) in COMPATIBLE mode
ppc0: FIFO with 16/16/16 bytes threshold
plip0: <PLIP network interface> on ppbus0
lpt0: <Printer> on ppbus0
lpt0: Interrupt-driven port
ppi0: <Parallel I/O> on ppbus0
IP Filter: v3.4.20 initialized.  Default = block all, Logging = enabled
ad0: 6149MB <QUANTUM FIREBALL EX6.4A> [13328/15/63] at ata0-master UDMA33
acd0: CDROM <ATAPI CDROM> at ata1-master using PIO4
Mounting root from ufs:/dev/ad0s1a




>How-To-Repeat:
router is the freebsd box, host1 is on the fxp0 side, host2 is on the fxp1 side.

On host1:

# rsh host2 "cat /dev/zero" > /dev/null

Eventually (after ~500MB-1GB on this box) the transfer hangs.  Subsequent attempts hang after less is transfered.

If I turn off ipnat, everything seems fine.

On router:

# ipnat -FC

And on host1:

# rsh host2 "cat /dev/zero" > /dev/null

Everything flows normally for as long as I'm patient enough to watch it.  =)
>Fix:
      
>Release-Note:
>Audit-Trail:
>Unformatted:

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message