From owner-freebsd-stable  Wed Sep  5  6: 1:33 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from leviathan.inethouston.net (leviathan.inethouston.net [66.64.12.249])
	by hub.freebsd.org (Postfix) with ESMTP id 8D9C237B403
	for <stable@freebsd.org>; Wed,  5 Sep 2001 06:01:24 -0700 (PDT)
Received: from dwcjr (unknown [66.64.12.254])
	by leviathan.inethouston.net (Postfix) with ESMTP
	id A031810F429; Wed,  5 Sep 2001 08:01:25 -0500 (CDT)
Message-ID: <001d01c1360a$e0d4cd60$fe0c4042@inethouston.net>
From: "David W. Chapman Jr." <dwcjr@inethouston.net>
To: "Jason DiCioccio" <geniusj@bluenugget.net>,
	"Mike Tancsa" <mike@sentex.net>
Cc: <stable@freebsd.org>
References: <006a01c13586$0ccc7420$fe0c4042@inethouston.net> <5.1.0.14.0.20010905012036.03516e80@192.168.0.12> <20010905014634.B70986@bluenugget.net>
Subject: Re: ipnat bug
Date: Wed, 5 Sep 2001 08:01:28 -0500
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

> what does
> sysctl -a | grep ipf
>
> show ?
>

> Could we also see an ipfstat -s?


Sure, of course I have to wait an undefined amount of time again for it to
break again, but here is the info while its working incase there is
something wrong with it

$ sysctl -a | grep net.inet.ipf
net.inet.ipf.fr_flags: 0
net.inet.ipf.fr_pass: 514
net.inet.ipf.fr_active: 0
net.inet.ipf.fr_tcpidletimeout: 864000
net.inet.ipf.fr_tcpclosewait: 480
net.inet.ipf.fr_tcplastack: 480
net.inet.ipf.fr_tcptimeout: 480
net.inet.ipf.fr_tcpclosed: 120
net.inet.ipf.fr_tcphalfclosed: 14400
net.inet.ipf.fr_udptimeout: 240
net.inet.ipf.fr_icmptimeout: 120
net.inet.ipf.fr_defnatage: 1200
net.inet.ipf.fr_ipfrttl: 120
net.inet.ipf.ipl_unreach: 13
net.inet.ipf.fr_running: 1
net.inet.ipf.fr_authsize: 32
net.inet.ipf.fr_authused: 0
net.inet.ipf.fr_defaultauthage: 600
net.inet.ipf.fr_chksrc: 0
net.inet.ipf.ippr_ftp_pasvonly: 0
net.inet.ipf.fr_minttl: 3
net.inet.ipf.fr_minttllog: 1

ifirewall# ipnat -s
mapped  in      1157347 out     1047303
added   75003   expired 74535
no memory       0       bad nat 2797
inuse   13
rules   12
wilds   0
firewall# ipfstat -s
IP states added:
        510 TCP
        0 UDP
        0 ICMP
        229216 hits
        58739739 misses
        0 maximum
        0 no memory
        0 bkts in use
        0 active
        0 expired
        510 closed
firewall#





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message