From owner-freebsd-questions@FreeBSD.ORG  Mon Nov 10 13:18:45 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 00CA816A4CE
	for <freebsd-questions@freebsd.org>;
	Mon, 10 Nov 2003 13:18:45 -0800 (PST)
Received: from franklin-belle.com (adsl-65-68-247-73.dsl.crchtx.swbell.net
	[65.68.247.73])	by mx1.FreeBSD.org (Postfix) with ESMTP id 194A843FF3
	for <freebsd-questions@freebsd.org>;
	Mon, 10 Nov 2003 13:18:43 -0800 (PST)
	(envelope-from jacks@sage-american.com)
Received: from sagea (sagea.sage-american [10.0.0.3])
	by franklin-belle.com (8.12.8p2/8.12.8) with SMTP id hAALIKCP017944
	for <freebsd-questions@freebsd.org>;
	Mon, 10 Nov 2003 15:18:20 -0600 (CST)
	(envelope-from jacks@sage-american.com)
Message-Id: <3.0.5.32.20031110151819.01431468@10.0.0.15>
X-Sender: jacks@10.0.0.15
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32)
Date: Mon, 10 Nov 2003 15:18:19 -0600
To: freebsd-questions@freebsd.org
From: "Jack L. Stone" <jacks@sage-american.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Spam-Status: No, hits=0.0 required=4.5 tests=none autolearn=ham 
	version=2.60-fbelle.rules_v1
X-Spam-Checker-Version: SpamAssassin 2.60-fbelle.rules_v1 
	(1.212-2003-09-23-exp) on franklin-belle.com
Subject: Help! Runaway NATD
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Nov 2003 21:18:45 -0000

FreeBSD 4.8-RELEASE-p13 - GW/router/NAT/FW/Caching DNS - Bind-8.3x + IPFW(8)

Have just setup the above to route mainly for a LAN (in place of hardware
router), but natd runs non-stop as per TOP(1) and keeps eating up the CPU
until it crashes. Takes about 1/2 hour to eat up the resources and requires
a reboot -- then the problem just starts over again.

Typical firewall setup used in a number of our servers which diverts to
port 8668 and then the packets are redirected to limited ports on the
various workstations.

NATD acts like it is in a loop and rehashing the packets over and over.
There is a very light load of packets flowing over the rl0 external
interface. Natd is loaded in usual way.

Have killed off most other daemons, but NATD keeps running as shown by TOP(1)

Never seen this before. Would appreciate any ideas on how to fix it....

Thanks in advance.

Best regards,
Jack L. Stone,
Administrator

Sage American
http://www.sage-american.com
jacks@sage-american.com