Spontan reboot of FreeBSD 4,x box

From: Dennis Pedersen (mlists_at_daydreamer.dk)
Date: 05/28/03

Next message: Ivailo Tanusheff: "Cascading qmail servers"

Previous message: Paul Chvostek: "ipfw rules vs routes to localhost?"
Next in thread: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Maybe reply: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Maybe reply: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <freebsd-net@FreeBSD.org>
Date: Wed, 28 May 2003 08:50:46 +0200

I have a couple of FreeBSD 4,4 and one 4,7 that are beeing used as firewalls
in different locations.
Lately i haven noticed that one of the firewall's was starting to reboot at
a certin time of the day (give or take maybe 10min).
I looked in /var/log/messages and it seem like the power has been removed
from the box, and its powered back up again.
There is nothing in the log that indicates it have chashed or why.
2 of my box'es (both running FreeBSD 4,4) are running the following apps :
ipfw,natd,syslogd,racoon(racoon-20010831a)
The funny thing it that its only the box in one of the ends that is
rebooting !
The hardware in the box'es is different and there is no thin red line i can
follow here (besides its only 3com cards (509 og 905 cards - some run fine ,
some dont)). I've pretty much gone away from the possibility its hardware
because i have more then just one box thats doing the trick.
The firewall that starting booting is currently connected to a UPS just to
make sure.
Below i have pasted rc.conf , ps aux, and the changes to the generic kernel.

Help :)

Regards,
Dennis

rc.conf:
# cat /etc/rc.conf

# -- sysinstall generated deltas -- # Wed May 14 09:19:59 2003
# Created: Wed May 14 09:19:59 2003
# Enable network daemons for user convenience.
# Please make all changes to this file, not to /etc/defaults/rc.conf.
# This file now contains just the overrides from /etc/defaults/rc.conf.
font8x14="cp850-8x14"
font8x16="cp850-8x16"
font8x8="cp850-8x8"
kern_securelevel_enable="NO"
keymap="danish.cp865"
keyrate="fast"
nfs_reserved_port_only="YES"
saver="fire"
sendmail_enable="no"
sshd_enable="YES"
gateway_enable="YES"
router_flags="-q"
router="routed"
sendmail_enable="NO"
cron_enable="NO"
inetd_enable="NO"
font8x14="cp850-8x14"
font8x16="cp850-8x16"
font8x8="cp850-8x8"
keymap="danish.cp865"
keyrate="fast"
ifconfig_ep0="inet 192.168.200.2 netmask 255.255.255.0"
ifconfig_ep1="inet XXXX.142 netmask 255.255.255.252"
defaultrouter="XXXX.141"
firewall_enable="yes"
firewall_script="/etc/rc.firewall"
#

# ps aux
USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND
root 313 0.0 0.2 416 244 p0 R+ 9:31PM 0:00.00 ps aux
root 1 0.0 0.3 544 316 ?? ILs 6:51AM 0:00.04 /sbin/init --
root 2 0.0 0.0 0 0 ?? DL 6:51AM 0:00.02 (pagedaemon)
root 3 0.0 0.0 0 0 ?? DL 6:51AM 0:00.00 (vmdaemon)
root 4 0.0 0.0 0 0 ?? DL 6:51AM 0:00.08 (bufdaemon)
root 5 0.0 0.0 0 0 ?? DL 6:51AM 0:00.33 (syncer)
root 28 0.0 0.1 208 92 ?? Is 6:51AM 0:00.00 adjkerntz -i
root 114 0.0 0.3 496 284 ?? Ss 8:21PM 23:27.89
/sbin/natd -inter
root 219 0.0 0.6 936 652 ?? Is 8:21PM 0:00.33
/usr/sbin/syslogd
root 241 0.0 1.4 2176 1484 ?? Is 8:21PM 0:12.34 /usr/sbin/sshd
root 281 0.0 1.6 2204 1716 ?? Is 8:21PM 0:01.39
/usr/local/sbin/r
root 298 0.0 0.6 944 656 v0 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 299 0.0 0.6 944 656 v1 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 300 0.0 0.6 944 656 v2 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 301 0.0 0.6 944 656 v3 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 302 0.0 0.6 944 656 v4 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 303 0.0 0.6 944 656 v5 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 304 0.0 0.6 944 656 v6 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 305 0.0 0.6 944 656 v7 Is+ 8:21PM 0:00.03
/usr/libexec/gett
root 306 0.0 1.7 2260 1824 ?? S 8:26PM 0:00.36 sshd:
ZZZZZ@ttyp
jrdata 307 0.0 0.4 628 432 p0 Is 8:27PM 0:00.05 -sh (sh)
root 308 0.0 0.9 1352 964 p0 S 8:27PM 0:00.27 _su (csh)
root 0 0.0 0.0 0 0 ?? DLs 6:51AM 0:00.01 (swapper)
#

Changes to generic :
options IPDIVERT
options IPFIREWALL
options DUMMYNET
options IPSEC
options IPSEC_ESP
options IPSEC_DEBUG
pseudo-device gif 4
options EISA_SLOTS=12
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=5000

_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

Next message: Ivailo Tanusheff: "Cascading qmail servers"

Previous message: Paul Chvostek: "ipfw rules vs routes to localhost?"
Next in thread: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Maybe reply: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Maybe reply: Don Bowman: "RE: Spontan reboot of FreeBSD 4,x box"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Network Unreachable Answer
... Netmask was 255.255.255.0 on both of them. ... when you do "browse workgroup computers" you might ... I also figured out that I had to shut off BOTH firewalls ... It was KNet Attach Folder that finally did it for me (a thousand ...
(alt.os.linux.suse)
Re: [fw-wiz] Adding 2ndary IP to IPSO
... > the checkpoint (plan is to do away with the other firewalls and put ... has a static route for that netblock that points to the FW1). ... To answer the question of any security implication of a /32 netmask, ...
(Firewall-Wizards)