RE: Help with FreeBSD Bridged Firewall

From: William Knechtel (webmaster_at_endikos.com)
Date: 07/30/03

  • Next message: Don Bowman: "RE: Help with FreeBSD Bridged Firewall" 
    To: freebsd-net@freebsd.org
Date: Tue, 29 Jul 2003 19:24:19 -0600

    Per a list members request, I've attached dumps of the following commands:

    arp -a
    netstat -m
    ipfw show
    ifconfig
    netstat -s
    netstat -i

    One caveat, I've hidden all IP addresses that could be used to divine my
    netblock... I guess I'm a little paranoid about people inspecting my
    firewall configuration :-) <MYHOST1> and <MYHOST2> are public (routable) IP
    addresses of the two machines I have behind the firewall.

    One additional note. Since I first composed this message early this
    afternoon, the responsiveness of the internal NIC on the firewall has
    bounced up and down a bit. Here's a bit of a log of it's activity:

    11:57 DOWN
    12:06 UP (reboot)
    12:26 DOWN
    2:18 UP
    3:14 DOWN
    5:43 UP

    The odd thing is that it's been in operating fine for a few months now (it's
    a fairly new installation), and the last change I made to the firewalls
    config was well over a week ago.

    I hope this helps figure out what's going on!! Thanks in advance for your
    help.

    Kindest Regards,
    Bill

    > -----Original Message-----
    > From: owner-freebsd-net@freebsd.org
    > [mailto:owner-freebsd-net@freebsd.org]On Behalf Of William Knechtel
    > Sent: Tuesday, July 29, 2003 6:56 PM
    > To: freebsd-net@freebsd.org
    > Subject: Help with FreeBSD Bridged Firewall
    >
    >
    > Hello!
    >
    > Help!! I'm running a PC with dual NICs and FreeBSD 4.8 for a bridged
    > firewall. I've got a private IP 10.0.0.1 tied to the internal card on the
    > box for remote management. The firewall blocks any 10.x traffic
    > coming in on
    > the external card, so to remotely admin it, I have to shell into a machine
    > on the same isolated network segment that it's on, and then shell
    > over from
    > that machine.
    >
    > Today around noon, the machine suddenly stopped responding to
    > pings. I went
    > down to the server room and couldnt find anything wrong. No notes on the
    > console screen, no anomalous entries in the security or message
    > logs. So, in
    > the interest of getting it back up quickly, I rebooted it. That worked.
    > About an hour later, the same thing happened... my network
    > monitor tells me
    > that it's not responding to pings. So before I go down to the
    > server room, I
    > run a few tests... the firewall is still blocking packets like a champ. I
    > run nmap against a host the firewall protects, and everything comes back
    > fine. But when I go downstairs to the console, I can't ping out to it's
    > 10.0.0.2 buddy, and no incoming pings work either. I'm at a loss
    > on how to
    > troubleshoot this, folks. I could really use a few ideas, so please send
    > them along!
    >
    > Thanks in Advance!
    > Bill
    >
    > _______________________________________________
    > freebsd-net@freebsd.org mailing list
    > http://lists.freebsd.org/mailman/listinfo/freebsd-net
    > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
    >

    _______________________________________________
    freebsd-net@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-net
    To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

  • Next message: Don Bowman: "RE: Help with FreeBSD Bridged Firewall"
    • Quantcast