Re: Why did named start sending UDP to 127.0.0.2:53 out my external interface?
From: Doug Lee (dgl_at_dlee.org)
Date: 09/29/03
- Previous message: Gary: "Re: Changing from POP3 server to IMAP server"
- Maybe in reply to: Doug Lee: "Why did named start sending UDP to 127.0.0.2:53 out my external interface?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 29 Sep 2003 17:46:17 -0400 To: freebsd-questions@freebsd.org
CORRECTION: Both machines stopped for 10-15 minutes, then both
restarted the funny logs, though the VPN remains down. Other than an
ssh connection I'm using between them, there should be no physical or
logical link between them now.
I earlier wrote:
>I have two FreeBSD 4.8-Stable boxen connected by a VPN (mpd) which, at
>just after 5 this morning and about five minutes apart, started
>generating ipfw logs like this:
>
>Sep 29 05:02:35 <security.info> kirk /kernel: ipfw: 200 Deny UDP <externalIP>:<sendport> 127.0.0.2:53 out via <external_iface>
>
><sendport> matches the UDP *:port binding of named, so I figure named
>is doing this (besides it being port 53). I shut down and restarted
>named on one box only to have it start the same behavior inside four
>minutes again. I then shut down the VPN link and then restarted named
>again (on the same box), and BOTH boxes stopped doing this. Funny
>thing though: The box on which I shut down named was about five
>minutes later than the other box at starting all this in the first
>place.
>
>Any ideas? I particularly don't know why named suddenly took interest
>in using address 127.0.0.2, besides wondering what triggered both
>boxes almost at once and why shutting down the connection stopped the
>problem in both places even though timestamps seem to point to the
>problem originating at the other end of the link from where I
>restarted named...
-- Doug Lee dgl@dlee.org http://www.dlee.org Bartimaeus Group doug@bartsite.com http://www.bartsite.com "The most exciting phrase to hear in science, the one that heralds new discoveries, is not 'Eureka!' ('I found it!') but rather 'hmm.... that's funny...'" -- Isaac Asimov _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
- Previous message: Gary: "Re: Changing from POP3 server to IMAP server"
- Maybe in reply to: Doug Lee: "Why did named start sending UDP to 127.0.0.2:53 out my external interface?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
