Here is the output of netstat -ni;sleep 60;netstat -ni;sleep 60;netstat -ni;sleep 60;netstat -ni. While this command was running i opened the dashboard logined and tried to install policy but i get disconnected from dashboard, also my ssh conenction lost, command prompt get started request time out response .
Regards Kernel Interface table Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR eth0 1500 0 0 0 0 0 0 0 0 0 eth1 1500 0 3605488 0 0 0 102607 0 0 0 eth2 1500 0 0 0 0 0 0 0 0 0 lo 16436 0 2529647 0 0 0 2529647 0 0 0 Kernel Interface table Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Flg eth0 1500 0 0 0 0 0 0 0 0 0 BMU eth1 1500 0 3610314 0 0 0 102999 0 0 0 BMRU eth2 1500 0 0 0 0 0 0 0 0 0 BMU lo 16436 0 2531921 0 0 0 2531921 0 0 0 LRU 2011/12/20 a bv <[email protected]>: > Hi, > > the information i have collected so far is > > My workstations LAN connection seems 1 G (interface is at > autonegation), and also the interface of firewall im having connection > problems seems to work at 1 G (i looked at with ethtool eth1) > > > > ethtool eth1 > Settings for eth1: > Supported ports: [ TP ] > Supported link modes: 10baseT/Half 10baseT/Full > 100baseT/Half 100baseT/Full > 1000baseT/Full > Supports auto-negotiation: Yes > Advertised link modes: 10baseT/Half 10baseT/Full > 100baseT/Half 100baseT/Full > 1000baseT/Full > Advertised auto-negotiation: Yes > Speed: 1000Mb/s > Duplex: Full > Port: Twisted Pair > PHYAD: 1 > Transceiver: internal > Auto-negotiation: on > Supports Wake-on: g > Wake-on: g > Link detected: yes > > > Also i went to the firewalls console for an other try i try to ping my > PC didnt work. I gave fw unloadlocal and then pinged works fine and i > was able to connect with ssh to the firewall and ping the firewall > from PC but it also stopped? And while i was writing this sentence it > started pinging again and i opened the dashboard but i dont think it > will last for sor long. I will look for more information youll asked > for. > > Regards > > 2011/12/19 Hugo van der Kooij <[email protected]>: >> >> >> On 19.12.2011 09:12, a bv wrote: >> >>> I have made a clean R75.20 >> SPLAT installation on a box and made 1 IP >>> up with LAN IP and since its >> not connected to other networks and still >>> testing made a rule with any >> any accept on it. I work on with both >>> Smartdashboard , ssh,webui etc. >> But i sometimes get disconnected from >>> them and im pinging the gateway >> (since it accepts) and those times i >>> cant get reply to my ping >> requests. If i have time i go to the >>> firewalls side physically and on >> the shell i ping my workstation well. >>> So what do you think the reason >> can be? Of course i want this to be a >>> stable firewall and if not >> necessary doesnt wanna reinstall. >> >> Round up the usual suspects: >> >> Run >> `netstat -ni;sleep 60;netstat -ni` ==> Check for interface errors that >> increase. >> >> Check with ethtool if the interface is not set to >> half-duplex while the other side is set to full-duplex. >> >> Check >> /var/log/messages, $CPDIR/log/*.elg and $FWDIR/log/*.elg for anomalies. >> >> >> Check ARP tables with `arp -a` and `fw ctl arp`. >> >> If shaking down >> these suspects is not clearly pointing towards a suspect that you can >> fix then share these findings with the rest so further advise can be >> given based upon these findings. >> >> -- >> [email protected] >> http://hugo.vanderkooij.org/ >> PGP/GPG? Use: >> http://hugo.vanderkooij.org/0x58F19981.asc >> >> >> Scanned by Check Point Total Security Gateway. >> >> ================================================= >> To set vacation, Out-Of-Office, or away messages, >> send an email to [email protected] >> in the BODY of the email add: >> set fw-1-mailinglist nomail >> ================================================= >> To unsubscribe from this mailing list, >> please see the instructions at >> http://www.checkpoint.com/services/mailing.html >> ================================================= >> If you have any questions on how to change your >> subscription options, email >> [email protected] >> ================================================= Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
