Hey everybody,
I just finished upgrading my server/router box to Solaris 10 update 4
(from u3).
Unfortunately, I'm having the exact same problem that made me go
*back* to S10 from Solaris Express a few weeks ago: NATed connections
are, seemingly randomly, dropped. That is, chat connections etc are
dropped, but non-lasting connections (such as web browsing,
pings, ...) work.
I just ^C'ed a ping session on my laptop, through the S10 box, with
every single packet out of 970 (1/second) coming back, but still I
can barely type "hi" on IRC before I'm kicked out.
My ipf.conf and ipnat.conf are exactly the same as earlier, but I'll
include them anyway...
exscape ~ # ipfstat -io
pass out quick all keep state keep frags
block in log on elxl0 all
pass in quick proto udp from any port = bootps to any port = bootpc
pass in quick proto icmp from any to any icmp-type echo
pass in quick on elxl0 from any to any port = 80
... lots of pass in quick on elxl0 from any to any port = ***
exscape ~ # ipnat -l
List of active MAP/Redirect filters:
map elxl0 192.168.1.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp
map elxl0 192.168.1.0/24 -> 0.0.0.0/32 portmap tcp/udp auto
map elxl0 192.168.1.0/24 -> 0.0.0.0/32
rdr elxl0 0.0.0.0/0 port 7059 -> 192.168.1.5 port 7059 tcp
This config worked great under S10u3.
Now, I'm guessing that pfil is to blame, since that's the major
difference between u3 and u4.
Any ideas? This basically makes my connection unusable, kind of a
bummer... I'd rather not go back (ugh) either.
Regards,
Thomas
