Charles Steinkuehler wrote:
>
> > As it comes up, after it initializes interfaces and after it starts to
> > establish networks, we get several errors on the console:
> >
> > neighbour table overflow
> >
> > Also, we get errors about several systems in our DMZ and are admonished
> > to do something about ipchains or seek --help.
> >
> > Once up, the firewall/router appears to function properly and *no* more
> > of these errors occur -- at least, for the <30 minutes we had it up.
> > Yes, those systems about which ipchains complained also function
> > properly, including firewall/deny.
> >
> > We found, to comment OUT the entries for the three system complainees
> > from that portion of /etc/network.conf that facilitates placing them in
> > /etc/hosts, then bootup exhibits *no* errors nor complaints.
> >
> > We also found, lrcfg to backup etc.lrp to floppy *WITHOUT* any
> > modification, eradicates all appearances of these problems.
>
> Sounds like some sort of configuration problem, or possibly a 'hidden'
> error, like a CR-LF in a script file somewhere instead of just LF, or
> perhaps a misplaced quote or something, except for the fact that backing up
> to floppy fixes things. There should be NO difference between booting with
> etc.lrp just on the CD-ROM, and having etc.lrp on the floppy as well.
See below. diff -r finds *no* such changes.
> One good test would be to copy the etc.lrp from the CD straight to the
> floppy. In a sane universe, this should produce the errors you see when
> booting from the CD. If not, there's something quite odd going on. About
> the only thing I can think of that could even cause something like this
> would be running out of memory when extracting LRP files from the CD, but in
> that case, backing up should NOT fix the problem...
OK, I'd forgotten this request this afternoon; but, completed this
remotely a few moments ago. I copied /cdrom/etc.lrp to /floppy and
rebooted -- which logged the overflow errors.
So, clearly, there is something unusual about /cdrom/etc.lrp . . .
> Also, please provide more details about the IPChains errors, and any log
> messages that might be relavent. They might shed some light on what's
> actually going on...
Apparently, these are not always present -- I don't remember seeing them
today. Nor have they ever shown up in any logfile I've reviewed. It
would appear that, whatever these maybe, they exist only on STDERR to
console and are difficult to document ;<
OK, since I haven't been able to get to the firewall nor figured out how
to get files off of the firewall, today I went to the firewall, removed
/floppy/etc.lrp and rebooted. Once it came back up -- including the
subject errors -- I copied /cdrom/etc.lrp to /floppy and backed up
(lrcfg) etc.lrp to same floppy. From a potato box, I extracted each
into their own directory and did diff -r on each. The *only*
differences were these:
diff -r etc_cdrom/etc/hostname etc_lrcfg/etc/hostname
diff -r etc_cdrom/etc/hosts etc_lrcfg/etc/hosts
Binary files etc_cdrom/etc/ioctl.save and etc_lrcfg/etc/ioctl.save
differ
diff -r etc_cdrom/etc/motd etc_lrcfg/etc/motd
diff -r etc_cdrom/etc/resolv.conf etc_lrcfg/etc/resolv.conf
hostname, hosts, motd and resolv.conf differences are *all* accounted
for by name assignments made by /etc/rcS.d/S39network during bootup.
The total difference in size between each etc.lrp is 53 bytes!
I'm not absolutely clear what is happening with ioctl.save? What is
this file? How can it manifest itself in this problem?
Or, since commenting OUT a couple names that are dynamically built to
populate /etc/hosts, is there some timing and/or sequencing issues that
could interfere? Are there ipchains rules generated *prior* to
populating /etc/hosts? I admit, in twenty (20) years doing this stuff,
I've never seen anything quite like this -- especially, since the errors
do not appear to be indicative of any real problem and after generating
/floppy/etc.lrp from the post-error environment, we cannot duplicate the
errors ;<
What do you think?
--
Best Regards,
mds
mds resource
888.250.3987
"Dare to fix things before they break . . . "
"Our capacity for understanding is inversely proportional to how much we
think we know. The more I know, the more I know I don't know . . . "
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-user
