---- original message ----
Hey all,
A friend of mine is running a LEAF box (Dachstein 1.02 ISC dhclient
2.0pl5, seawall 4.01, ipsec 1.91) and recently his ip changed. For some
strange reason his ISP (rogers in canada if it matters) is giving him a
lease that only lasts 1-2 hours (its always either 3600 seconds or 7200) -
but thats more an ISP issue. The real problem is that whenever his box
tries to renew his IP all connectivity is lost.
I watched it happen. We run a VPN and I was ssh'd into his box over the
vpn, as soon as the time came for renewal, I lost my connection. He's tried
svi dhclient start/stop to no avail. He runs seawall and restarting seawall
doesn't seem to help either. Has anyone ever had a similar problem? I
think it is probably just a 'rogers' problem, but if anyone has ever
encountered this and has any advice it would be appreciated.
S
----end original message----
It looks like it has something to do with time zones or something to that
effect - This file was generated after the initial DHCP lease ran out. If
you look at the new lease it doesn't renew until 4:46 AM, even though it was
obtained at presumably 10:46 PM the day before. Given that it is only a 2
hour lease this lease wouldn't even start until well after it is received.
Could this cause the aforementioned problem? The lease wouldn't look valid
to Dhclient....
cat /var/state/dhcp/dhclient.leases
lease {
interface "eth0";
fixed-address 24.114.99.98;
filename "rogers00.cfg";
option subnet-mask 255.255.255.128;
option routers 24.114.99.1;
option domain-name-servers 24.153.22.195,24.153.22.67;
option domain-name "wlfdle.phub.net.cable.rogers.com";
option dhcp-lease-time 7200;
option dhcp-message-type 5;
option dhcp-server-identifier 24.153.22.139;
option option-82 1:4:0:5:1:c0:2:6:1:42:40:0:83:64:3:4:ff:ff:ff:80;
renew 3 2002/2/20 22:46:02;
rebind 3 2002/2/20 23:31:02;
expire 3 2002/2/20 23:46:02;
}
lease {
interface "eth0";
fixed-address 24.114.99.98;
filename "rogers00.cfg";
option subnet-mask 255.255.255.128;
option routers 24.114.99.1;
option domain-name-servers 24.153.22.195,24.153.22.67;
option domain-name "wlfdle.phub.net.cable.rogers.com";
option dhcp-lease-time 7200;
option dhcp-message-type 5;
option dhcp-server-identifier 24.153.22.139;
option option-82 1:4:0:5:1:c0:2:6:1:42:40:0:83:64:3:4:ff:ff:ff:80;
renew 4 2002/2/21 04:46:08;
rebind 4 2002/2/21 05:31:08;
expire 4 2002/2/21 05:46:08;
}
# svi dhclient start
Starting dhclient...
Internet Software Consortium DHCP Client 2.0pl5
Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
All rights reserved.
Please contribute if you find this software useful.
For info, please visit http://www.isc.org/dhcp-contrib.html
IP filters: [IP Forwarding: DISABLED] flushed
Listening on LPF/eth0/00:60:97:1b:c2:ce
Sending on LPF/eth0/00:60:97:1b:c2:ce
Sending on Socket/fallback/fallback-net
DHCPREQUEST on eth0 to 255.255.255.255 port 67
DHCPACK from 24.114.99.1
RTNETLINK answers: File exists
RTNETLINK answers: File exists
IP filters: firewall [IP Forwarding: ENABLED]
bound to 24.114.99.98 -- renewal in 3600 seconds.
# seawall start
Starting Seawall...
Setting up IP spoofing protection delayed...
Defining Tcpsyn Chain
Defining Tcpdata Chain
Defining TCP Chain
Defining UDP Chain
Defining ICMP Chain
Defining Remote Chain
...Enabling Spoof Protection
Defining Input Chain
Defining Output Chain
Defining Forward Chain
Masquerading : 192.168.1.254/24
IP Forwarding Enabled
Defining Seawall Chain
done.
_________________________________________________________________
Send and receive Hotmail on your mobile device: http://mobile.msn.com
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
