Re: [leaf-user] Insane Dachstein problem

Charles Steinkuehler Sat, 10 Aug 2002 07:12:14 -0700

> Here I have some more information about this crazy problem.
>
> * If the LEAF box is in "notworking" state ping didnt work (no output)
>
> /var/log/messages
>
> Tons of:
> Aug 10 06:44:38 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=416 S=0x00 I=28122 F=0x0000 T=255
(#8)
> Aug 10 06:44:38 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=416 S=0x00 I=28125 F=0x0000 T=255
(#8)
>
> Sometimes
> Aug 10 14:35:44 firewall kernel: Packet log: input DENY eth0 PROTO=6
> 217.162.34.242:1884 217.162.76.115:80 L=48 S=0x00 I=12303 F=0x4000
T=124 SYN
> (#40)
>
> Last few lines:
> Aug 10 14:38:03 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=346 S=0x00 I=44574 F=0x0000 T=255
(#8)
> Aug 10 14:38:08 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=346 S=0x00 I=44577 F=0x0000 T=255
(#8)
> Aug 10 14:38:17 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=346 S=0x00 I=44582 F=0x0000 T=255
(#8)
> Aug 10 14:38:33 firewall kernel: Packet log: input DENY eth0 PROTO=6
> 217.162.34.242:2867 217.162.76.115:80 L=48 S=0x00 I=47209 F=0x4000
T=124 SYN
> (#40)
> Aug 10 14:38:33 firewall kernel: Packet log: input DENY eth0 PROTO=17
> 10.195.80.1:67 255.255.255.255:68 L=346 S=0x00 I=44592 F=0x0000 T=255
(#8)
> Aug 10 14:38:35 firewall kernel: Packet log: input DENY eth0 PROTO=6
> 217.162.34.242:2867 217.162.76.115:80 L=48 S=0x00 I=47898 F=0x4000
T=124 SYN
> (#40)
>
<snip>
>
> Anybody any guess?


I don't notice anything that looks suspect...you didn't post details on
your ram & ramdisk usage.  What to "df" and "free" report when the box
is working/broken?  You may be filling up your log partition, although
I've not heard of that causing the problem you report.  I'd at least add
the DHCP packets from 10.195.80.1 to the SILENT_DENY list in
/etc/network.conf to keep your logs more legible, assuming this is *NOT*
your ISP's DHCP server IP.  If it is, you'll need to allow traffic from
the 10.x.x.x private network, or your system won't be able to renew it's
DHCP lease.

Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)



-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Insane Dachstein problem

Reply via email to