I'm using Bering 1.0-rc3 - June 2002 with Verizon DSL.
I've noticed over the months that I would occasionally
lose connectivity and would have to reboot. Tonight I
waited it out and eventually got the connection
partially back. When I first noticed the problem, it
appeared that Bering had gone opaque again but I had
the time to investigate. We could not browse the web
from either of our computers behind the router. I can
ping between all the computers on the local net and to
Bering and back.
I can ping *some* Internet sites: www.yahoo.com is ok.
Can't ping www.ebay.com or www.50megs.com, but I can
now browse all three sites. (Bering came out of its
coma partially).
I started looking at the logs and noticed that some
entries are missing:
(packet logging edited out)
Dec 31 13:59:57 firewall -- MARK --
Dec 31 17:59:57 firewall -- MARK --
Jan 2 05:59:57 firewall -- MARK --
Jan 2 09:59:57 firewall -- MARK --
Jan 2 13:59:57 firewall -- MARK --
Jan 2 17:59:57 firewall -- MARK --
Jan 2 21:59:57 firewall -- MARK --
Jan 3 01:59:57 firewall -- MARK --
Jan 3 05:59:57 firewall -- MARK --
Jan 3 09:59:57 firewall -- MARK --
Jan 3 17:59:57 firewall -- MARK --
Jan 3 21:59:57 firewall -- MARK --
Jan 4 05:59:57 firewall -- MARK --
Jan 4 09:59:57 firewall -- MARK --
Jan 4 13:59:57 firewall -- MARK --
Jan 4 21:59:57 firewall -- MARK --
As you can see, some "MARK"s are missing. I saw that
the Jan 4 17:59:57 was missing but soon after I
started digging around, the system started logging
again with the 21:59:57 entry and started logging
packets again, too.
I've attached some data from the weblet which also
seems to be working OK. I haven't rebooted, so if
there's some diagnostic I can use, please let me know.
-John
==========================================
::Interfaces::
1: lo: mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd
00:00:00:00:00:00
inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
2: dummy0: mtu 1500 qdisc noop
link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
3: eth0: mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:10:4b:00:64:c4 brd ff:ff:ff:ff:ff:ff
4: eth1: mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:60:08:08:78:81 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.254/24 brd 192.168.1.255 scope
global eth1
5: ppp0: mtu 1492 qdisc pfifo_fast qlen 3
link/ppp
inet 151.200.47.185 peer 10.1.32.1/32 scope global
ppp0
::Routes::
10.1.32.1 dev ppp0 proto kernel scope link src
151.200.47.185
192.168.1.0/24 dev eth1 proto kernel scope link src
192.168.1.254
default via 10.1.32.1 dev ppp0
::Statistics::
1: lo: mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd
00:00:00:00:00:00
RX: bytes packets errors dropped overrun mcast
8184842 115268 0 0 0 0
TX: bytes packets errors dropped carrier
collsns
8184842 115268 0 0 0 0
2: dummy0: mtu 1500 qdisc noop
link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
0 0 0 0 0 0
TX: bytes packets errors dropped carrier
collsns
0 0 0 0 0 0
3: eth0: mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:10:4b:00:64:c4 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
2005329302 1816910 0 0 0 0
TX: bytes packets errors dropped carrier
collsns
146703239 1243293 0 0 0 70
4: eth1: mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:60:08:08:78:81 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
132329438 1023266 0 0 0 0
TX: bytes packets errors dropped carrier
collsns
1971211362 1600843 0 0 0 159
5: ppp0: mtu 1492 qdisc pfifo_fast qlen 3
link/ppp
RX: bytes packets errors dropped overrun mcast
1958204569 1628681 0 0 0 0
TX: bytes packets errors dropped carrier
collsns
117379954 1055064 0 0 0 0
::Masqueraded Connections::
tcp src=192.168.1.10 33651 dst=205.188.10.8 5190
--431992 sec. ESTABLISHED
tcp src=192.168.1.10 33653 dst=205.188.9.167 5190
--431977 sec. ESTABLISHED
::Other Connections::
tcp src=204.108.8.5 49488 dst=151.200.47.185 22
--59324 sec. ESTABLISHED
tcp src=192.168.1.10 35271 dst=192.168.1.254 22
--431858 sec. ESTABLISHED
tcp src=192.168.1.10 35275 dst=192.168.1.254 443
--431997 sec. ESTABLISHED
EXAMPLE OF A CONNECTION REPORT WHILE A FAILED PING IS
ONGOING:
icmp src=16 dst=208.185.127.167 dst=src=151.200.47.185
type=8 --1 sec. id=22583 [UNREPLIED]
src=208.185.127.167 dst=151.200.47.185 type=0 code=0
id=22583 use=1
::General System Info::
Uptime: 10:32pm up 16 days, 16:34, load average:
0.59, 0.18, 0.05
Kernel:Linux firewall 2.4.18 #4 Sun Jun 9 09:46:15
CEST 2002 i486 unknown
Modules:
ip_nat_irc 2384 0 (unused)
ip_nat_ftp 2960 0 (unused)
ip_conntrack_irc 3056 1
ip_conntrack_ftp 3824 1
pppoe 6636 1
pppox 912 1 [pppoe]
ppp_synctty 4376 0 (unused)
ppp_generic 14920 3 [pppoe pppox
ppp_synctty]
n_hdlc 5760 0 (unused)
slhc 4264 0 [ppp_generic]
3c509 6564 2
::Installed Packages::
Name Version Description
===============-==============-==============================================
initrd V1.0-rc3
root V1.0-rc3
etc V1.0-rc3
local V1.0-rc3 Local package. This
package does not contain a
modules V1.0-rc3 Modules package.
Contains kernel modules and u
ppp 2.4.1-pppoe PPPd Deamon
pppoe 3.3-1 pppoe add-on for pppd
shorwall 1.3.1 Shoreline Firewall
(Shorewall)
dnscache 1.05a dnscache from djbdns
(V1.05a) package creates
weblet 1.2.0 weblet - LRP status via
a small web server
libz 1.1.4 zlib compression
library. Needed for openssh
sshd 3.2.3p1 OpenSSH sshd daemon.
ezipupd 3.0.11b7 ez-ipupdate is a client
for several dynamic IP
mniqmail 1.03a
::CPU Info::
processor : 0
vendor_id : GenuineIntel
cpu family : 4
model : 3
model name : 486 DX/2
stepping : 5
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 1
wp : yes
flags : fpu vme
bogomips : 33.28
::Running Processes::
PID Uid VmSize Stat Command
1 root 760 S init [2]
2 root S [keventd]
3 root S [ksoftirqd_CPU0]
4 root S [kswapd]
5 root S [bdflush]
6 root S [kupdated]
8141 root 1232 S /usr/sbin/pppd call
dsl-provider eth0
30603 root 816 S /sbin/syslogd -m 240
4671 root 828 S /sbin/klogd
11706 root 1744 S /usr/sbin/sshd
1661 root 720 S /usr/sbin/watchdog
16309 root 776 S /usr/sbin/inetd
29538 root 920 S /usr/bin/ez-ipupdate -c
/etc/ez-ipupd.conf -F /var/r
13989 dnscache 2044 S /usr/bin/dnscache
29239 root 756 S /usr/bin/tcpserver -H -R
-lfirewall -c 20 0 25 /var/
19467 root 816 S /usr/sbin/cron
25556 root 952 S /sbin/getty 38400 tty1
25557 root 952 S /sbin/getty 38400 tty2
21351 root 1844 S /usr/sbin/sshd
26407 root 848 S -sh
106 root 816 S /USR/SBIN/CRON
11523 root 832 S /bin/sh -c /etc/multicron-p
24230 root 872 S /bin/sh /etc/multicron-p
24217 sh-httpd 876 S /bin/sh /usr/sbin/sh-httpd
7007 sh-httpd 840 S /bin/sh
/var/sh-www/cgi-bin/viewsys
24183 root 888 S sleep 10
5723 sh-httpd 900 S cat
21756 sh-httpd 892 S sleep 1
13964 sh-httpd 840 S /bin/sh
/var/sh-www/cgi-bin/viewsys
8690 sh-httpd 936 R ps aux
Also, here are the successful and failed pings to the
internet sites (after a short while I would CTRL-C the
ping attempt):
AT THE FIREWALL:
firewall: -root-
# ping www.yahoo.com
PING www.yahoo.akadns.net (64.58.76.225): 56 data
bytes
64 bytes from 64.58.76.225: icmp_seq=0 ttl=244
time=23.4 ms
64 bytes from 64.58.76.225: icmp_seq=1 ttl=244
time=23.2 ms
64 bytes from 64.58.76.225: icmp_seq=2 ttl=244
time=22.3 ms
64 bytes from 64.58.76.225: icmp_seq=3 ttl=244
time=23.5 ms
--- www.yahoo.akadns.net ping statistics ---
4 packets transmitted, 4 packets received, 0% packet
loss
round-trip min/avg/max = 22.3/23.1/23.5 ms
firewall: -root-
# ping www.ebay.com
PING pages.ebay.com (66.135.192.83): 56 data bytes
--- pages.ebay.com ping statistics ---
10 packets transmitted, 0 packets received, 100%
packet loss
firewall: -root-
# ping www.50megs.com
PING www.50megs.com (208.185.127.167): 56 data bytes
--- www.50megs.com ping statistics ---
6 packets transmitted, 0 packets received, 100% packet
loss
AT THE WORKSTATION BEHIND THE FIREWALL:
[lefty@lefty lefty]$ ping www.yahoo.com
PING www.yahoo.akadns.net (64.58.76.225) from
192.168.1.10 : 56(84) bytes of data.
64 bytes from w4.dcx.yahoo.com (64.58.76.225):
icmp_seq=1 ttl=243 time=23.4 ms
64 bytes from w4.dcx.yahoo.com (64.58.76.225):
icmp_seq=2 ttl=243 time=23.6 ms
64 bytes from w4.dcx.yahoo.com (64.58.76.225):
icmp_seq=3 ttl=243 time=23.9 ms
--- www.yahoo.akadns.net ping statistics ---
3 packets transmitted, 3 received, 0% loss, time
2005ms
rtt min/avg/max/mdev = 23.403/23.667/23.938/0.251 ms
[lefty@lefty lefty]$ ping www.ebay.com
PING pages.ebay.com (66.135.192.83) from 192.168.1.10
: 56(84) bytes of data.
--- pages.ebay.com ping statistics ---
5 packets transmitted, 0 received, 100% loss, time
4012ms
[lefty@lefty lefty]$ ping www.50megs.com
PING www.50megs.com (208.185.127.167) from
192.168.1.10 : 56(84) bytes of data.
--- www.50megs.com ping statistics ---
4 packets transmitted, 0 received, 100% loss, time
2999ms
__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
