Hi. Hopefully, someone out there will be able to help me with this...
I have a Linux firewall (2.2.5 kernel, ipchains 1.3.8) with 2 NICS
serving a small LAN of about 15 PCs, SGIs, and Macs. The firewall
works fine, and so does IP Masquerading. BUT, from time to time,
things seem to get "stuck" in the firewall. So far, I've only seen
this happen with traffic from the Macs. Specifically, a Mac user will
visit a web site with Netscape, then close netscape, and sometimes
(but not always), the masquerade entry will stay in the firewall for
the next 5 hours or so. The problem seems to happen about once a day,
on average. This is a real problem, as it holds up the ISDN line for
long periods of time. There is absolutely NO way that I know of to
clear this from the Linux side (even rebooting the firewall machine
doesn't clear it). The only solution is to reboot the offending Mac.
The Masq timeouts on the firewall are set to 900, 120, and 300.
The Macs are using Open Transport 2.0.2 on System 8.5.
Is this a bug in the Masqueradeing code or in the Mac TCP/IP driver?
Any suggestions at all will be VERY welcome.
Thanks.
Mike Root
Network Admin, Matte World Digital
[EMAIL PROTECTED]
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
