Since rebooting the Linux box doesn't solve the problem, it
sounds like your Mac(s) are broken. You have to fix them
either via upgrading MacOS, putting Linux on them, etc. :)
I recommend to run a tcpdump on your isdn connection
and see what this traffic is that is keeping your line up.
--David
>I have a Linux firewall (2.2.5 kernel, ipchains 1.3.8) with 2 NICS
>serving a small LAN of about 15 PCs, SGIs, and Macs. The firewall
>works fine, and so does IP Masquerading. BUT, from time to time,
>things seem to get "stuck" in the firewall. So far, I've only seen
>this happen with traffic from the Macs. Specifically, a Mac user will
>visit a web site with Netscape, then close netscape, and sometimes
>(but not always), the masquerade entry will stay in the firewall for
>the next 5 hours or so. The problem seems to happen about once a day,
>on average. This is a real problem, as it holds up the ISDN line for
>long periods of time. There is absolutely NO way that I know of to
>clear this from the Linux side (even rebooting the firewall machine
>doesn't clear it). The only solution is to reboot the offending Mac.
>
>The Masq timeouts on the firewall are set to 900, 120, and 300.
>
>The Macs are using Open Transport 2.0.2 on System 8.5.
>
>Is this a bug in the Masqueradeing code or in the Mac TCP/IP driver?
>Any suggestions at all will be VERY welcome.
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
