Hi Jérémie
I've provided the information you requested.
I am running openbsd 5.6 GENERIC.MP#333 amd64.
Using isc-dhcp-server 4.3.0.
dhcpd6.conf:
================================
default-lease-time 600;
max-lease-time 7200;
log-facility local7;
subnet6 2a02:0188:5002:7a00::/64 {
# Range for clients
range6 2a02:0188:5002:7a00::2 2a02:0188:5002:7a00::254;
# Additional options
option dhcp6.name-servers 2a02:188:136:4::2;
option dhcp6.domain-search "obro.fab-it.dk";
# Prefix range for delegation to sub-routers
prefix6 2a02:0188:5002:7a02:: 2a02:0188:5002:7a0f:: /64;
}
================================
pfctl -sr:
================================
anchor "ftp-proxy/*" all
pass in quick inet proto tcp from any to any port = 21 flags S/SA
divert-to 127.0.0.1 port 8021
block return all
pass in on vlan all flags S/SA
pass inet6 proto ipv6-icmp all icmp6-type unreach
pass inet6 proto ipv6-icmp all icmp6-type timex
pass inet6 proto ipv6-icmp all icmp6-type paramprob
pass inet6 proto ipv6-icmp all icmp6-type echoreq
pass inet6 proto ipv6-icmp all icmp6-type echorep
pass inet6 proto ipv6-icmp all icmp6-type routersol
pass inet6 proto ipv6-icmp all icmp6-type routeradv
pass inet6 proto ipv6-icmp all icmp6-type neighbrsol
pass inet6 proto ipv6-icmp all icmp6-type neighbradv
pass on vlan710 all flags S/SA
block drop in on ! vlan inet from <__automatic_e513959b_0> to any
block drop in inet from <__automatic_e513959b_1> to any
pass quick on vlan proto udp from any to any port = 1813
pass quick on vlan proto udp from any to any port = 1812
match out on egress inet from ! (egress:network) to any nat-to
(egress:0) round-robin
pass out on egress all flags S/SA
pass on any inet6 from <__automatic_e513959b_2> to any flags S/SA
pass on any inet from <__automatic_e513959b_3> to any flags S/SA
pass in on egress inet proto tcp from <__automatic_e513959b_4> to any
port = 22 flags S/SA
pass in on egress inet6 proto tcp from 2a01:3a0:1:1700::/56 to any port
= 22 flags S/SA
pass quick on bge1 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
pass quick on vlan2 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
[.... Loads of these vlans ....]
pass quick on vlan707 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
pass quick on vlan708 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
pass quick on vlan709 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
pass quick on vlan710 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c495 port = 547
[.... Loads of these vlans ....]
pass quick inet6 proto udp from 2a02:188:5002::/48 to
<__automatic_e513959b_6> port = 547
pass quick on lo0 inet6 proto udp from 2a02:188:5002::/48 to fe80::1
port = 547
pass quick on bge0 inet6 proto udp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c494 port = 547
pass quick inet6 proto tcp from 2a02:188:5002::/48 to
<__automatic_e513959b_5> port = 547 flags S/SA
pass quick on lo0 inet6 proto tcp from 2a02:188:5002::/48 to fe80::1
port = 547 flags S/SA
pass quick on bge0 inet6 proto tcp from 2a02:188:5002::/48 to
fe80::8634:97ff:fe11:c494 port = 547 flags S/SA
pass quick inet6 proto tcp from 2a02:188:5002::/48 to any port = 53
flags S/SA
pass quick inet6 proto udp from 2a02:188:5002::/48 to any port = 53
pass quick inet proto tcp from 10.0.0.0/8 to any port = 53 flags S/SA
pass quick inet proto tcp from 172.16.0.0/12 to any port = 53 flags S/SA
pass quick inet proto tcp from 192.168.0.0/16 to any port = 53 flags S/SA
pass quick inet proto udp from 10.0.0.0/8 to any port = 53
pass quick inet proto udp from 172.16.0.0/12 to any port = 53
pass quick inet proto udp from 192.168.0.0/16 to any port = 53
block drop in inet proto tcp from any to <__automatic_e513959b_7> port =
8080
pass in inet proto tcp from 10.7.10.0/24 to <__automatic_e513959b_8>
port = 8080 flags S/SA
pass in inet proto tcp from 213.150.34.110 to <__automatic_e513959b_9>
port = 8080 flags S/SA
pass in inet proto tcp from 93.167.209.238 to <__automatic_e513959b_10>
port = 8080 flags S/SA
pass in inet proto tcp from 172.17.38.0/24 to <__automatic_e513959b_11>
port = 8080 flags S/SA
pass in inet proto tcp from 192.168.1.0/24 to <__automatic_e513959b_12>
port = 8080 flags S/SA
pass in inet proto tcp from 94.18.219.154 to <__automatic_e513959b_13>
port = 8080 flags S/SA
pass in inet proto tcp from 93.90.114.100 to <__automatic_e513959b_14>
port = 8080 flags S/SA
block return in on ! lo0 proto tcp from any to any port 6000:6010
On 17-08-2015 13:30, Jérémie Courrèges-Anglas wrote:
Claus Lensbøl <cl...@fab-it.dk> writes:
[...]
Does anyone have a clue about what this issue could be? Or maybe
give a direction in which I could try to debug?
Please provide missing information, such as the OpenBSD version you're
using, the version of your isc-dhcp package, your dhcpd configuration,
etc You're also mentioning pf yet you don't provide your pf.conf.
--
Med venlig hilsen/Best regards
Claus Lensbøl
Fab:IT ApS
Vesterbrogade 37, 2. th
DK-1620 København
Tlf: +45 70 202 407
Main Site: www.fab-it.dk
VPS Product: vpsforce.eu
