subject:"PF rtable on 1st July i386 \-current not working"

Re: PF rtable on 1st July i386 -current not working

2010-07-05 Thread Insan Praja SW


Hi All,
On Mon, 05 Jul 2010 18:56:44 +0700, Claudio Jeker  
 wrote:



On Mon, Jul 05, 2010 at 02:39:11PM +0700, Insan Praja SW wrote:

Hi Misc@,
Recently I've updated my routers kernel to 1t July i386 current.
Rulesets like:


pass in quick log on $int_if inet from  to
! rtable 2 keep state (sloppy source-track global) tag
INTERNAL_OUT queue (internal int_ack)
pass in quick log on $int_if inet proto {tcp udp} from  to
$dns_servers port {domain} keep state (sloppy source-track global)
tag INTERNAL_OUT queue (internal int_ack)
Anything I should do?



Please be more precise. What does not work. Do the rules not match, does
it not log, does it not move the traffic to rtable 2 or is there a  
problem

with altq?


Obviously not with altq, I resolve the problem by changing the syntax from  
using rtable to using route-to. into something from;
pass in quick log on $int_if inet from  to !  
rtable 2 keep state (sloppy source-track global) tag INTERNAL_OUT queue  
(internal int_ack)


to;
pass in quick log on $int_if inet from  to ! keep  
state (sloppy source-track global) route-to ($rtable_ext rtable_def_gtw)  
tag INTERNAL_OUT queue (internal int_ack)


and it works.

With this little information I guess nobody is willing to try to figure
out what may go wrong.


Thanks,


--
insandotpraja(at)gmaildotcom

Re: PF rtable on 1st July i386 -current not working

2010-07-05 Thread Claudio Jeker

On Mon, Jul 05, 2010 at 02:39:11PM +0700, Insan Praja SW wrote:
> Hi Misc@,
> Recently I've updated my routers kernel to 1t July i386 current.
> Rulesets like:
> 
> 
> pass in quick log on $int_if inet from  to
> ! rtable 2 keep state (sloppy source-track global) tag
> INTERNAL_OUT queue (internal int_ack)
> pass in quick log on $int_if inet proto {tcp udp} from  to
> $dns_servers port {domain} keep state (sloppy source-track global)
> tag INTERNAL_OUT queue (internal int_ack)
> Anything I should do?
> 

Please be more precise. What does not work. Do the rules not match, does
it not log, does it not move the traffic to rtable 2 or is there a problem
with altq?

With this little information I guess nobody is willing to try to figure
out what may go wrong.

-- 
:wq Claudio

PF rtable on 1st July i386 -current not working

2010-07-05 Thread Insan Praja SW


Hi Misc@,
Recently I've updated my routers kernel to 1t July i386 current. Rulesets  
like:



pass in quick log on $int_if inet from  to !  
rtable 2 keep state (sloppy source-track global) tag INTERNAL_OUT queue  
(internal int_ack)
pass in quick log on $int_if inet proto {tcp udp} from  to  
$dns_servers port {domain} keep state (sloppy source-track global) tag  
INTERNAL_OUT queue (internal int_ack)

Anything I should do?


Thanks,

DMESG:

OpenBSD 4.7-current (GENERIC.MP) #18: Thu Jul  1 01:16:34 WIT 2010

r...@greenrouter-jkt01.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC.MP
RTC BIOS diagnostic error f
cpu0: Intel(R) Xeon(R) CPU X3220 @ 2.40GHz ("GenuineIntel" 686-class) 2.41  
GHz
cpu0:  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S

SE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
real mem  = 2142744576 (2043MB)
avail mem = 2098540544 (2001MB)
RTC BIOS diagnostic error f
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 03/26/07, SMBIOS rev. 2.4 @  
0x7fbe4000 (43 entries)
bios0: vendor Intel Corporation version  
"S3000.86B.02.00.0054.061120091710" date 06/11/2009

bios0: Intel S3000AH
acpi0 at bios0: rev 2
acpi0: tables DSDT SLIC FACP APIC WDDT HPET MCFG ASF! SSDT SSDT SSDT SSDT  
SSDT HEST BERT ERST EINJ
acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S1) PEX4(S4) PEX5(S4)  
UHC1(S1) UHC2(S1) UHC3(S1) UHC4(S1) EHCI(S1) AC9M(S4) AZAL(S4)

acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 266MHz
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Xeon(R) CPU X3220 @ 2.40GHz ("GenuineIntel" 686-class) 2.41  
GHz
cpu1:  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S

SE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
cpu2 at mainbus0: apid 1 (application processor)
cpu2: Intel(R) Xeon(R) CPU X3220 @ 2.40GHz ("GenuineIntel" 686-class) 2.41  
GHz
cpu2:  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S

SE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
cpu3 at mainbus0: apid 3 (application processor)
cpu3: Intel(R) Xeon(R) CPU X3220 @ 2.40GHz ("GenuineIntel" 686-class) 2.41  
GHz
cpu3:  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,S

SE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 5
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 4 (P32_)
acpiprt2 at acpi0: bus 1 (PEX0)
acpiprt3 at acpi0: bus -1 (PEX1)
acpiprt4 at acpi0: bus -1 (PEX2)
acpiprt5 at acpi0: bus -1 (PEX3)
acpiprt6 at acpi0: bus 2 (PEX4)
acpiprt7 at acpi0: bus 3 (PEX5)
acpicpu0 at acpi0: PSS
acpicpu1 at acpi0: PSS
acpicpu2 at acpi0: PSS
acpicpu3 at acpi0: PSS
acpibtn0 at acpi0: SLPB
bios0: ROM list: 0xc/0x9000
cpu0: Enhanced SpeedStep 2401 MHz: speeds: 2394, 1596 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel E7230 Host" rev 0x00
ppb0 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x01: apic 5 int  
17 (irq 255)

pci1 at ppb0 bus 1
ppb1 at pci0 dev 28 function 4 "Intel 82801G PCIE" rev 0x01: apic 5 int 17  
(irq 255)

pci2 at ppb1 bus 2
em0 at pci2 dev 0 function 0 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic  
5 int 16 (irq 9), address 00:15:17:86:51:72
em1 at pci2 dev 0 function 1 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic  
5 int 17 (irq 10), address 00:15:17:86:51:73
ppb2 at pci0 dev 28 function 5 "Intel 82801G PCIE" rev 0x01: apic 5 int 16  
(irq 255)

pci3 at ppb2 bus 3
em2 at pci3 dev 0 function 0 "Intel PRO/1000MT (82573E)" rev 0x03: apic 5  
int 17 (irq 10), address 00:15:17:49:03:b3

"Intel 82573E Serial" rev 0x03 at pci3 dev 0 function 3 not configured
"Intel 82573E KCS" rev 0x03 at pci3 dev 0 function 4 not configured
uhci0 at pci0 dev 29 function 0 "Intel 82801GB USB" rev 0x01: apic 5 int  
23 (irq 11)
uhci1 at pci0 dev 29 function 1 "Intel 82801GB USB" rev 0x01: apic 5 int  
19 (irq 11)
uhci2 at pci0 dev 29 function 2 "Intel 82801GB USB" rev 0x01: apic 5 int  
18 (irq 11)
uhci3 at pci0 dev 29 function 3 "Intel 82801GB USB" rev 0x01: apic 5 int  
16 (irq 9)
ehci0 at pci0 dev 29 function 7 "Intel 82801GB USB" rev 0x01: apic 5 int  
23 (irq 11)

ehci0: timed out waiting for BIOS
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0xe1
pci4 at ppb3 bus 4
skc0 at pci4 dev 0 function 0 "D-Link DGE-530T B1" rev 0x11, Yukon Lite  
(0x9): apic 5 int 21 (irq 11)

sk0 at skc0 port A: address 00:1e:58:9a:99:65
eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5
skc1 at pci4 dev 1 function 0 "D-Link DGE-5

Re: PF rtable on 1st July i386 -current not working

Re: PF rtable on 1st July i386 -current not working

PF rtable on 1st July i386 -current not working

3 matches

Site Navigation

Mail list logo

Footer information