I recently installed 4.1.1-RELEASE. Then I installed some apps just to get the system functional and soon after cvsup'd to 4.2-STABLE and built my custom kernel. After doing so, I started to notice that I would get alot of "timeout" errors when trying to fetch ports or connect to irc and mirabillis servers. In an attempt to troubleshoot the problem, I first booted the system from kernel.GENERIC. At this point my problems went away. That lead me to believe that my custom kernel was flawed. I recompiled without any type of firewall support, (ie. IPFILTER) but that didn't solve the problem either. On a hunch, I thought I'd recompile the GENERIC kernel with 4.2-STABLE source. I figured if 4.1.1-RELEASE GENERIC kernel wasn't giving me any problems, GENERIC from 4.2-STABLE wouldn't either. I was wrong. I'm still running into the same problems. The one thing I did include in my kernel was Berkley Packet Filter, so I could nmap myself. After doing so, namp tells me my ports are 'filtered'. This is leaving me a bit baffled. Is ipfw the culprit? It is in the base system, but I don't know how it could be functional if I don't even have support for IPFILTER as of yet in my custom kernel. nmap results using simple port scan: The TCP connect scan took 170 seconds to scan 1523 ports. All 1523 scanned ports on MY_HOST_NAME (MY_IP_ADDRESS) are: filtered Nmap run completed -- 1 IP address (1 host up) scanned in 171 seconds I've also attached my most recent kernel config file if that may help. Some advice as to where to look next would indeed be helpful. Regards, Mark -- Mark Sturge [EMAIL PROTECTED] London, ON Canada
# /usr/src/sys/i386/conf/MEZZAMORPHIS machine i386 cpu I586_CPU ident MEZZAMORPHIS maxusers 64 options INET #InterNETworking options FFS #Berkeley Fast Filesystem options FFS_ROOT #FFS usable as root device [keep this!] options SOFTUPDATES #Enable FFS soft updates support options MSDOSFS #MSDOS Filesystem options CD9660 #ISO 9660 Filesystem options CD9660_ROOT #CD-ROM usable as root, CD9660 required options PROCFS #Process filesystem options COMPAT_43 #Compatible with BSD 4.3 [KEEP THIS!] #options SCSI_DELAY=15000 #Delay (in ms) before probing SCSI options UCONSOLE #Allow users to grab the console options USERCONFIG #boot -c editor options VISUAL_USERCONFIG #visual boot -c editor options KTRACE #ktrace(1) support options P1003_1B #Posix P1003_1B real-time extensions options _KPOSIX_PRIORITY_SCHEDULING options _KPOSIX_VERSION=199309L options ICMP_BANDLIM #Rate limit bad replies #options IPFILTER #ipfilter support #options IPFILTER_LOG #ipfilter logging options IPSEC #IP security (OpenSSL) options IPSEC_ESP #IP security (crypto; define w/IPSEC) options PQ_HUGECACHE #Color for 1024k/16k cache options PANIC_REBOOT_WAIT_TIME=60 options DDB #Enable the kernel debugger options DDB_UNATTENDED #Don't drop too DBB for a panic options PMAP_SHPGPERPROC=400 options MAXCONS=16 #Maximum number of virtual terminals options MAXDSIZ=(128*1024*1024) options DFLDSIZ=(128*1024*1024) options AUTO_EOI_1 options TCP_DROP_SYNFIN # slot architecture support device isa device pci # floppy drives device fdc0 at isa? port IO_FD1 irq 6 drq 2 device fd0 at fdc0 drive 0 # ATA and ATAPI devices device ata0 at isa? port IO_WD1 irq 14 device ata1 at isa? port IO_WD2 irq 15 device ata device atadisk # ATA disk drives device atapicd # ATAPI CDROM drives options ATA_STATIC_ID # Static device numbering options ATA_ENABLE_ATAPI_DMA # Enable DMA on ATAPI devices # SCSI peripherals (parallel port Zip Drive) device scbus # SCSI bus (required) device da # Direct Access (disks) # atkbdc0 controls both the keyboard and the PS/2 mouse device atkbdc0 at isa? port IO_KBD device atkbd0 at atkbdc? irq 1 flags 0x1 device vga0 at isa? # splash screen/screen saver pseudo-device splash # syscons is the default console driver, resembling an SCO console device sc0 at isa? flags 0x100 # Floating point support - do not disable. device npx0 at nexus? port IO_NPX irq 13 # Power management support (see LINT for more options) device apm0 at nexus? disable flags 0x20 # Advanced Power Management # Serial (COM) ports device sio0 at isa? port IO_COM1 flags 0x10 irq 4 device sio1 at isa? port IO_COM2 flags 0x10 irq 3 # Parallel port device ppc0 at isa? irq 7 device ppbus # Parallel port bus (required) device lpt # Printer device ppi # Parallel port interface device device vpo # Requires scbus and da # PCI Ethernet NIC device de # DEC/Intel DC21x4x (``Tulip'') # Creative Labs AWE64 Soundblaster device pcm device sbc device joy # Pseudo devices - the number indicates how many units to allocated. pseudo-device loop # Network loopback pseudo-device ether # Ethernet support pseudo-device pty # Pseudo-ttys (telnet etc) pseudo-device bpf # Berkeley packet filter pseudo-device speaker # Keep XFree86 4.x happy options SYSVSHM #SYSV-style shared memory options SYSVMSG #SYSV-style message queues options SYSVSEM #SYSV-style semaphores
