Hello
I've got a small problem with connections staying in FINWAIT2 state, I
am seeing the same behaviour with OpenBSD 3.4 and OpenBSD 3.5. The
situtation is as follows -
I have a PBS (Portable Batching System) Server running on 192.168.1.2
port 15001, I am connecting to it from 192.168.3.4. I have the
following rule in the firewall
wireless_clients = "{192.168.3.3/32,192.168.3.4/32}"
pbs_ports="{15001}"
wireless_if = "xl3"
pass in quick on $wireless_if proto tcp from $wireless_clients to
192.168.1.2/32 port $pbs_ports keep state flags S/SARW
The first time I connect the command (qstat -f @192.168.1.2) the command
returns as normal but leaves the following in the firewall state table
(pfctl -ss)
[EMAIL PROTECTED] pfctl -ss |grep 15001
self tcp 192.168.1.2:15001 <- 192.168.3.4:33091 FIN_WAIT_2:FIN_WAIT_2
self tcp 192.168.1.2:15001 <- 192.168.3.4:1023 FIN_WAIT_2:FIN_WAIT_2
[EMAIL PROTECTED]
When I turn the logging up to loud, I get the following the second time
I run the command -
Sep 17 16:57:51 ramius /bsd: pf: BAD state: TCP 192.168.1.2:15001
192.168.1.2:15001 192.168.3.4:1023 [lo=3605338684 high=3605344476
win=1460 modulator=0 wscale=2] [lo=903037605 high=903043445 win=1448
modulator=0 wscale=2] 9:9 S seq=3609487921 ack=903037605 len=0 ackskew=0
pkts=6:5 dir=in,fwd
Sep 17 16:57:51 ramius /bsd: pf: BAD state: TCP 192.168.1.2:15001
192.168.1.2:15001 192.168.3.4:1023 [lo=3605338684 high=3605344476
win=1460 modulator=0 wscale=2] [lo=903037605 high=903043445 win=1448
modulator=0 wscale=2] 9:9 S seq=3609487921 ack=903037605 len=0 ackskew=0
pkts=6:5 dir=in,fwd
Sep 17 16:57:51 ramius /bsd: pf: State failure on: 1 | 5
Sep 17 16:57:51 ramius /bsd: pf: State failure on: 1 | 5
and the command hangs
I'm a little confused I would like to just close the finwait2 conections
Any ideas
Mark.
