On Tue, Nov 14, 2006 at 06:03:51AM -0700, Chris Cameron wrote:
> I have a 3.8 PF/CARP setup that I can reproducibly screw up simply by
> cat'ing lots of text over a telnet session.
>
> It has several subnets, and several NICs, but only 1 subnet becomes
> unavailable. Everything else continues to work. There are no errors in
> messages, daemon, with PF debug set to misc. Counters all look normal,
> same with state table and netstat -m output. The only reason I believe
> it's the firewall is restarting it will bring the network back up.
> gem0 - external
> gem1 - 120.x
> hme0 - 0.x
> hme1 - 121.x
> hme2 - 119.x
>
>
> Coming in on hme1 routed through gem1, I can cause everything off gem1
> to stop working. The interface shows as up, but nothing works. All other
> interfaces work fine. PF continues to work as NAT and external
> firewalling still operates.
>
> No errors anywhere, even with debugging turned on in PF. netstat -m
> looks the same before and after.
>
> I'm hoping someone can give me a better way to debug this, considering I
> can reproduce it. I don't believe it's PF as I can disable and re-enable
> it with no effect.
What happens when you send the same data from the firewall?
>
> I've disabled ohci using config -e as those were the only errors I was
> seeing. Specifically:
> ohci0: 1 scheduling overruns
>
> However they didn't happen anywhere near this problem.
That does not look like a likely culprit, no.
Are you sure it's not just bad hardware?
Joachim
