Default router changes unexpectedly

2010-06-07 Thread Özkan KIRIK
Hi, I am using FreeBSD 7.3 STABLE-201004. IPFW + In kernel NAT and if_vlan used mostly. System has 3 em interfaces. Scenario is classical, LAN DMZ WAN. Sometimes default router changes unexpectedly. I inspected logs if someone logged in or changed route. I found nothing. This problem repeats at l

RE: bce+lagg

2010-06-07 Thread David Christensen
> If I configure the cards individually, I can reach other devices on the > network. When I enable link aggregation, I can ping the hosts IP > address, > but I cannot ping its gateway. I haven't played with lagg on bce(4) so I definitely haven't tested this. Can you dump the hardware statistics be

Re: kern/147638: [PATCH] [ath] Atheros R9280 has probrem at 8.1-PRERELEASE

2010-06-07 Thread linimon
Synopsis: [PATCH] [ath] Atheros R9280 has probrem at 8.1-PRERELEASE Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Mon Jun 7 18:04:40 UTC 2010 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi

Re: kern/71474: [route] route lookup does not skip interfaces marked down

2010-06-07 Thread linimon
Old Synopsis: route lookup does not skip interfaces marked down New Synopsis: [route] route lookup does not skip interfaces marked down Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Mon Jun 7 17:55:37 UTC 2010 Responsible-Changed-W

Current problem reports assigned to freebsd-net@FreeBSD.org

2010-06-07 Thread FreeBSD bugmaster
Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker

Re: Connection rate limits with pf, blocks too soon?

2010-06-07 Thread Pieter de Boer
On 06/07/2010 11:21 AM, Pieter de Boer wrote: However, when I run a scanner against this web server, the source IP is blocked after a few seconds and only a few tens of requests. Using 'pfctl -s state' I confirmed that only 65 simultaneous states were present, much lower than the limit. Turns

Connection rate limits with pf, blocks too soon?

2010-06-07 Thread Pieter de Boer
Hi list, I have the following rule in my pf.conf: pass in quick on $ext_if inet proto tcp from any to $ext_addr port 80 modulate state (source-track rule max-src-conn 128 max-src-conn-rate 5000/600 overload flush global) I thought this meant that an IP address is added to the `weblamers' t