On Fri, Dec 16, 2005 at 01:47:59PM -0600, Paul Dokas wrote:
> Bingo (I think). I found the following in the firewall's kernel config:
>
> options HZ=2000
>
> I'm going to get than changed and see if the problem goes away.
I just discovered that this seems to be a know problem with setting HZ
On Fri, 16 Dec 2005 20:38:30 +0100 Daniel Hartmeier <[EMAIL PROTECTED]> wrote:
> Doh.
>
> delta_tsval == 1424952994 - 1424712993 == 240001
> delta_time == 120082719 us (120.082719 s)
>
> freq == delta_tsval / delta_time
> == 240001 / 120.082719
> == 240001 * 100 / 120082719
>
Doh.
delta_tsval == 1424952994 - 1424712993 == 240001
delta_time == 120082719 us (120.082719 s)
freq == delta_tsval / delta_time
== 240001 / 120.082719
== 240001 * 100 / 120082719
== 1998 Hz (> 1000 Hz)
So it's not that far off, the server seems to increment timestamps at
0
On Fri, 16 Dec 2005 19:34:47 +0100 Daniel Hartmeier <[EMAIL PROTECTED]> wrote:
> The additional checks are automatically enabled when using "reassemble
> tcp", which explains why the same ruleset didn't block the packets on
> 5.4 but now does on 6.0. You can disable "reassemble tcp" and the new
> (
On Fri, Dec 16, 2005 at 02:04:54PM -0500, Mike Frantzen wrote:
> > So, between those two subsequent packets, the server incremented its
> > timestamp by
> > delta_tsval == 1424952994 - 1424712993 == 240001
> > within the timespan of
> > delta_usec == 120 * 100 + 82719 == 2082719
Wait, tha
> >From the logged values and the source code we can deduce that the last
> two packets from the SSH server (that.host) to the client (this.host)
> were seen (by pf, in the kernel) exactly
> delta_ts.tv_sec == 120
> delta_ts.tv_usec == 82719
> apart. This approximately matches the difference i
On Fri, Dec 16, 2005 at 10:09:15AM -0600, Paul Dokas wrote:
> I recently upgrade to FreeBSD 6.0 via a full reinstall and I've run into a
> very
> strange problem with PF. First of all, I'm using the same PF ruleset that I
> used on 5.4. I know for a fact that it works correctly there.
This is
I recently upgrade to FreeBSD 6.0 via a full reinstall and I've run into a very
strange problem with PF. First of all, I'm using the same PF ruleset that I
used on 5.4. I know for a fact that it works correctly there. What's happening
is that when I turn on PF, I'm able to make outbound connect
