From owner-freebsd-stable@FreeBSD.ORG Tue Oct 21 10:02:41 2008 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8050E1065674 for ; Tue, 21 Oct 2008 10:02:41 +0000 (UTC) (envelope-from doconnor@gsoft.com.au) Received: from ipmail01.adl6.internode.on.net (ipmail01.adl6.internode.on.net [203.16.214.146]) by mx1.freebsd.org (Postfix) with ESMTP id EEE1A8FC26 for ; Tue, 21 Oct 2008 10:02:40 +0000 (UTC) (envelope-from doconnor@gsoft.com.au) X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AqwEAM8S9kh5Lfmc/2dsb2JhbACBcsA0gWs X-IronPort-AV: E=Sophos;i="4.33,456,1220193000"; d="asc'?scan'208";a="215054944" Received: from ppp121-45-249-156.lns11.adl6.internode.on.net (HELO midget.dons.net.au) ([121.45.249.156]) by ipmail01.adl6.internode.on.net with ESMTP; 21 Oct 2008 20:32:38 +1030 Received: from inchoate.dons.net.au (Inchoate.dons.net.au [10.0.2.99]) (authenticated bits=0) by midget.dons.net.au (8.14.3/8.14.2) with ESMTP id m9LA2Qun086536 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 21 Oct 2008 20:32:31 +1030 (CST) (envelope-from doconnor@gsoft.com.au) From: "Daniel O'Connor" To: Mike Tancsa Date: Tue, 21 Oct 2008 20:27:54 +1030 User-Agent: KMail/1.9.10 References: <200810092206.02362.doconnor@gsoft.com.au> <200810150238.m9F2cAWu007721@lava.sentex.ca> <200810151339.57406.doconnor@gsoft.com.au> In-Reply-To: <200810151339.57406.doconnor@gsoft.com.au> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1878818.PBBI8QdGok"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200810212028.03184.doconnor@gsoft.com.au> X-Spam-Score: -1.906 () BAYES_00,SPF_FAIL X-Scanned-By: MIMEDefang 2.64 on 10.0.2.7 Cc: freebsd-stable@freebsd.org Subject: Re: Userland PPP not deleting old IP on disconnect X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 21 Oct 2008 10:02:41 -0000 --nextPart1878818.PBBI8QdGok Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Wednesday 15 October 2008 13:39:51 Daniel O'Connor wrote: > On Wednesday 15 October 2008 13:08:02 Mike Tancsa wrote: > > > very odd it only just started doing it though.. > > > > do you have tun0 in () on your nat statement ? > > > > eg. > > nat on tun0 from 192.168.23.0/24 to any -> (tun0) > > Yep. > > > You could always add to ppp.linkup something like > > > > pppoe: > > ! /sbin/pfctl -Fnat -f /etc/pf.conf > > Hmm.. I didn't realise you could delete NAT only state like that, I will > give it a try! > > (I've been doing pfctl -k $oldip) > > Thanks. I tried this but no luck. I find that every second connect works, eg.. [midget 20:12] ~ >sudo pfctl -s state | grep 203.31.81.10 No ALTQ support in kernel ALTQ related functions disabled all tcp 203.31.81.10:22 <- 10.0.2.99:55188 ESTABLISHED:ESTABLISHED all tcp 10.0.2.99:55188 -> 121.45.249.156:55188 -> 203.31.81.10:22 ES= TABLISHED:ESTABLISHED all tcp 203.31.81.10:22 <- 10.0.2.99:55190 CLOSED:SYN_SENT all tcp 10.0.2.99:55190 -> 121.45.57.17:55190 -> 203.31.81.10:22 SYN_= SENT:CLOSED all tcp 203.31.81.10:22 <- 10.0.2.99:55194 FIN_WAIT_2:FIN_WAIT_2 all tcp 10.0.2.99:55194 -> 121.45.249.156:55194 -> 203.31.81.10:22 FI= N_WAIT_2:FIN_WAIT_2 As you can see it mentions the old (121.45.57.17) and new (121.45.249.156) IPs.. I have no idea where it is getting that IP from.. ifconfig & netstat don't= =20 show it. I've even tried /etc/rc.d/pf restart but that doesn't fix it.. It's very=20 perplexing :( =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart1878818.PBBI8QdGok Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQBI/aer5ZPcIHs/zowRAlqvAJ9GeEn6h5ESoi0Ny3iDFJL21rQfOACfSZt0 K0fBw2qOAt7rmKsL2J2fIZ8= =cSji -----END PGP SIGNATURE----- --nextPart1878818.PBBI8QdGok--