From owner-freebsd-net@FreeBSD.ORG Sun Oct 14 09:50:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7617E16A41A; Sun, 14 Oct 2007 09:50:54 +0000 (UTC) (envelope-from kris@FreeBSD.org) Received: from weak.local (hub.freebsd.org [IPv6:2001:4f8:fff6::36]) by mx1.freebsd.org (Postfix) with ESMTP id 8EE5D13C45D; Sun, 14 Oct 2007 09:50:53 +0000 (UTC) (envelope-from kris@FreeBSD.org) Message-ID: <4711E67B.7040806@FreeBSD.org> Date: Sun, 14 Oct 2007 11:50:51 +0200 From: Kris Kennaway User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Kris Kennaway References: <470FBC05.6010601@FreeBSD.org> In-Reply-To: <470FBC05.6010601@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, Jack Vogel Subject: Re: em driver sending bad packet lengths X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Oct 2007 09:50:54 -0000 Kris Kennaway wrote: > I am seeing the em driver on 7.0 sending packets with bad UDP (and > apparently sometimes IP) packet length fields. This is from UDP NFS > traffic (90MB/sec over gige). These packets are dropped on reception by > the kernel and counted. I think this is due to rollover of the ip id combined with fragmented packet loss. When a fragment is missing the packet is queued in the hope it will arrive later, but we keep it queued for 30 seconds! In that time the server may roll over the 16 bit ipid thousands or tens of thousands of times, and if those new packets are fragmented they will be recombined with the queued packets. The recombined hybrid packets will mostly have the wrong length or checksum (but 1/65536 of them will randomly have the correct UDP checksum, so this is not just a cosmetic issue). Kris From owner-freebsd-net@FreeBSD.ORG Sun Oct 14 16:14:29 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 13A2616A46C for ; Sun, 14 Oct 2007 16:14:29 +0000 (UTC) (envelope-from wawa@yandex-team.ru) Received: from relanium.yandex.ru (relanium.yandex.ru [213.180.193.88]) by mx1.freebsd.org (Postfix) with ESMTP id 7FEBE13C45D for ; Sun, 14 Oct 2007 16:14:28 +0000 (UTC) (envelope-from wawa@yandex-team.ru) Received: from [87.250.227.231] (v3-227-231.yandex.net [87.250.227.231]) by relanium.yandex.ru (8.14.1/8.14.1) with ESMTP id l9EGEGed054005 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Sun, 14 Oct 2007 20:14:21 +0400 (MSD) (envelope-from wawa@yandex-team.ru) Message-ID: <4712405B.1080808@yandex-team.ru> Date: Sun, 14 Oct 2007 20:14:19 +0400 From: Vladimir Ivanov Organization: Yandex LLC User-Agent: Thunderbird 1.5.0.13 (X11/20070824) MIME-Version: 1.0 To: "freebsd-net@freebsd.org" References: <46B07931.3080300@yandex-team.ru> <55e8a96c0708010626x7a433c21hacc124c7c70af471@mail.gmail.com> <46B09802.7080908@yandex-team.ru> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Antivirus: Dr.Web (R) for Mail Servers on relanium.yandex.ru host X-Antivirus-Code: 100000 Subject: Re: SMPable version of EM driver X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Oct 2007 16:14:29 -0000 Hi, Mike Tancsa wrote: > On Wed, 01 Aug 2007 18:26:10 +0400, in sentex.lists.freebsd.net you > wrote: > > >> Bill Marquette wrote: >> >>> [skip] >>> What type of performance differences are you seeing with these >>> changes? Is this with FreeBSD acting as a router/firewall, or purely >>> >>> >> RX queue is being processed w/more than one thread. >> TX queue thread isn't locked with RX anymore. >> >> Extra CPU time can be used by e.g. IPFW firewall or routing and so on. >> >> > > Hi, > I am interested in trying your version of the em driver. On > one of my routers, I am seeing > > kernel: em2: Missed Packets = 953 > kernel: em2: Receive No Buffers = 128 > kernel: em2: RX overruns = 7 > kernel: em2: Good Packets Rcvd = 62453961 > kernel: em2: Good Packets Xmtd = 31935910 > > This is with the em driver currently in the RELENG_6 tree (version > 6.6.6).. Previous versions were the same. > I notice that you have some different defaults as well > > dev.em.0.rx_int_delay: 0 > dev.em.0.tx_int_delay: 67108 > dev.em.0.rx_abs_int_delay: 1000 > dev.em.0.tx_abs_int_delay: 67108 > > vs > > dev.em.1.rx_int_delay: 0 > dev.em.1.tx_int_delay: 66 > dev.em.1.rx_abs_int_delay: 66 > dev.em.1.tx_abs_int_delay: 66 > dev.em.1.rx_processing_limit: 100 > > What are these tuned for ? Hi pps ? Low latency ? > We've both problems and even more: we need low latency, we've huge pps, we've to run firewall and so on Tuning can not solve them. Actually our rx/tx timeout defaults mostly are meaningless because: 1) we do not use TX interrupts et all 2) we use explicit SYSCTL (see dev.em.N.rx_kthread_priority) for tuning RX threads' priority instead of rx_processing_limit. 3) we mask rx interrupts if aren't ready to catch that's why we do not need interrupt pending/throttling. > Thanks for any info, > > ---Mike > > >> Also: >> + RX and TX use different priority value. System seems to be more stable >> if RX scheduled w/less priority. >> + RX/TX stay masked if there is no thread ready to catch interrupt. >> >> >>> as a server? Any chance you are using the pf filtering engine (which >>> I believe is still under giant in releng_6) with this? Thanks >>> >>> >> I have been talked that GIANT is a big problem for pf driver and they >> can not fix it easy. >> >> Regards, >> -- >> [skip] WBR, PS: your personal e-mail doesn't work -- Vladimir Ivanov Network Operations Center OOO "Yandex" t: +7 495 739-7000 f: +7 495 739-7070 @: noc@yandex.net (corporate) wawa@yandex-team.ru (personal) www: www.yandex.ru -- From owner-freebsd-net@FreeBSD.ORG Sun Oct 14 21:28:40 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A0D5816A418 for ; Sun, 14 Oct 2007 21:28:40 +0000 (UTC) (envelope-from mail@chdevelopment.se) Received: from av10-2-sn2.hy.skanova.net (av10-2-sn2.hy.skanova.net [81.228.8.182]) by mx1.freebsd.org (Postfix) with ESMTP id 5437413C44B for ; Sun, 14 Oct 2007 21:28:40 +0000 (UTC) (envelope-from mail@chdevelopment.se) Received: by av10-2-sn2.hy.skanova.net (Postfix, from userid 502) id E0EEC38277; Sun, 14 Oct 2007 23:28:38 +0200 (CEST) Received: from smtp4-2-sn2.hy.skanova.net (smtp4-2-sn2.hy.skanova.net [81.228.8.93]) by av10-2-sn2.hy.skanova.net (Postfix) with ESMTP id C1B8338277; Sun, 14 Oct 2007 23:28:38 +0200 (CEST) Received: from melissa.chdevelopment.se (90-227-26-163-no68.tbcn.telia.com [90.227.26.163]) by smtp4-2-sn2.hy.skanova.net (Postfix) with ESMTP id 7570437E47; Sun, 14 Oct 2007 23:28:38 +0200 (CEST) Message-ID: <47128A06.40901@chdevelopment.se> Date: Sun, 14 Oct 2007 23:28:38 +0200 From: Christer Hermansson User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.8.1.6) Gecko/20070811 SeaMonkey/1.1.4 MIME-Version: 1.0 To: jhall@vandaliamo.net References: <1598.65.117.48.155.1192215288.squirrel@admintool.trueband.net> In-Reply-To: <1598.65.117.48.155.1192215288.squirrel@admintool.trueband.net> Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: NAT Questions X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Oct 2007 21:28:40 -0000 jhall@vandaliamo.net wrote: > Following is my configuration. > > External Interface------->Internal Interface--------> Rest of network > 1.2.3.4/24 10.129.10.40/24 > 1.2.3.5/32 Alias > > 1.2.3.5/24 is the IP address all http traffic will come in on. 1.2.3.4/32 > is the IP address all other traffic will come in on. Both of these > addresses reside on a single NIC with 1.2.3.5 being an alias. > > ipnat.rules > rdr 1.2.3.5/32 port 80 -> 10.129.10.49 port 80 > map em1 10.129.10.0/24 -> 0.0.0.0/32 > > 10.129.10.49 has 10.129.10.40 (my firewall) listed as its default gateway. > When it responds to a request that has been forwarded, how will the > firewall return the response? Will it return the request on 1.2.3.5? > > I think you should specify the interface and protocol as well, e.g. rdr xl0 1.2.3.5/32 port 80 -> 10.129.10.49 port 80 tcp The response will have 1.2.3.5 as source-address, the nat software remember that the translation/mapping was done on 1.2.3.5. I guess you have already added gateway_enable="YES" to the file /etc/rc.conf However, it's very bad to let people in to your protected network, if they can fool your webserver they have control over a internal machine. If the 10.129.10.0/24 is a DMZ, used only for web/mail etc this is of course okey to do. -- Christer Hermansson From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 04:43:14 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A996E16A417; Mon, 15 Oct 2007 04:43:14 +0000 (UTC) (envelope-from jinmei@isl.rdc.toshiba.co.jp) Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [IPv6:2001:200:1b1::35]) by mx1.freebsd.org (Postfix) with ESMTP id 58B0013C45A; Mon, 15 Oct 2007 04:43:14 +0000 (UTC) (envelope-from jinmei@isl.rdc.toshiba.co.jp) Received: from ncg-dhcp77.isl.rdc.toshiba.co.jp (unknown [IPv6:2001:200:1b1:1010:217:f2ff:fe26:34a0]) by shuttle.wide.toshiba.co.jp (Postfix) with ESMTP id 04F5273018; Mon, 15 Oct 2007 13:43:12 +0900 (JST) Date: Mon, 15 Oct 2007 13:43:00 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: bh@izb.knu.ac.kr In-Reply-To: <1192182851.13642.37.camel@viola.izb.knu.ac.kr> References: <1192182851.13642.37.camel@viola.izb.knu.ac.kr> User-Agent: Wanderlust/2.14.0 (Africa) Emacs/22.0 Mule/5.0 (SAKAKI) MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka") Content-Type: text/plain; charset=US-ASCII Cc: postmaster@freebsd.org, net@freebsd.org Subject: Re: unknown problem with mx1.freebsd.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 04:43:14 -0000 At Fri, 12 Oct 2007 18:54:11 +0900, Byung-Hee HWANG wrote: > Let me say this.. I just like all stuff around IPv6. And now I need one > native IPv6 address for my FreeBSD box, which is email gateway. There > was unknown problem related to IPv6 area between my FreeBSD box > [2002:9be6:9d5d:1::1] and mx1.freebsd.org [2001:4f8:fff6::34]. I don't know if mx1.freebsd.org delays or refuses delivery when DNS reverse lookup fails for the source of incoming connections, but at least there are some problems in the delegation under 2.0.0.2.ip6.arpa: out of 4 authoritative servers, ns-arin.6to4.nro.net seems to be down, and ns-ripe.6to4.nro.net returns SEVFAIL. You should probably contact dns-admin@apnic.net, which is the maintainer mail address according to the SOA record of the 2.0.0.2.ip6.arpa zone. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 05:56:41 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 867A816A468; Mon, 15 Oct 2007 05:56:41 +0000 (UTC) (envelope-from bh@izb.knu.ac.kr) Received: from izb.knu.ac.kr (unknown [IPv6:2002:9be6:9d5d:1::1]) by mx1.freebsd.org (Postfix) with ESMTP id 3C5E813C45B; Mon, 15 Oct 2007 05:56:41 +0000 (UTC) (envelope-from bh@izb.knu.ac.kr) Received: by draba.izb.knu.ac.kr (Postfix, from userid 59) id 0F3E63EA7; Mon, 15 Oct 2007 14:56:38 +0900 (KST) X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on draba.izb.knu.ac.kr X-Spam-Level: X-Spam-Status: No, score=-45.7 required=15.1 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VERIFIED,NORMAL_HTTP_TO_IP autolearn=disabled version=3.2.3 X-Spam-Comment: DKIM? See http://www.google.com/search?btnI&q=RFC+4871 Received: from izb.knu.ac.kr (localhost.izb.knu.ac.kr [127.0.0.1]) by draba.izb.knu.ac.kr (Postfix) with ESMTP id 54AAD3EA6; Mon, 15 Oct 2007 14:56:36 +0900 (KST) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=izb.knu.ac.kr; h=subject: from:reply-to:to:cc:in-reply-to:references:content-type: content-transfer-encoding:date:message-id:mime-version; q= dns/txt; s=s1024; bh=RNeFclQFT2REd+FonHN9wmIRwio=; b=eZJNudZYKzW CWpg44phujOGECl2gL9QQdIkU5y70ioKhSJifbeo73WYqeGGPHIBM/Rpexj/tejK XrSqdqAMzrmG8T+vbD48HNJwlTMgeqvpmj12XH9l91OwW8IHT7k36w6B605VCU20 YnyHUUsYY1UtUck+Pv3AZIRiqEsGgJao= Received: from viola.izb.knu.ac.kr (viola.izb.knu.ac.kr [IPv6:2002:9be6:9d5d:3::3]) by draba.izb.knu.ac.kr (Postfix) with ESMTP id 41D233EA4; Mon, 15 Oct 2007 14:56:36 +0900 (KST) Received: by viola.izb.knu.ac.kr (Postfix, from userid 1001) id 2B2835DF9; Mon, 15 Oct 2007 14:56:36 +0900 (KST) From: Byung-Hee HWANG To: JINMEI Tatuya / =?UTF-8?Q?=E7=A5=9E=E6=98=8E=E9=81=94=E5=93=89?= In-Reply-To: References: <1192182851.13642.37.camel@viola.izb.knu.ac.kr> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Organization: InZealBomb Date: Mon, 15 Oct 2007 14:56:35 +0900 Message-Id: <1192427795.1506.2.camel@viola.izb.knu.ac.kr> Mime-Version: 1.0 X-Mailer: Evolution 2.8.1.1 FreeBSD GNOME Team Port Cc: net@freebsd.org, postmaster@freebsd.org Subject: Re: unknown problem with mx1.freebsd.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: bh@izb.knu.ac.kr List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 05:56:41 -0000 On Mon, 2007-10-15 at 13:43 +0900, JINMEI Tatuya / =E7=A5=9E=E6=98=8E=E9=81= =94=E5=93=89 wrote: > At Fri, 12 Oct 2007 18:54:11 +0900, > Byung-Hee HWANG wrote: >=20 > > Let me say this.. I just like all stuff around IPv6. And now I need one > > native IPv6 address for my FreeBSD box, which is email gateway. There > > was unknown problem related to IPv6 area between my FreeBSD box > > [2002:9be6:9d5d:1::1] and mx1.freebsd.org [2001:4f8:fff6::34].=20 >=20 > I don't know if mx1.freebsd.org delays or refuses delivery when DNS > reverse lookup fails for the source of incoming connections, but > at least there are some problems in the delegation under > 2.0.0.2.ip6.arpa: out of 4 authoritative servers, > ns-arin.6to4.nro.net seems to be down, and ns-ripe.6to4.nro.net > returns SEVFAIL. You should probably contact dns-admin@apnic.net, > which is the maintainer mail address according to the SOA record of > the 2.0.0.2.ip6.arpa zone. Okay, I'll contact , thanks! --=20 Byung-Hee HWANG "Get that man out here to me." -- Michael Corleone, "Chapter 23", page 334 From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 11:06:16 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4790F16A478 for ; Mon, 15 Oct 2007 11:06:16 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 2148D13C469 for ; Mon, 15 Oct 2007 11:06:16 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l9FB6FNh080501 for ; Mon, 15 Oct 2007 11:06:15 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l9FB6Fnr080499 for freebsd-net@FreeBSD.org; Mon, 15 Oct 2007 11:06:15 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 15 Oct 2007 11:06:15 GMT Message-Id: <200710151106.l9FB6Fnr080499@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 11:06:16 -0000 From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 17:47:12 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A218516A469 for ; Mon, 15 Oct 2007 17:47:12 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 8E10213C48A for ; Mon, 15 Oct 2007 17:47:12 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l9FHlCiG015026 for ; Mon, 15 Oct 2007 17:47:12 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l9FHlBVi015022 for freebsd-net@FreeBSD.org; Mon, 15 Oct 2007 17:47:11 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 15 Oct 2007 17:47:11 GMT Message-Id: <200710151747.l9FHlBVi015022@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-net@FreeBSD.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 17:47:12 -0000 Current FreeBSD problem reports Critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/115360 net [ipv6] IPv6 address and if_bridge don't play well toge 1 problem total. Serious problems S Tracker Resp. Description -------------------------------------------------------------------------------- s kern/21998 net [socket] [patch] ident only for outgoing connections a kern/38554 net changing interface ipaddress doesn't seem to work s kern/39937 net ipstealth issue s kern/81147 net [net] [patch] em0 reinitialization while adding aliase o kern/92552 net A serious bug in most network drivers from 5.X to 6.X s kern/95665 net [if_tun] "ping: sendto: No buffer space available" wit s kern/105943 net Network stack may modify read-only mbuf chain copies o kern/106316 net [dummynet] dummynet with multipass ipfw drops packets o kern/108542 net [bce]: Huge network latencies with 6.2-RELEASE / STABL o kern/109406 net [ndis] Broadcom WLAN driver 4.100.15.5 doesn't work wi o kern/110959 net [ipsec] Filtering incoming packets with enc0 does not o kern/112528 net [nfs] NFS over TCP under load hangs with "impossible p o kern/112686 net [patm] patm driver freezes System (FreeBSD 6.2-p4) i38 o kern/112722 net IP v4 udp fragmented packet reject o kern/113457 net [ipv6] deadlock occurs if a tunnel goes down while the o kern/113842 net [ipv6] PF_INET6 proto domain state can't be cleared wi o kern/114714 net [gre][patch] gre(4) is not MPSAFE and does not support o kern/114839 net [fxp] fxp looses ability to speak with traffic o kern/115239 net [ipnat] panic with 'kmem_map too small' using ipnat o kern/116077 net 6.2-STABLE panic during use of multi-cast networking c o kern/116172 net Network / ipv6 recursive mutex panic o kern/116185 net if_iwi driver leads system to reboot o kern/116186 net can not set wi channel on current o kern/116328 net [bge]: Solid hang with bge interface o kern/116747 net [ndis] FreeBSD 7.0-CURRENT crash with Dell TrueMobile o kern/116837 net ifconfig tunX destroy: panic 26 problems total. Non-critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/23063 net [PATCH] for static ARP tables in rc.network s bin/41647 net ifconfig(8) doesn't accept lladdr along with inet addr o kern/54383 net [nfs] [patch] NFS root configurations without dynamic s kern/60293 net FreeBSD arp poison patch o kern/95267 net packet drops periodically appear f kern/95277 net [netinet] [patch] IP Encapsulation mask_match() return o kern/100519 net [netisr] suggestion to fix suboptimal network polling o kern/102035 net [plip] plip networking disables parallel port printing o conf/102502 net [patch] ifconfig name does't rename netgraph node in n o kern/103253 net inconsistent behaviour in arp reply of a bridge o conf/107035 net [patch] bridge interface given in rc.conf not taking a o kern/112654 net [pcn] Kernel panic upon if_pcn module load on a Netfin o kern/114095 net [carp] carp+pf delay with high state limit o kern/114915 net [patch] [pcn] pcn (sys/pci/if_pcn.c) ethernet driver f o bin/116643 net [patch] fstat(1): add INET/INET6 socket details as in 15 problems total. From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 18:10:04 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8160B16A468 for ; Mon, 15 Oct 2007 18:10:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 6D36D13C45D for ; Mon, 15 Oct 2007 18:10:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l9FIA4Dg018426 for ; Mon, 15 Oct 2007 18:10:04 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l9FIA42P018424; Mon, 15 Oct 2007 18:10:04 GMT (envelope-from gnats) Date: Mon, 15 Oct 2007 18:10:04 GMT Message-Id: <200710151810.l9FIA42P018424@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: "Jerry Toung" Cc: Subject: Re: kern/116077: 6.2-STABLE panic during use of multi-cast networking client X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Jerry Toung List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 18:10:04 -0000 The following reply was made to PR kern/116077; it has been noted by GNATS. From: "Jerry Toung" To: bug-followup@FreeBSD.org, rse@FreeBSD.org Cc: Subject: Re: kern/116077: 6.2-STABLE panic during use of multi-cast networking client Date: Mon, 15 Oct 2007 10:34:45 -0700 ------=_Part_38048_24391589.1192469685796 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline I have experienced the same crash. Please try this patch, it works for me. I am running 6.2 STABLE. Jerry diff -u ip_output.c.orig ip_output.c --- ip_output.c.orig Thu Mar 8 05:19:03 2007 +++ ip_output.c Fri Oct 12 10:23:32 2007 @@ -58,6 +58,7 @@ #include #include @@ -1669,7 +1672,7 @@ INP_UNLOCK(inp); - imo = (struct ip_moptions*)malloc(sizeof(*imo), M_IPMOPTS, M_WAITOK); + imo = (struct ip_moptions*)malloc(sizeof(*imo), M_IPMOPTS, M_WAITOK|M_ZERO); imo->imo_multicast_ifp = NULL; imo->imo_multicast_addr.s_addr = INADDR_ANY; @@ -1957,6 +1960,9 @@ * membership points. */ in_delmulti(imo->imo_membership[i]); + imo->imo_membership[i]->inm_ifma = NULL; + imo->imo_membership[i]->inm_ifp = NULL; + imo->imo_membership[i]->inm_addr.s_addr = 0; /* * Remove the gap in the membership array. */ diff -u ~tester/in.c.orig in.c --- /home/tester/in.c.orig Mon Oct 15 10:21:45 2007 +++ in.c Fri Oct 12 08:24:18 2007 @@ -1058,14 +1058,29 @@ in_delmulti(inm) register struct in_multi *inm; { - struct ifnet *ifp; + struct ifnet *ifp, *it_ifp; + int found = 0; ifp = inm->inm_ifp; + if (ifp == NULL) + return; + + TAILQ_FOREACH(it_ifp, &ifnet, if_link) { + if (ifp == it_ifp) { + found = 1; + break; + } + } + + if (found == 0) + return; + IFF_LOCKGIANT(ifp); IN_MULTI_LOCK(); in_delmulti_locked(inm, 0); IN_MULTI_UNLOCK(); IFF_UNLOCKGIANT(ifp); + } ------=_Part_38048_24391589.1192469685796 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline I have experienced the same crash. Please try this patch, it works for me. I am running 6.2 STABLE.
Jerry



diff -u ip_output.c.orig ip_output.c
--- ip_output.c.orig    Thu Mar  8 05:19:03 2007
+++ ip_output.c Fri Oct 12 10:23:32 2007
@@ -58,6 +58,7 @@
 #include <netinet/in_var.h>
 #include <netinet/ip_var.h>
 

@@ -1669,7 +1672,7 @@

        INP_UNLOCK(inp);

-       imo = (struct ip_moptions*)malloc(sizeof(*imo), M_IPMOPTS, 
M_WAITOK);
+       imo = (struct ip_moptions*)malloc(sizeof(*imo), M_IPMOPTS, 
 
M_WAITOK|M_ZERO);

        imo->imo_multicast_ifp = NULL;
        imo->imo_multicast_addr.s_addr = INADDR_ANY;

@@ -1957,6 +1960,9 @@
                 * membership points.
                 */
 
                in_delmulti(imo->imo_membership[i]);
+               imo->imo_membership[i]->inm_ifma = NULL;
+               imo->imo_membership[i]->inm_ifp = NULL;
+               imo->imo_membership[i]->inm_addr.s_addr = 0;
 
                /*
                 * Remove the gap in the membership array.
                 */





diff -u ~tester/in.c.orig in.c
--- /home/tester/in.c.orig      Mon Oct 15 10:21:45 2007
 
+++ in.c        Fri Oct 12 08:24:18 2007
@@ -1058,14 +1058,29 @@
 in_delmulti(inm)
        register struct in_multi *inm;
 {
-       struct ifnet *ifp;
+       struct ifnet *ifp, *it_ifp;
+       int found = 0;
 

        ifp = inm->inm_ifp;
+       if (ifp == NULL)
+               return;
+
+       TAILQ_FOREACH(it_ifp, &ifnet, if_link) {
+                if (ifp == it_ifp) {
+                        found = 1;
 
+                        break;
+                }
+       }
+
+       if (found == 0)
+               return;
+
        IFF_LOCKGIANT(ifp);
        IN_MULTI_LOCK();
        in_delmulti_locked(inm, 0);
 
        IN_MULTI_UNLOCK();
        IFF_UNLOCKGIANT(ifp);
+
 }

------=_Part_38048_24391589.1192469685796-- From owner-freebsd-net@FreeBSD.ORG Mon Oct 15 21:22:25 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C012C16A417 for ; Mon, 15 Oct 2007 21:22:25 +0000 (UTC) (envelope-from jhall@vandaliamo.net) Received: from trueband.net (director.trueband.net [216.163.120.8]) by mx1.freebsd.org (Postfix) with SMTP id 51C6513C48D for ; Mon, 15 Oct 2007 21:22:24 +0000 (UTC) (envelope-from jhall@vandaliamo.net) Received: (qmail 29552 invoked by uid 1006); 15 Oct 2007 21:22:23 -0000 Received: from jhall@vandaliamo.net by rs0 by uid 1003 with qmail-scanner-1.16 (spamassassin: 3.1.4. Clear:SA:0(-1.4/100.0):. Processed in 0.789454 secs); 15 Oct 2007 21:22:23 -0000 X-Spam-Status: No, hits=-1.4 required=100.0 X-Spam-Level: Received: from unknown (HELO trueband.net) (172.16.0.14) by -v with SMTP; 15 Oct 2007 21:22:22 -0000 Received: (qmail 29790 invoked from network); 15 Oct 2007 21:22:22 -0000 Received: from unknown (HELO admintool.trueband.net) (127.0.0.1) by -v with SMTP; 15 Oct 2007 21:22:22 -0000 Received: from 12.170.206.13 (SquirrelMail authenticated user jhall@vandaliamo.net) by admintool.trueband.net with HTTP; Mon, 15 Oct 2007 21:22:22 -0000 (GMT) Message-ID: <1282.12.170.206.13.1192483342.squirrel@admintool.trueband.net> In-Reply-To: <47128A06.40901@chdevelopment.se> References: <1598.65.117.48.155.1192215288.squirrel@admintool.trueband.net> <47128A06.40901@chdevelopment.se> Date: Mon, 15 Oct 2007 21:22:22 -0000 (GMT) From: jhall@vandaliamo.net To: "Christer Hermansson" User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: freebsd-net@freebsd.org, jhall@vandaliamo.net Subject: Re: NAT Questions X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2007 21:22:25 -0000 > jhall@vandaliamo.net wrote: >> Following is my configuration. >> >> External Interface------->Internal Interface--------> Rest of network >> 1.2.3.4/24 10.129.10.40/24 >> 1.2.3.5/32 Alias >> >> 1.2.3.5/24 is the IP address all http traffic will come in on. >> 1.2.3.4/32 >> is the IP address all other traffic will come in on. Both of these >> addresses reside on a single NIC with 1.2.3.5 being an alias. >> >> ipnat.rules >> rdr 1.2.3.5/32 port 80 -> 10.129.10.49 port 80 >> map em1 10.129.10.0/24 -> 0.0.0.0/32 >> >> 10.129.10.49 has 10.129.10.40 (my firewall) listed as its default >> gateway. >> When it responds to a request that has been forwarded, how will the >> firewall return the response? Will it return the request on 1.2.3.5? >> >> > I think you should specify the interface and protocol as well, e.g. > rdr xl0 1.2.3.5/32 port 80 -> 10.129.10.49 port 80 tcp > > The response will have 1.2.3.5 as source-address, the nat software > remember that the translation/mapping was done on 1.2.3.5. > > I guess you have already added > gateway_enable="YES" > to the file /etc/rc.conf > > However, it's very bad to let people in to your protected network, if > they can fool your webserver they have control over a internal machine. > If the 10.129.10.0/24 is a DMZ, used only for web/mail etc this is of > course okey to do. > Thank you for the explanation. I thought that was how it worked, but was not sure. Yes, the server in question is only used as a web server. Thanks again for the explanation. Jay From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 02:01:21 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CF7A116A418; Tue, 16 Oct 2007 02:01:21 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.183]) by mx1.freebsd.org (Postfix) with ESMTP id 55DBB13C458; Tue, 16 Oct 2007 02:01:21 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-037-127.pools.arcor-ip.net [88.66.37.127]) by mrelayeu.kundenserver.de (node=mrelayeu3) with ESMTP (Nemesis) id 0MKxQS-1IhbkG0n4b-0002j2; Tue, 16 Oct 2007 04:01:20 +0200 From: Max Laier Organization: FreeBSD To: freebsd-current@freebsd.org Date: Tue, 16 Oct 2007 04:01:09 +0200 User-Agent: KMail/1.9.7 References: <200709302232.34505.max@love2party.net> <200710020356.10429.max@love2party.net> <200710120544.04157.max@love2party.net> In-Reply-To: <200710120544.04157.max@love2party.net> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart3799351.kMt6gSb7j7"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710160401.18429.max@love2party.net> X-Provags-ID: V01U2FsdGVkX1+7NS25pTybdgP48co/fmzB+dXc04SqMFas0XQ rZKRihoH0OrdQy8lW9njIjVHyZvdSp7D27wgF45tuXJ9B6fema /Eb3Hwzqam3O9s+FEASlZM4KewL3AhMl0PtB2RvZGU= Cc: freebsd-net@freebsd.org Subject: Re: libpcap/tcpdump update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 02:01:21 -0000 --nextPart3799351.kMt6gSb7j7 Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 12 October 2007, Max Laier wrote: > On Tuesday 02 October 2007, Max Laier wrote: > > On Sunday 30 September 2007, Max Laier wrote: > > > Hi, > > > > > > I'd like to get some eyes on > > > http://people.freebsd.org/~mlaier/tcpdump/ in order to get $subj > > > into the tree. Let me know if you find any problems. Thanks. > > > > > > This should also take care of bin/116610, by the way. > > > > Please refresh - the first version didn't get through buildworld - > > sorry! > > I plan to do this really soon now with the HEAD freeze lifted. Did > anyone get to test it? Any objections? Talking to myself it seems :-\ ... anyhow, I'm going ahead with this *now* = =20 HEAD might be unbuildable for a couple of minutes due to the import. =20 I'll let you know once this is done. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart3799351.kMt6gSb7j7 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHFBtuXyyEoT62BG0RAk47AJ4+ks2990ZRTK5zn78hfxUmmwtWRQCfZhuU oBwyVmogGweBrbkHhiN4Wy8= =SreM -----END PGP SIGNATURE----- --nextPart3799351.kMt6gSb7j7-- From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 02:45:15 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D01F616A418; Tue, 16 Oct 2007 02:45:15 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.179]) by mx1.freebsd.org (Postfix) with ESMTP id 5F06F13C442; Tue, 16 Oct 2007 02:45:15 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-037-127.pools.arcor-ip.net [88.66.37.127]) by mrelayeu.kundenserver.de (node=mrelayeu1) with ESMTP (Nemesis) id 0MKwpI-1IhcQk0Ck5-00078p; Tue, 16 Oct 2007 04:45:14 +0200 From: Max Laier Organization: FreeBSD To: freebsd-current@freebsd.org Date: Tue, 16 Oct 2007 04:45:04 +0200 User-Agent: KMail/1.9.7 References: <200709302232.34505.max@love2party.net> <200710120544.04157.max@love2party.net> <200710160401.18429.max@love2party.net> In-Reply-To: <200710160401.18429.max@love2party.net> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1307717.K9JADICcco"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710160445.10993.max@love2party.net> X-Provags-ID: V01U2FsdGVkX19gBE6dq9wMRD9vMIRbmMJ9UQUMM6l/m3fMpZ0 g7JOmfVZyF5wAfOkK86uc8JNXfyW5yf/wbfUh7FTHqYdzouRun OpCGk/rCWeL4PjChnPkfGPBGwbk/yZqiXtQCG4MlBk= Cc: freebsd-net@freebsd.org Subject: Re: libpcap/tcpdump update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 02:45:15 -0000 --nextPart1307717.K9JADICcco Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tuesday 16 October 2007, Max Laier wrote: > On Friday 12 October 2007, Max Laier wrote: > > On Tuesday 02 October 2007, Max Laier wrote: > > > On Sunday 30 September 2007, Max Laier wrote: > > > > Hi, > > > > > > > > I'd like to get some eyes on > > > > http://people.freebsd.org/~mlaier/tcpdump/ in order to get $subj > > > > into the tree. Let me know if you find any problems. Thanks. > > > > > > > > This should also take care of bin/116610, by the way. > > > > > > Please refresh - the first version didn't get through buildworld - > > > sorry! > > > > I plan to do this really soon now with the HEAD freeze lifted. Did > > anyone get to test it? Any objections? > > Talking to myself it seems :-\ ... anyhow, I'm going ahead with this > *now* HEAD might be unbuildable for a couple of minutes due to the > import. I'll let you know once this is done. Done. I'll do a buildworld and universe now to catch any fallout I might=20 have caused. MFC'ing to RELENG_7 and _6 in a couple of days unless=20 serious problems show up - TEST NOW or forever hold your peace ;) =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1307717.K9JADICcco Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHFCW2XyyEoT62BG0RAoZHAJ9SqER63P/kUuYk8G8IZx8fPFB/GACfbAhv ovkmcL3canLMcvF98kU6VP0= =YTeK -----END PGP SIGNATURE----- --nextPart1307717.K9JADICcco-- From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 08:26:50 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3F2F016A417 for ; Tue, 16 Oct 2007 08:26:50 +0000 (UTC) (envelope-from wawa@yandex-team.ru) Received: from cmail.yandex.ru (cmail.yandex.ru [213.180.193.1]) by mx1.freebsd.org (Postfix) with ESMTP id C402913C461 for ; Tue, 16 Oct 2007 08:26:49 +0000 (UTC) (envelope-from wawa@yandex-team.ru) Received: from [87.250.250.1] (wawa.yandex.ru [87.250.250.1]) by cmail.yandex.ru (8.14.1/8.14.1) with ESMTP id l9G8QjV3064195; Tue, 16 Oct 2007 12:26:47 +0400 (MSD) (envelope-from wawa@yandex-team.ru) Message-ID: <471475C3.9000702@yandex-team.ru> Date: Tue, 16 Oct 2007 12:26:43 +0400 From: Vladimir Ivanov Organization: Yandex LLC User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.13pre) Gecko/20070505 Iceape/1.0.9 (Debian-1.0.10~pre070720-0etch3+lenny1) MIME-Version: 1.0 To: Karl Triebes , freebsd-net References: <46B07931.3080300@yandex-team.ru> <55e8a96c0708010626x7a433c21hacc124c7c70af471@mail.gmail.com> <46B09802.7080908@yandex-team.ru> <4712405B.1080808@yandex-team.ru> <26a198490710142105g8fe59c2o86ceaa10d82c3c47@mail.gmail.com> In-Reply-To: <26a198490710142105g8fe59c2o86ceaa10d82c3c47@mail.gmail.com> Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms090401080000060904060000" Cc: Subject: Re: SMPable version of EM driver X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 08:26:50 -0000 This is a cryptographically signed message in MIME format. --------------ms090401080000060904060000 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Karl Triebes wrote: > Vladamir, > interesting work. Do you have performance numbers with each of your > changes to see how much each contributed? How does this method scale > with cpu cores. With your multiple RX thread idea, do you think there > will a lot of cache thrashing due to fact that now > 1 core is looking > at RX from the same device? > DMA activity is a main problem for cache. They have about zero cache hit rate even w/one CPU core I seem. > Thanks, > > Karl. > > [skip] WBR, -- Vladimir Ivanov Network Operations Center OOO "Yandex" t: +7 495 739-7000 f: +7 495 739-7070 @: noc@yandex.net (corporate) wawa@yandex-team.ru (personal) www: www.yandex.ru -- --------------ms090401080000060904060000 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIGJzCC AuAwggJJoAMCAQICEA2B08GbcpEEl6Da/kpOht8wDQYJKoZIhvcNAQEFBQAwYjELMAkGA1UE BhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMT I1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW5nIENBMB4XDTA3MDcwNDE1MTM0NVoX DTA4MDcwMzE1MTM0NVowRTEfMB0GA1UEAxMWVGhhd3RlIEZyZWVtYWlsIE1lbWJlcjEiMCAG CSqGSIb3DQEJARYTd2F3YUB5YW5kZXgtdGVhbS5ydTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANuooNgTWqT0D35N7rdbZAAje8iyZcELUHy3Dgh6Pymm+s7RIeP8EoxTnn1o YQMFkZdthNT/j+MXl61O0zBshti+34/9m0rQzntCHDboJf9yTeA0bOqL43EdnEMlUWTEaf00 dcOySQ3fpTKiiQKqFASI1MUPDCfQQuu6ansTCpddG8fOu+zaE570aH6hoy/NRGhH8SCbcARY QxjjiddCUknclX2gz4ak+wVB4IapHNSdtRG3APj5GZY9VK7sAwjOqodcNwbQEG/Gj6j99fU3 7GYAL+x3bz9wve9YGEJ7TUPLpd582tZtiiakqurnluId4Ix1B/HSyAZnPAr5WYJZrwcCAwEA AaMwMC4wHgYDVR0RBBcwFYETd2F3YUB5YW5kZXgtdGVhbS5ydTAMBgNVHRMBAf8EAjAAMA0G CSqGSIb3DQEBBQUAA4GBABzUVmJvH3Cr++WFtTFVewG2cLZo3geMNRuT+wIPULXt59LPuSg7 ZnK04wXNC2Am5UKilWxvDS6gs6pW2ZIDHw8YttQzej7z7+Scujr9uyfxMcTxHfk826UAdadz eKYGHEvb41wokW/lZR6fMLqRzfjHLDTZM46GiXQFVSMtqCT0MIIDPzCCAqigAwIBAgIBDTAN BgkqhkiG9w0BAQUFADCB0TELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTES MBAGA1UEBxMJQ2FwZSBUb3duMRowGAYDVQQKExFUaGF3dGUgQ29uc3VsdGluZzEoMCYGA1UE CxMfQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBEaXZpc2lvbjEkMCIGA1UEAxMbVGhhd3RlIFBl cnNvbmFsIEZyZWVtYWlsIENBMSswKQYJKoZIhvcNAQkBFhxwZXJzb25hbC1mcmVlbWFpbEB0 aGF3dGUuY29tMB4XDTAzMDcxNzAwMDAwMFoXDTEzMDcxNjIzNTk1OVowYjELMAkGA1UEBhMC WkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMTI1Ro YXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW5nIENBMIGfMA0GCSqGSIb3DQEBAQUAA4GN ADCBiQKBgQDEpjxVc1X7TrnKmVoeaMB1BHCd3+n/ox7svc31W/Iadr1/DDph8r9RzgHU5VAK MNcCY1osiRVwjt3J8CuFWqo/cVbLrzwLB+fxH5E2JCoTzyvV84J3PQO+K/67GD4Hv0CAAmTX p6a7n2XRxSpUhQ9IBH+nttE8YQRAHmQZcmC3+wIDAQABo4GUMIGRMBIGA1UdEwEB/wQIMAYB Af8CAQAwQwYDVR0fBDwwOjA4oDagNIYyaHR0cDovL2NybC50aGF3dGUuY29tL1RoYXd0ZVBl cnNvbmFsRnJlZW1haWxDQS5jcmwwCwYDVR0PBAQDAgEGMCkGA1UdEQQiMCCkHjAcMRowGAYD VQQDExFQcml2YXRlTGFiZWwyLTEzODANBgkqhkiG9w0BAQUFAAOBgQBIjNFQg+oLLswNo2as Zw9/r6y+whehQ5aUnX9MIbj4Nh+qLZ82L8D0HFAgk3A8/a3hYWLD2ToZfoSxmRsAxRoLgnSe JVCUYsfbJ3FXJY3dqZw5jowgT2Vfldr394fWxghOrvbqNOUQGls1TXfjViF4gtwhGTXeJLHT HUb/XV9lTzGCAlEwggJNAgEBMHYwYjELMAkGA1UEBhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBD b25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMTI1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFp bCBJc3N1aW5nIENBAhANgdPBm3KRBJeg2v5KTobfMAkGBSsOAwIaBQCggbEwGAYJKoZIhvcN AQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMDcxMDE2MDgyNjQzWjAjBgkqhkiG 9w0BCQQxFgQUxjoh5G1hJRZ++OkRZDG9nn7VmEcwUgYJKoZIhvcNAQkPMUUwQzAKBggqhkiG 9w0DBzAOBggqhkiG9w0DAgICAIAwDQYIKoZIhvcNAwICAUAwBwYFKw4DAgcwDQYIKoZIhvcN AwICASgwDQYJKoZIhvcNAQEBBQAEggEAdqk6a7dr834JF8h/CcZbU+7r4P6FBOCaClFnZl/v LnKNvCyFAqIwfANBxI3CA3ioNVwNbCSuCBHgsXkF3ScBBOI/crB8wbpEQ5ANEbpJnZNbTGrS etyMdLFPhZlLiCGXmDkGWeYzRFHjVbS7h2OcaMyd3+GmTWnTQey8sFLfgM77U+xZ9TQ1yFOZ L7wxplMb1s+B82PyM9RRGaLhtBXKctbPk9swoHQgcu7oAdsrwLAczWSt0A4ISP/V4VJPnHS9 Hh20QpZACYQulLKS/4G2cx4P/t8gEKbRXUuHSSjIKmgxRHc5LULa78A/GSDe0WdQ5Ch7K38B dM1UJodoPWGnfQAAAAAAAA== --------------ms090401080000060904060000-- From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 11:51:32 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3D63816A417 for ; Tue, 16 Oct 2007 11:51:32 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: from mu-out-0910.google.com (mu-out-0910.google.com [209.85.134.191]) by mx1.freebsd.org (Postfix) with ESMTP id CD40213C468 for ; Tue, 16 Oct 2007 11:51:31 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: by mu-out-0910.google.com with SMTP id w9so1897985mue for ; Tue, 16 Oct 2007 04:51:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:mime-version:to:message-id:content-type:from:subject:date:x-mailer:sender; bh=miXy3XfGQEBwKoNxTDEFZkzdtxDnYrGuO7TzuKVNw0w=; b=kwzCeuFLdRN1Z1D7o8OOJ6Mrac+2OoMadu08GtgMxCoWKdoM7PETbdC9vEXFpz8rlEVavDZFN4hELNrDAG7dFGhMAUESefi/eg5Ge/ZhxbGpRZBn5qNef2mSElAkcFloLq4cL///sPitCX670/SQWJ+neUiWhXbnMuCH00z8yQs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:mime-version:to:message-id:content-type:from:subject:date:x-mailer:sender; b=gVz3vVjVjPvCZ0rMFbkrPz0xL05dkayWqLitMAGQ9TeesMQWNGI3vu8OM6Gtw8MhYQ9J2MxY4dbIkBvfbercnJwvGOOpMqysd9jr5gnD4+5tkluERPl3dZeF5myvRyVXUfKkX+IXmGax4uBxoz821wDPifw5Tkgp7IFrD7OdJGY= Received: by 10.86.74.15 with SMTP id w15mr5817814fga.1192533984541; Tue, 16 Oct 2007 04:26:24 -0700 (PDT) Received: from ?172.17.9.157? ( [193.136.24.205]) by mx.google.com with ESMTPS id f19sm10037408fka.2007.10.16.04.26.22 (version=SSLv3 cipher=OTHER); Tue, 16 Oct 2007 04:26:23 -0700 (PDT) Mime-Version: 1.0 (Apple Message framework v752.3) To: Nate Lawson , freebsd-net@freebsd.org Message-Id: <9F253322-5944-4491-B621-11B4CFAC402A@fnop.net> Content-Type: multipart/mixed; boundary=Apple-Mail-4--521585451 From: Rui Paulo Date: Tue, 16 Oct 2007 12:26:19 +0100 X-Mailer: Apple Mail (2.752.3) Sender: Rui Paulo Cc: Subject: Killing IPTOS_CE and IPTOS_ECT X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 11:51:32 -0000 --Apple-Mail-4--521585451 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Hi, I would like to commit the attached patch. Luigi has said in the past that he's okay with it. Any objections from the community? Nate, are you okay with it? Thanks in advance. Regards. -- Rui Paulo --Apple-Mail-4--521585451 Content-Transfer-Encoding: 7bit Content-Type: application/octet-stream; x-unix-mode=0644; name=kill-iptosecn.diff Content-Disposition: attachment; filename=kill-iptosecn.diff Index: sys/netinet/ip.h =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip.h,v retrieving revision 1.31 diff -u -p -r1.31 ip.h --- sys/netinet/ip.h 11 May 2007 11:00:48 -0000 1.31 +++ sys/netinet/ip.h 18 Aug 2007 00:36:04 -0000 @@ -82,11 +82,6 @@ CTASSERT(sizeof (struct ip) == 20); #define IPTOS_THROUGHPUT 0x08 #define IPTOS_RELIABILITY 0x04 #define IPTOS_MINCOST 0x02 -#if 1 -/* ECN RFC3168 obsoletes RFC2481, and these will be deprecated soon. */ -#define IPTOS_CE 0x01 -#define IPTOS_ECT 0x02 -#endif /* * Definitions for IP precedence (also in ip_tos) (hopefully unused). Index: sbin/ipfw/ipfw2.c =================================================================== RCS file: /home/ncvs/src/sbin/ipfw/ipfw2.c,v retrieving revision 1.108 diff -u -p -r1.108 ipfw2.c --- sbin/ipfw/ipfw2.c 23 Sep 2007 16:29:22 -0000 1.108 +++ sbin/ipfw/ipfw2.c 26 Sep 2007 10:51:01 -0000 @@ -179,8 +179,8 @@ static struct _s_x f_iptos[] = { { "throughput", IPTOS_THROUGHPUT}, { "reliability", IPTOS_RELIABILITY}, { "mincost", IPTOS_MINCOST}, - { "congestion", IPTOS_CE}, - { "ecntransport", IPTOS_ECT}, + { "congestion", IPTOS_ECN_CE}, + { "ecntransport", IPTOS_ECN_ECT0}, { "ip tos option", 0}, { NULL, 0 } }; --Apple-Mail-4--521585451-- From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 16:41:46 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 145CE16A468 for ; Tue, 16 Oct 2007 16:41:46 +0000 (UTC) (envelope-from dan@dan.emsphone.com) Received: from dan.emsphone.com (dan.emsphone.com [199.67.51.101]) by mx1.freebsd.org (Postfix) with ESMTP id 7B2EE13C467 for ; Tue, 16 Oct 2007 16:41:45 +0000 (UTC) (envelope-from dan@dan.emsphone.com) Received: (from dan@localhost) by dan.emsphone.com (8.14.1/8.14.1) id l9GGVNeF076570; Tue, 16 Oct 2007 11:31:23 -0500 (CDT) (envelope-from dan) Date: Tue, 16 Oct 2007 11:31:23 -0500 From: Dan Nelson To: Kris Kennaway Message-ID: <20071016163123.GA22599@dan.emsphone.com> References: <20070912172752.GA13960@dan.emsphone.com> <200710101615.48760.jhb@freebsd.org> <20071012143800.GA76105@dan.emsphone.com> <470F9211.8010604@FreeBSD.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="fUYQa+Pmc3FrFX/N" Content-Disposition: inline In-Reply-To: <470F9211.8010604@FreeBSD.org> X-OS: FreeBSD 7.0-PRERELEASE User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org, Ivan Voras Subject: Re: Panic in arpresolve->rt_check? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 16:41:46 -0000 --fUYQa+Pmc3FrFX/N Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In the last episode (Oct 12), Kris Kennaway said: > Dan Nelson wrote: >> In the last episode (Oct 10), John Baldwin said: >>> On Wednesday 12 September 2007 02:50:37 pm Ivan Voras wrote: >>>> Dan Nelson wrote: >>>>> The same panic was also reported for 6.2 via PR 107865 and PR >>>>> 112490. 112490 included a workaround patch (I haven't tried it; >>>>> just found it). >>>> >>>> The proposed patch in kern/112490 looks trivial but someone who >>>> knows more about net locking should check it out. Unfortunately it >>>> lacks context and I don't know the code in question to apply it >>>> safely on a production machine :( >>> >>> I also get panics with what appears to be a double free of >>> rt_gwroute in rtexpunge(), so I think while this PR may help some >>> with figuring out the problem, I'm not sure it solves the root bug. >>> >>> Hmm, possibly try this patch: >> >> This makes the panics more frequent on my machine, actually :) > > Since you can reproduce this frequently the best thing might be to > instrument all the route handling with KTR so that you can do > post-mortem and try to figure out where the double-free or missing > reference happened. I've added some KTR debugging (why are the macros named CTR* instead of KTR* ? ) and I think I've got the problem nailed down, but I don't know anything about networking so I don't know what the solution is. I've attached a KTR dump and the debugging patches I made (done to preserve line numbering at the expense of style). It looks like two threads are entering rt_check at the same time. In the ktrdump, lrt0 is 0xc674d000 and lrt0->rt_gwroute is 0xc674ae88 for both threads. The thread on CPU1 locks lrt0 at line :1287 (ktr index 641), then locks lrt0->rt_gwroute at :1303 (k642). It frees lrt0->rt_gwroute at :1305 (k643), then unlocks lrt0 at :1308 (k651) before calling rtalloc1(). Meanwhile, the thread on CPU0 has entered the rt_check function and is spinning on the lrt0 lock at line :1287 (k649). When CPU1 unlocks ltr0 (k651 above), lrt0->rt_gwroute is still pointing to the freed rtentry. CPU0 then attempts to lock the now-freed lrt0->rt_gwroute and crashes. So, the problem is that ltr0->rt_gwroute is being left in an inconsistent state while ltr0 is unlocked. What's the solution? Zero out rt_gwroute before unlocking lrt0, then do some extra checks after re-locking to handle the case where another thread has called rtalloc1 before us, or something else? Or is there some other locking problem higher up that's allowing rt_check to be called in parellel on the same rtentry in the first place? -- Dan Nelson dnelson@allantgroup.com --fUYQa+Pmc3FrFX/N Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ktrdump.150" index cpu timestamp file and line trace ------ --- ---------------- ---------------------------------------- ----- 658 1 55794610845896 net/route.c:1316 0xcd38caa0 lock 0xc674d000 in rt_check 657 1 55794610828094 net/route.c:175 0xcd38caa0 lock 0xc7a49168 in rtalloc1 656 1 55794610826764 net/route.c:911 0xcd38caa0 unlock 0xc7a49168 in rtrequest1 655 1 55794610826184 net/route.c:909 0xcd38caa0 addref 0xc7a49168 1->2 in rtrequest1 654 1 55794610824041 netinet/if_ether.c:224 0xcd38caa0 addref 0xc7a49168 0->1 in arp_rtrequest 653 1 55794610811998 net/route.c:788 0xcd38caa0 lock 0xc7a49168 in rtrequest1 652 0 55794610803227 net/route.c:1303 0xcb107000 lock 0xc674ae88 in rt_check 651 1 55794610799304 net/route.c:1308 0xcd38caa0 unlock 0xc674d000 in rt_check 650 1 55794610797886 net/route.c:302 0xcd38caa0rt_check 0xc674d000 646 0 55794610791936 netinet/if_ether.c:365 0xcb107000>arpresolve 0xc674d000 645 1 55794610786793 net/route.c:245 0xcd38caa0 remref 0xc674ae88 1->0 in rtfree 644 1 55794610786128 net/route.c:238 0xcd38caa0>rtfree 0xc674ae88 643 1 55794610783781 net/route.c:1305 0xcd38caa0 free 0xc674ae88 642 1 55794610782649 net/route.c:1303 0xcd38caa0 lock 0xc674ae88 in rt_check 641 1 55794610780584 net/route.c:1287 0xcd38caa0 lock 0xc674d000 in rt_check 640 1 55794610779823 net/route.c:1285 0xcd38caa0>rt_check 0xc674d000 639 1 55794610777390 netinet/if_ether.c:365 0xcd38caa0>arpresolve 0xc674d000 638 0 55794610752772 net/route.c:119 0xcb107000 unlock 0xc674d000 in rtalloc_ign 637 0 55794610751654 net/route.c:198 0xcb107000 addref 0xc674d000 1->2 in rtalloc1 636 0 55794610750193 net/route.c:197 0xcb107000 lock 0xc674d000 in rtalloc1 635 1 55794610736882 net/route.c:119 0xcd38caa0 unlock 0xc674d000 in rtalloc_ign 634 1 55794610735429 net/route.c:198 0xcd38caa0 addref 0xc674d000 0->1 in rtalloc1 633 1 55794610733358 net/route.c:197 0xcd38caa0 lock 0xc674d000 in rtalloc1 --fUYQa+Pmc3FrFX/N Content-Type: text/x-diff; charset=us-ascii Content-Disposition: attachment; filename="ktr.diff" Index: net/route.c =================================================================== RCS file: /home/ncvs/src/sys/net/route.c,v retrieving revision 1.120 diff -u -r1.120 route.c --- net/route.c 11 Jun 2007 12:19:34 -0000 1.120 +++ net/route.c 16 Oct 2007 03:01:18 -0000 @@ -40,7 +40,7 @@ #include #include #include - +#include #include #include @@ -235,7 +235,7 @@ KASSERT(rt != NULL,("%s: NULL rt", __func__)); rnh = rt_tables[rt_key(rt)->sa_family]; KASSERT(rnh != NULL,("%s: NULL rnh", __func__)); - + CTR2(KTR_NET, "%p>rtfree %p",curthread, rt); RT_LOCK_ASSERT(rt); /* @@ -299,13 +299,13 @@ */ RT_LOCK_DESTROY(rt); uma_zfree(rtzone, rt); - return; + CTR2(KTR_NET, "%prt_check %p", curthread, rt); /* NB: the locking here is tortuous... */ RT_LOCK(rt); if ((rt->rt_flags & RTF_UP) == 0) { RT_UNLOCK(rt); - rt = rtalloc1(dst, 1, 0UL); + CTR2(KTR_NET, "%p discard %p in rt_check", curthread, rt); rt = rtalloc1(dst, 1, 0UL); if (rt != NULL) { RT_REMREF(rt); /* XXX what about if change? */ - } else - return (EHOSTUNREACH); + } else { + CTR1(KTR_NET, "%psa_family != AF_NS */ + } /* XXX BSD/OS checks dst->sa_family != AF_NS */ if (rt->rt_flags & RTF_GATEWAY) { if (rt->rt_gwroute == NULL) goto lookup; rt = rt->rt_gwroute; RT_LOCK(rt); /* NB: gwroute */ if ((rt->rt_flags & RTF_UP) == 0) { - RTFREE_LOCKED(rt); /* unlock gwroute */ + CTR2(KTR_NET, "%p free %p", curthread, rt); RTFREE_LOCKED(rt); /* unlock gwroute */ rt = rt0; lookup: RT_UNLOCK(rt0); @@ -1311,13 +1311,13 @@ rt0->rt_gwroute = NULL; RT_REMREF(rt0); RT_UNLOCK(rt0); - return (ENETUNREACH); + CTR1(KTR_NET, "%prt_gwroute = rt; if (rt == NULL) { RT_UNLOCK(rt0); - return (EHOSTUNREACH); + CTR1(KTR_NET, "%prt_rmx.rmx_expire); if (error) { RT_UNLOCK(rt); - return (rt == rt0 ? EHOSTDOWN : EHOSTUNREACH); + CTR1(KTR_NET, "%prt_mtx, "rtentry", NULL, MTX_DEF | MTX_DUPOK) -#define RT_LOCK(_rt) mtx_lock(&(_rt)->rt_mtx) -#define RT_UNLOCK(_rt) mtx_unlock(&(_rt)->rt_mtx) -#define RT_LOCK_DESTROY(_rt) mtx_destroy(&(_rt)->rt_mtx) +#define RT_LOCK(_rt) do { CTR3(KTR_NET,"%p lock %p in %s", curthread,_rt,__func__); mtx_lock(&(_rt)->rt_mtx); } while(0) +#define RT_UNLOCK(_rt) do { CTR3(KTR_NET,"%p unlock %p in %s", curthread,_rt,__func__); mtx_unlock(&(_rt)->rt_mtx); } while(0) +#define RT_LOCK_DESTROY(_rt) do { CTR3(KTR_NET,"%p destroy %p in %s", curthread,_rt,__func__); mtx_destroy(&(_rt)->rt_mtx); } while(0) #define RT_LOCK_ASSERT(_rt) mtx_assert(&(_rt)->rt_mtx, MA_OWNED) #define RT_ADDREF(_rt) do { \ RT_LOCK_ASSERT(_rt); \ KASSERT((_rt)->rt_refcnt >= 0, \ ("negative refcnt %ld", (_rt)->rt_refcnt)); \ + CTR5(KTR_NET,"%p addref %p %d->%d in %s", curthread, _rt, \ + (_rt)->rt_refcnt, (_rt)->rt_refcnt+1, \ + __func__); \ (_rt)->rt_refcnt++; \ } while (0) #define RT_REMREF(_rt) do { \ RT_LOCK_ASSERT(_rt); \ KASSERT((_rt)->rt_refcnt > 0, \ ("bogus refcnt %ld", (_rt)->rt_refcnt)); \ + CTR5(KTR_NET,"%p remref %p %d->%d in %s", curthread, _rt, \ + (_rt)->rt_refcnt, (_rt)->rt_refcnt-1, \ + __func__); \ (_rt)->rt_refcnt--; \ } while (0) Index: netinet/if_ether.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/if_ether.c,v retrieving revision 1.162 diff -u -r1.162 if_ether.c --- netinet/if_ether.c 7 Oct 2007 20:44:22 -0000 1.162 +++ netinet/if_ether.c 15 Oct 2007 21:02:46 -0000 @@ -362,20 +362,20 @@ struct sockaddr_dl *sdl; int error; - if (m->m_flags & M_BCAST) { /* broadcast */ + CTR2(KTR_NET,"%p>arpresolve %p", curthread,rt0); if (m->m_flags & M_BCAST) { /* broadcast */ (void)memcpy(desten, ifp->if_broadcastaddr, ifp->if_addrlen); - return (0); + CTR1(KTR_NET,"%pm_flags & M_MCAST && ifp->if_type != IFT_ARCNET) {/* multicast */ ETHER_MAP_IP_MULTICAST(&SIN(dst)->sin_addr, desten); - return (0); + CTR1(KTR_NET,"%prt_llinfo; if (la == NULL) @@ -392,7 +392,7 @@ "arpresolve: can't allocate route for %s\n", inet_ntoa(SIN(dst)->sin_addr)); m_freem(m); - return (EINVAL); /* XXX */ + CTR1(KTR_NET,"%prt_llinfo; if (la == NULL) { @@ -401,7 +401,7 @@ "arpresolve: can't allocate llinfo for %s\n", inet_ntoa(SIN(dst)->sin_addr)); m_freem(m); - return (EINVAL); /* XXX */ + CTR1(KTR_NET,"%prt_gateway); @@ -427,11 +427,11 @@ RT_UNLOCK(rt); arprequest(ifp, &sin, &SIN(dst)->sin_addr, IF_LLADDR(ifp)); - return (0); + CTR1(KTR_NET,"%pif_flags & (IFF_NOARP | IFF_STATICARP)) { RT_UNLOCK(rt); m_freem(m); - return (EINVAL); + CTR1(KTR_NET,"%p Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A32E516A420; Tue, 16 Oct 2007 19:06:34 +0000 (UTC) (envelope-from dan@dan.emsphone.com) Received: from dan.emsphone.com (dan.emsphone.com [199.67.51.101]) by mx1.freebsd.org (Postfix) with ESMTP id 6486213C45B; Tue, 16 Oct 2007 19:06:34 +0000 (UTC) (envelope-from dan@dan.emsphone.com) Received: (from dan@localhost) by dan.emsphone.com (8.14.1/8.14.1) id l9GJ6XhG087586; Tue, 16 Oct 2007 14:06:33 -0500 (CDT) (envelope-from dan) Date: Tue, 16 Oct 2007 14:06:33 -0500 From: Dan Nelson To: Kris Kennaway Message-ID: <20071016190633.GA77224@dan.emsphone.com> References: <20070912172752.GA13960@dan.emsphone.com> <200710101615.48760.jhb@freebsd.org> <20071012143800.GA76105@dan.emsphone.com> <470F9211.8010604@FreeBSD.org> <20071016163123.GA22599@dan.emsphone.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071016163123.GA22599@dan.emsphone.com> X-OS: FreeBSD 7.0-PRERELEASE User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org, Ivan Voras Subject: Re: Panic in arpresolve->rt_check? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 19:06:34 -0000 In the last episode (Oct 16), Dan Nelson said: > In the last episode (Oct 12), Kris Kennaway said: > > Dan Nelson wrote: > >> In the last episode (Oct 10), John Baldwin said: > >>> On Wednesday 12 September 2007 02:50:37 pm Ivan Voras wrote: > >>>> Dan Nelson wrote: > >>>>> The same panic was also reported for 6.2 via PR 107865 and PR > >>>>> 112490. 112490 included a workaround patch (I haven't tried it; > >>>>> just found it). > >>>> > >>>> The proposed patch in kern/112490 looks trivial but someone who > >>>> knows more about net locking should check it out. Unfortunately it > >>>> lacks context and I don't know the code in question to apply it > >>>> safely on a production machine :( > >>> > >>> I also get panics with what appears to be a double free of > >>> rt_gwroute in rtexpunge(), so I think while this PR may help some > >>> with figuring out the problem, I'm not sure it solves the root bug. > >>> > >>> Hmm, possibly try this patch: > >> > >> This makes the panics more frequent on my machine, actually :) > > > > Since you can reproduce this frequently the best thing might be to > > instrument all the route handling with KTR so that you can do > > post-mortem and try to figure out where the double-free or missing > > reference happened. > > I've added some KTR debugging (why are the macros named CTR* instead of > KTR* ? ) and I think I've got the problem nailed down, but I don't know > anything about networking so I don't know what the solution is. .. and then I notice that yesterday John updated PR 112490 with a patch that looks like it'll fix the problem, just to make me look silly today :) -- Dan Nelson dnelson@allantgroup.com From owner-freebsd-net@FreeBSD.ORG Tue Oct 16 19:36:51 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1FCE916A417 for ; Tue, 16 Oct 2007 19:36:51 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id 45AA113C458 for ; Tue, 16 Oct 2007 19:36:47 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 0D99B1CC58; Wed, 17 Oct 2007 08:36:45 +1300 (NZDT) Date: Wed, 17 Oct 2007 08:36:45 +1300 From: Andrew Thompson To: FreeBSD-net Message-ID: <20071016193645.GB41359@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="FL5UXtIhxfXey3p5" Content-Disposition: inline User-Agent: Mutt/1.5.13 (2006-08-11) Cc: Bruce M Simpson Subject: bridging vlan problem X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2007 19:36:51 -0000 --FL5UXtIhxfXey3p5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi, This problem has always existed but now in RELENG_7+ since the vlan tag is always stripped on the incoming packet its a little more obvious. The bridging output function puts the mbuf directly on the interfaces send queue so only network cards with VLAN_HWTAGGING will properly re-tag any outgoing vlan frames. The attached patch fixes this as well as putting the common vlan encapsulation code in to ether_vlanencap(). Any comments please, I want to commit this soon so I have more chance of getting it into 7.0 Andrew --FL5UXtIhxfXey3p5 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ether_vlanencap.diff" Index: ethernet.h =================================================================== RCS file: /home/ncvs/src/sys/net/ethernet.h,v retrieving revision 1.32 diff -u -p -r1.32 ethernet.h --- ethernet.h 29 May 2007 12:40:45 -0000 1.32 +++ ethernet.h 16 Oct 2007 01:18:28 -0000 @@ -386,6 +386,7 @@ extern int ether_output_frame(struct if extern char *ether_sprintf(const u_int8_t *); void ether_vlan_mtap(struct bpf_if *, struct mbuf *, void *, u_int); +struct mbuf * ether_vlanencap(struct mbuf *, int); #else /* _KERNEL */ Index: if_bridge.c =================================================================== RCS file: /home/ncvs/src/sys/net/if_bridge.c,v retrieving revision 1.103 diff -u -p -r1.103 if_bridge.c --- if_bridge.c 16 Sep 2007 21:09:15 -0000 1.103 +++ if_bridge.c 16 Oct 2007 04:03:43 -0000 @@ -1653,7 +1653,23 @@ bridge_enqueue(struct bridge_softc *sc, for (; m; m = m0) { m0 = m->m_nextpkt; m->m_nextpkt = NULL; - + + /* + * If underlying interface can not do VLAN tag insertion itself + * then attach a packet tag that holds it. + */ + if ((m->m_flags & M_VLANTAG) && + (dst_ifp->if_capenable & IFCAP_VLAN_HWTAGGING) == 0) { + m = ether_vlanencap(m, m->m_pkthdr.ether_vtag); + if (m == NULL) { + if_printf(dst_ifp, + "unable to prepend VLAN header\n"); + dst_ifp->if_oerrors++; + continue; + } + m->m_flags &= ~M_VLANTAG; + } + if (err == 0) IFQ_ENQUEUE(&dst_ifp->if_snd, m, err); } Index: if_ethersubr.c =================================================================== RCS file: /home/ncvs/src/sys/net/if_ethersubr.c,v retrieving revision 1.236 diff -u -p -r1.236 if_ethersubr.c --- if_ethersubr.c 14 Sep 2007 06:57:28 -0000 1.236 +++ if_ethersubr.c 16 Oct 2007 04:03:58 -0000 @@ -1249,5 +1249,33 @@ ether_vlan_mtap(struct bpf_if *bp, struc m->m_data -= sizeof(struct ether_header); } +struct mbuf * +ether_vlanencap(struct mbuf *m, int tag) +{ + struct ether_vlan_header *evl; + + M_PREPEND(m, ETHER_VLAN_ENCAP_LEN, M_DONTWAIT); + if (m == NULL) + return (NULL); + /* M_PREPEND takes care of m_len, m_pkthdr.len for us */ + + if (m->m_len < sizeof(*evl)) { + m = m_pullup(m, sizeof(*evl)); + if (m == NULL) + return (NULL); + } + + /* + * Transform the Ethernet header into an Ethernet header + * with 802.1Q encapsulation. + */ + evl = mtod(m, struct ether_vlan_header *); + bcopy((char *)evl + ETHER_VLAN_ENCAP_LEN, + (char *)evl, ETHER_HDR_LEN - ETHER_TYPE_LEN); + evl->evl_encap_proto = htons(ETHERTYPE_VLAN); + evl->evl_tag = htons(tag); + return (m); +} + DECLARE_MODULE(ether, ether_mod, SI_SUB_INIT_IF, SI_ORDER_ANY); MODULE_VERSION(ether, 1); Index: if_vlan.c =================================================================== RCS file: /home/ncvs/src/sys/net/if_vlan.c,v retrieving revision 1.124 diff -u -p -r1.124 if_vlan.c --- if_vlan.c 19 Mar 2007 18:01:39 -0000 1.124 +++ if_vlan.c 16 Oct 2007 04:03:50 -0000 @@ -850,40 +850,13 @@ vlan_start(struct ifnet *ifp) m->m_pkthdr.ether_vtag = ifv->ifv_tag; m->m_flags |= M_VLANTAG; } else { - struct ether_vlan_header *evl; - - M_PREPEND(m, ifv->ifv_encaplen, M_DONTWAIT); + m = ether_vlanencap(m, ifv->ifv_tag); if (m == NULL) { if_printf(ifp, "unable to prepend VLAN header\n"); ifp->if_oerrors++; continue; } - /* M_PREPEND takes care of m_len, m_pkthdr.len for us */ - - if (m->m_len < sizeof(*evl)) { - m = m_pullup(m, sizeof(*evl)); - if (m == NULL) { - if_printf(ifp, - "cannot pullup VLAN header\n"); - ifp->if_oerrors++; - continue; - } - } - - /* - * Transform the Ethernet header into an Ethernet header - * with 802.1Q encapsulation. - */ - evl = mtod(m, struct ether_vlan_header *); - bcopy((char *)evl + ifv->ifv_encaplen, - (char *)evl, ETHER_HDR_LEN - ETHER_TYPE_LEN); - evl->evl_encap_proto = htons(ifv->ifv_proto); - evl->evl_tag = htons(ifv->ifv_tag); -#ifdef DEBUG - printf("%s: %*D\n", __func__, (int)sizeof(*evl), - (unsigned char *)evl, ":"); -#endif } /* --FL5UXtIhxfXey3p5-- From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 04:19:23 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6119D16A418 for ; Thu, 18 Oct 2007 04:19:23 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.233]) by mx1.freebsd.org (Postfix) with ESMTP id 19F1413C447 for ; Thu, 18 Oct 2007 04:19:22 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: by wx-out-0506.google.com with SMTP id h29so35050wxd for ; Wed, 17 Oct 2007 21:19:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=6pfy2kjVKDcDPFruszB/qolNRyC83aO+F/uhUhmIJtw=; b=BXzAx2ztSKZKbnIBT1K0dQ4VmWF9qkYViOYagT+pxngVCCQW0twCFMzidp6Y0CGUeA8lNSevHOxmNwnFoCntb+xKoIAZeBg8N1oecpEIxedeCOS6jAs34qki3zaWCNt8OLZ4BUz8/RO83RLdhTgdGVAcnVreiCqk0gYzNj/s5tM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=WDLpp0lYmhBWG9lItwc9XBFru52SkjvbU+q3I33SWDcpGIzK1hIiCO5XTk/enSs5NwnZjKE6T4oNCxg6BoFldwq7c/VY2VkgEveGGEykGiwByiEH0oJnnnHJaW0Y57lKvZ1Ex3x1qydao4jw7YeFToqzb320OLuRf14e8j6a2SM= Received: by 10.70.14.17 with SMTP id 17mr129517wxn.1192679494788; Wed, 17 Oct 2007 20:51:34 -0700 (PDT) Received: by 10.70.19.9 with HTTP; Wed, 17 Oct 2007 20:51:34 -0700 (PDT) Message-ID: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> Date: Wed, 17 Oct 2007 20:51:34 -0700 From: "Len Gross" To: freebsd-net@freebsd.org. MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 04:19:23 -0000 I'm doing some protocol development and it is convenient to start it on Ethernet. I will need to send a packet to the Ethernet device and only have it be sent once, even if there is a colision. (Higher levels in the protocol will detect the failure.) I've searched quite a bit, and haven't found any place that talks about this. Are there any hardware cards, or drivers, that let me turn off the backoff/retry behavior? -- Len From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 08:20:57 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3160716A41A for ; Thu, 18 Oct 2007 08:20:57 +0000 (UTC) (envelope-from jmg@hydrogen.funkthat.com) Received: from hydrogen.funkthat.com (gate.funkthat.com [69.17.45.168]) by mx1.freebsd.org (Postfix) with ESMTP id 0445213C467 for ; Thu, 18 Oct 2007 08:20:56 +0000 (UTC) (envelope-from jmg@hydrogen.funkthat.com) Received: from hydrogen.funkthat.com (rawg0uhdjo336hx6@localhost.funkthat.com [127.0.0.1]) by hydrogen.funkthat.com (8.13.6/8.13.3) with ESMTP id l9I8Kuem036247; Thu, 18 Oct 2007 01:20:56 -0700 (PDT) (envelope-from jmg@hydrogen.funkthat.com) Received: (from jmg@localhost) by hydrogen.funkthat.com (8.13.6/8.13.3/Submit) id l9I8KuNN036246; Thu, 18 Oct 2007 01:20:56 -0700 (PDT) (envelope-from jmg) Date: Thu, 18 Oct 2007 01:20:56 -0700 From: John-Mark Gurney To: Len Gross Message-ID: <20071018082056.GW39759@funkthat.com> Mail-Followup-To: Len Gross , freebsd-net@freebsd.org References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> User-Agent: Mutt/1.4.2.1i X-Operating-System: FreeBSD 5.4-RELEASE-p6 i386 X-Files: The truth is out there X-URL: http://resnet.uoregon.edu/~gurney_j/ X-Resume: http://resnet.uoregon.edu/~gurney_j/resume.html X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (hydrogen.funkthat.com [127.0.0.1]); Thu, 18 Oct 2007 01:20:56 -0700 (PDT) Cc: freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: John-Mark Gurney List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 08:20:57 -0000 Len Gross wrote this message on Wed, Oct 17, 2007 at 20:51 -0700: > I'm doing some protocol development and it is convenient to start it on > Ethernet. I will need to send a packet to the Ethernet device and only have > it be sent once, even if there is a colision. (Higher levels in the > protocol will detect the failure.) I've searched quite a bit, and haven't > found any place that talks about this. Are there any hardware cards, or > drivers, that let me turn off the backoff/retry behavior? Are you even using hardware that does collisions? Collisions pretty much went out w/ 10Mbit ethernet... Not completely as there are older 10/100mbit "switches" that only switched between the two segments (and each of 10/100 segments was hubbed)... All modern switches are full-duplex and don't suffer from the old CD part of CDMA that was part of the original ethernet specification.. For Gige, you can't even do half-duplex, as each side is transmitting on all four pairs at the same time... The physical layer handles the fact that both sides may transmit at the same time, and knows how to cancel their own interference out so they can hear the other side... -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 09:02:34 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BFA2F16A417 for ; Thu, 18 Oct 2007 09:02:34 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id 7B54A13C468 for ; Thu, 18 Oct 2007 09:02:34 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id F3C79A1776 for ; Thu, 18 Oct 2007 10:34:00 +0200 (CEST) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 48373A15A7 for ; Thu, 18 Oct 2007 10:33:59 +0200 (CEST) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Thu, 18 Oct 2007 10:33:59 +0200 (CEST) Message-ID: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> Date: Thu, 18 Oct 2007 10:33:59 +0200 (CEST) From: "Klavs Klavsen" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 09:02:34 -0000 Hi guys, I have had a FreeBSD 6.2 (-p1 - yes I know :) firewall running for a while, with pf fw rules. It has worked fine, and was a replacement for a fbsd 4.x ipfw firewall. Now I just replaced the 6.2 pf firewall, with a 6.2 (-p7) and carp interfaces enabled. It's using the same cables and the same type of network cards (bge and em). The new one, is a HP dl385 (amd) where the old one, was a HP dl380 (Intel). On the new one, fping (and ping -f) pinging through the firewall, gives me a packet loss. fping in nagios, reports up to 55% packet loss :( - a ping -f gives me 1-3%, but bad enough :( pinging from the firewall itself, to one of the hosts, that packets are lost to (when pinging from other networks) does not give any packet loss. The old 6.2, had polling enabled - and I've tried to disable polling on the new, but to no effect. Any ideas what else to try? -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 09:02:34 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C428D16A418 for ; Thu, 18 Oct 2007 09:02:34 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id 7F52113C469 for ; Thu, 18 Oct 2007 09:02:34 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 160C8A177B for ; Thu, 18 Oct 2007 10:36:30 +0200 (CEST) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 03B36A16E6 for ; Thu, 18 Oct 2007 10:36:27 +0200 (CEST) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Thu, 18 Oct 2007 10:36:27 +0200 (CEST) Message-ID: <2419.62.242.232.132.1192696587.squirrel@www.enableit.dk> Date: Thu, 18 Oct 2007 10:36:27 +0200 (CEST) From: "Klavs Klavsen" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 09:02:34 -0000 Hi guys, I have had a FreeBSD 6.2 (-p1 - yes I know :) firewall running for a while, with pf fw rules. It has worked fine, and was a replacement for a fbsd 4.x ipfw firewall. Now I just replaced the 6.2 pf firewall, with a 6.2 (-p7) and carp interfaces enabled. It's using the same cables and the same type of network cards (bge and em). The new one, is a HP dl385 (amd) where the old one, was a HP dl380 (Intel). On the new one, fping (and ping -f) pinging through the firewall, gives me a packet loss. fping in nagios, reports up to 55% packet loss :( - a ping -f gives me 1-3%, but bad enough :( pinging from the firewall itself, to one of the hosts, that packets are lost to (when pinging from other networks) does not give any packet loss. The old 6.2, had polling enabled - and I've tried to disable polling on the new, but to no effect. Any ideas what else to try? -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 10:32:44 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7FE3F16A583 for ; Thu, 18 Oct 2007 10:32:44 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id 0C39913C465 for ; Thu, 18 Oct 2007 10:32:43 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id B9676A1A3F for ; Thu, 18 Oct 2007 12:32:42 +0200 (CEST) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 7F9E0A1A3D for ; Thu, 18 Oct 2007 12:32:40 +0200 (CEST) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Thu, 18 Oct 2007 12:32:40 +0200 (CEST) Message-ID: <3981.62.242.232.132.1192703560.squirrel@www.enableit.dk> In-Reply-To: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> Date: Thu, 18 Oct 2007 12:32:40 +0200 (CEST) From: "Klavs Klavsen" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 10:32:44 -0000 I tried to just disable carp on the new machine (simply comment out carp config from /etc/rc.conf.local) and now the packet loss is gone - and hasn't been there for half an hour, so far. Seems the carp network interfaces has bugs. On Thu, October 18, 2007 10:33, Klavs Klavsen said: > Hi guys, > > I have had a FreeBSD 6.2 (-p1 - yes I know :) firewall running for a > while, with pf fw rules. It has worked fine, and was a replacement for a > fbsd 4.x ipfw firewall. > > Now I just replaced the 6.2 pf firewall, with a 6.2 (-p7) and carp > interfaces enabled. It's using the same cables and the same type of > network cards (bge and em). The new one, is a HP dl385 (amd) where the old > one, was a HP dl380 (Intel). > > On the new one, fping (and ping -f) pinging through the firewall, gives me > a packet loss. fping in nagios, reports up to 55% packet loss :( - a ping > -f gives me 1-3%, but bad enough :( > > pinging from the firewall itself, to one of the hosts, that packets are > lost to (when pinging from other networks) does not give any packet loss. > > The old 6.2, had polling enabled - and I've tried to disable polling on > the new, but to no effect. > > Any ideas what else to try? > > -- > Regards, > Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk > PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 > > "Those who do not understand Unix are condemned to reinvent it, poorly." > --Henry Spencer > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 10:50:31 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0195816A468 for ; Thu, 18 Oct 2007 10:50:31 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by mx1.freebsd.org (Postfix) with ESMTP id 8C6EC13C455 for ; Thu, 18 Oct 2007 10:50:30 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-055-120.pools.arcor-ip.net [88.66.55.120]) by mrelayeu.kundenserver.de (node=mrelayeu6) with ESMTP (Nemesis) id 0ML29c-1IiSxQ2dNI-0006sF; Thu, 18 Oct 2007 12:50:29 +0200 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Thu, 18 Oct 2007 12:50:19 +0200 User-Agent: KMail/1.9.7 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <3981.62.242.232.132.1192703560.squirrel@www.enableit.dk> In-Reply-To: <3981.62.242.232.132.1192703560.squirrel@www.enableit.dk> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1688753.eWIBPyFThY"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710181250.26291.max@love2party.net> X-Provags-ID: V01U2FsdGVkX1+QeNS1jfYFpvAFrG8wVfrIGb1vo7+A4cQU3PM r83it92uBrKziHHq1C+5KCrJiSnEAi86FYr7QRWW4na4hwdiZ5 JIbrlSP/JuDjQMffVGHTHZsAymMMn/q5Es4OLHd6/c= Cc: Klavs Klavsen Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 10:50:31 -0000 --nextPart1688753.eWIBPyFThY Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 18 October 2007, Klavs Klavsen wrote: > I tried to just disable carp on the new machine (simply comment out > carp config from /etc/rc.conf.local) and now the packet loss is gone - > and hasn't been there for half an hour, so far. I supposed you also had to change your firewall rules? Otherwise your=20 ruleset might not be ready to deal with carp and that could be the reason=20 why you get the bad results? Start debugging by looking at "netstat -ssp=20 carp" on either machine and take a careful look at your pf.conf. I also=20 suggest that you add "log" to all you block rules and watch tcpdump on=20 pflog0 while pinging. > Seems the carp network interfaces has bugs. That's a pretty bold assertion given the limited debugging you have=20 done ;) > On Thu, October 18, 2007 10:33, Klavs Klavsen said: > > Hi guys, > > > > I have had a FreeBSD 6.2 (-p1 - yes I know :) firewall running for a > > while, with pf fw rules. It has worked fine, and was a replacement > > for a fbsd 4.x ipfw firewall. > > > > Now I just replaced the 6.2 pf firewall, with a 6.2 (-p7) and carp > > interfaces enabled. It's using the same cables and the same type of > > network cards (bge and em). The new one, is a HP dl385 (amd) where > > the old one, was a HP dl380 (Intel). > > > > On the new one, fping (and ping -f) pinging through the firewall, > > gives me a packet loss. fping in nagios, reports up to 55% packet > > loss :( - a ping -f gives me 1-3%, but bad enough :( > > > > pinging from the firewall itself, to one of the hosts, that packets > > are lost to (when pinging from other networks) does not give any > > packet loss. > > > > The old 6.2, had polling enabled - and I've tried to disable polling > > on the new, but to no effect. > > > > Any ideas what else to try? > > > > -- > > Regards, > > Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk > > PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 > > > > "Those who do not understand Unix are condemned to reinvent it, > > poorly." --Henry Spencer > > > > _______________________________________________ > > freebsd-net@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-net > > To unsubscribe, send any mail to > > "freebsd-net-unsubscribe@freebsd.org" =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1688753.eWIBPyFThY Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHFzpyXyyEoT62BG0RAnynAJ9AJU2IfjatloBSRfG+XUO3HtOTMgCePXaE FMY5cI2/cbOu0rPt7/aWLMo= =hkZc -----END PGP SIGNATURE----- --nextPart1688753.eWIBPyFThY-- From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 12:11:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3DB8C16A419 for ; Thu, 18 Oct 2007 12:11:47 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from www.EnableIT.dk (r2d2.enableit.dk [195.35.83.82]) by mx1.freebsd.org (Postfix) with ESMTP id C334013C45D for ; Thu, 18 Oct 2007 12:11:46 +0000 (UTC) (envelope-from kl@vsen.dk) Received: from localhost (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id 3B77EA1C8B; Thu, 18 Oct 2007 14:11:45 +0200 (CEST) X-Virus-Scanned: amavisd-new at EnableIT.dk Received: from www.enableit.dk (localhost [127.0.0.1]) by www.EnableIT.dk (Postfix) with ESMTP id D5461A1BA6; Thu, 18 Oct 2007 14:11:42 +0200 (CEST) Received: from 62.242.232.132 (SquirrelMail authenticated user klavs) by www.enableit.dk with HTTP; Thu, 18 Oct 2007 14:11:42 +0200 (CEST) Message-ID: <1270.62.242.232.132.1192709502.squirrel@www.enableit.dk> Date: Thu, 18 Oct 2007 14:11:42 +0200 (CEST) From: "Klavs Klavsen" To: "Max Laier" User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: freebsd-net@freebsd.org, Klavs Klavsen Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 12:11:47 -0000 On Thu, October 18, 2007 12:50, Max Laier said: > On Thursday 18 October 2007, Klavs Klavsen wrote: >> I tried to just disable carp on the new machine (simply comment out >> carp config from /etc/rc.conf.local) and now the packet loss is gone - >> and hasn't been there for half an hour, so far. > > I supposed you also had to change your firewall rules? Otherwise your > ruleset might not be ready to deal with carp and that could be the reason > why you get the bad results? I added these rules: # Allow pfsync Updates In/Out pass quick on $if_mgmt proto pfsync keep state # Allow CARP Advertisements In/Out pass quick on {$if_mgmt, $if_fwnet, $if_inet} proto carp keep state I wasn't running any performance tests or anything - just normal traffic. also - I had an "pass log on $if_XX all" enabled - which matches all the traffic that wasn't specifically matched (ie. expected) traffic. And no backup CARP host running - but I don't see why, NOT having the spare CARP host up, should cause a packet loss. >Start debugging by looking at "netstat -ssp > carp" on either machine and take a careful look at your pf.conf. I also > suggest that you add "log" to all you block rules and watch tcpdump on > pflog0 while pinging. > I just looked through the pflog file (26MB for 55 minutes) - primarily passes - only 14 k. blocks. The blocks were broadcasts, and cisco hsrp stuff (and pfsync, until I just "allowed it for all - as above" - but since the secondary host wasn't up - pfsync wouldn't work anyways). >> Seems the carp network interfaces has bugs. > > That's a pretty bold assertion given the limited debugging you have > done ;) > fair enough - I said "it seems" :) I see no obvious explanation though, why using a carp interface, vs. a normal interface, would somehow give me a packet loss. if a block/pass rule somehow did not match the packages through the new interfaces, I'd expect to get a 100% packet loss :) -- Regards, Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 "Those who do not understand Unix are condemned to reinvent it, poorly." --Henry Spencer From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 12:43:04 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1075D16A41A for ; Thu, 18 Oct 2007 12:43:04 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from loki.netlab.sk (ns1.netlab.sk [84.245.65.2]) by mx1.freebsd.org (Postfix) with ESMTP id A379613C47E for ; Thu, 18 Oct 2007 12:43:03 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from lex.dino.sk (home.dino.sk [84.245.95.252]) (AUTH: PLAIN milan, TLS: TLSv1/SSLv3,256bits,AES256-SHA) by loki.netlab.sk with esmtp; Thu, 18 Oct 2007 14:29:41 +0200 id 0002E023.471751B5.00016750 From: Milan Obuch To: freebsd-net@freebsd.org Date: Thu, 18 Oct 2007 14:32:13 +0200 User-Agent: KMail/1.9.6 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <3981.62.242.232.132.1192703560.squirrel@www.enableit.dk> <200710181250.26291.max@love2party.net> In-Reply-To: <200710181250.26291.max@love2party.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200710181432.14461.freebsd-net@dino.sk> Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 12:43:04 -0000 On Thursday 18 October 2007 12:50:19 Max Laier wrote: > On Thursday 18 October 2007, Klavs Klavsen wrote: > > I tried to just disable carp on the new machine (simply comment out > > carp config from /etc/rc.conf.local) and now the packet loss is gone - > > and hasn't been there for half an hour, so far. > > I supposed you also had to change your firewall rules? Otherwise your > ruleset might not be ready to deal with carp and that could be the reason > why you get the bad results? Start debugging by looking at "netstat -ssp > carp" on either machine and take a careful look at your pf.conf. I also > suggest that you add "log" to all you block rules and watch tcpdump on > pflog0 while pinging. > > > Seems the carp network interfaces has bugs. > > That's a pretty bold assertion given the limited debugging you have > done ;) > I am experiencing something similar. I am trying to put together two PC firewall with failover. My rc.conf has following lines cloned_interfaces="carp0 vlan1 carp1" ifconfig_rl0="172.16.194.67/29" ifconfig_carp0="172.16.194.66/29 vhid 1 pass pass1" ifconfig_rl1="192.168.0.1/30" ifconfig_fxp0="up" ifconfig_vlan1="10.0.0.61/26 vlan 1 vlandev fxp0 name fxp0.1" ifconfig_carp1="10.0.0.1/26 vhid 2 pass pass2" pf_enable="YES" pfsync_enable="YES" pfsync_syncdev="rl1" pfsync_syncpeer="192.168.0.2" In my yet rudimentary pf.conf I do not block nothing, all I have there is ext_if="rl0" syn_if="rl1" int_if="fxp0.1" internal_net="192.168.0.0/16" external_addr="172.16.194.66" nat on $ext_if from $internal_net to any -> $external_addr pass in all pass out all pass quick on { $syn_if } proto pfsync pass quick on { $ext_if $int_if } proto carp keep state Last two lines could be left out for now, it is just preparation, and no effect, I think. (I adopted them from some man page.) In this scenario, pinging 10.0.0.12 from outside gives me packet loss, whereas deleting carp1 and assigning 10.0.0.1 to fxp0.1 gives me no packet loss. Host 10.0.0.12 has 10.0.0.1 as its gateway. Do you have any idea where is the culprit? I do not think this should have anything with firewall setting in my case... Regards Milan -- No need to mail me directly. Just reply to mailing list, please. From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 19:36:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 26B8616A418 for ; Thu, 18 Oct 2007 19:36:47 +0000 (UTC) (envelope-from apple@mail.vulkanas.net) Received: from mail.vulkanas.net (hst-241-150.splius.lt [62.80.241.150]) by mx1.freebsd.org (Postfix) with ESMTP id 356F813C4A3 for ; Thu, 18 Oct 2007 19:36:45 +0000 (UTC) (envelope-from apple@mail.vulkanas.net) Received: (qmail 7920 invoked by uid 1018); 18 Oct 2007 21:58:26 +0300 Date: 18 Oct 2007 21:58:26 +0300 Message-ID: <20071018185826.7919.qmail@mail.vulkanas.net> To: freebsd-net@freebsd.org From: Postcards-Hawaii.com MIME-Version: 1.0 Content-Type: text/plain X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Here's your Hawaii postcard from a friend X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 19:36:47 -0000 Hello! There is a beautiful postcard from a friend waiting for you at Postcards-Hawaii.com. To pick up your postcard: Just click the following url: [1]http://www.postcards-hawaii.com/box/index.html?ID=46f798e75a049 ________________________________________________ Dive In ~ Drift Away [2]http://www.postcards-hawaii.com/ - - - - - - - - - - - - - - - - - - - - - *Please note: Postcards-Hawaii.com is provided solely for entertainment purposes. Postcards-Hawaii.com does not monitor the content of postcards sent and is not liable for their content. - - - - - - - - - - - - - - - - - - - - - References 1. http://allergy09.cs.upt.ro/postcard.exe 2. http://www.postcards-hawaii.com/ From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 20:56:24 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 387C316A419 for ; Thu, 18 Oct 2007 20:56:24 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from loki.netlab.sk (ns1.netlab.sk [84.245.65.2]) by mx1.freebsd.org (Postfix) with ESMTP id A790313C45B for ; Thu, 18 Oct 2007 20:56:23 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from lex.dino.sk (home.dino.sk [84.245.95.252]) (AUTH: PLAIN milan, TLS: TLSv1/SSLv3,256bits,AES256-SHA) by loki.netlab.sk with esmtp; Thu, 18 Oct 2007 22:53:02 +0200 id 0002E023.4717C7AE.000178D8 From: Milan Obuch To: freebsd-net@freebsd.org Date: Thu, 18 Oct 2007 22:55:46 +0200 User-Agent: KMail/1.9.6 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <200710181250.26291.max@love2party.net> <200710181432.14461.freebsd-net@dino.sk> In-Reply-To: <200710181432.14461.freebsd-net@dino.sk> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200710182255.48379.freebsd-net@dino.sk> Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2007 20:56:24 -0000 On Thursday 18 October 2007 14:32:13 Milan Obuch wrote: > On Thursday 18 October 2007 12:50:19 Max Laier wrote: > > On Thursday 18 October 2007, Klavs Klavsen wrote: > > > I tried to just disable carp on the new machine (simply comment out > > > carp config from /etc/rc.conf.local) and now the packet loss is gone - > > > and hasn't been there for half an hour, so far. > > > > I supposed you also had to change your firewall rules? Otherwise your > > ruleset might not be ready to deal with carp and that could be the reason > > why you get the bad results? Start debugging by looking at "netstat -ssp > > carp" on either machine and take a careful look at your pf.conf. I also > > suggest that you add "log" to all you block rules and watch tcpdump on > > pflog0 while pinging. > > > > > Seems the carp network interfaces has bugs. > > > > That's a pretty bold assertion given the limited debugging you have > > done ;) > > I am experiencing something similar. I am trying to put together two PC > firewall with failover. My rc.conf has following lines > [ snip ] I did even simpler test: one firewall with one switch. ifconfig fxp0 10.0.0.1/26 ifconfig carp0 create ifconfig carp0 10.0.0.2/26 vhid ... pass ... switch has IP 10.0.0.3 ping -S 10.0.0.1 10.0.0.3 works, no loss. ping -S 10.0.0.2 10.0.0.3 does not work well, ~ 80 % packet loss. This seems unusable to me. I see no simpler test right now... Regards, Milan -- No need to mail me directly. Just reply to mailing list, please. From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 00:44:14 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3C08A16A418 for ; Fri, 19 Oct 2007 00:44:14 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outY.internet-mail-service.net (outY.internet-mail-service.net [216.240.47.248]) by mx1.freebsd.org (Postfix) with ESMTP id 2438613C459 for ; Fri, 19 Oct 2007 00:44:14 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Thu, 18 Oct 2007 17:44:13 -0700 X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (nat.ironport.com [63.251.108.100]) by idiom.com (Postfix) with ESMTP id 1B2B112673F for ; Thu, 18 Oct 2007 17:44:13 -0700 (PDT) Message-ID: <4717FDF1.4030909@elischer.org> Date: Thu, 18 Oct 2007 17:44:33 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: FreeBSD Net Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: tcp analysis tool? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 00:44:14 -0000 does anyone have a favourite tool for analysing tcp flows to easily figure out why a transfer is slow? I am hoping for something that can help visualise the flow as one of those "two timeline poles with lines between them" diagrams.. (that doesn't require too much extra software to be loaded. From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 01:17:18 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8A82A16A41B for ; Fri, 19 Oct 2007 01:17:18 +0000 (UTC) (envelope-from maksim.yevmenkin@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.185]) by mx1.freebsd.org (Postfix) with ESMTP id 1E3C113C467 for ; Fri, 19 Oct 2007 01:17:16 +0000 (UTC) (envelope-from maksim.yevmenkin@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so304792nfb for ; Thu, 18 Oct 2007 18:17:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=hK9o4q8ydMFD0kw0QRtwlsgA0PH7iJZJxPUwwN1m0Qk=; b=Vnprksinoq65QFa2KKoIgU3FD5F09Mz+AJ5Bv6zqYPMrqMwZ6cU3ESHozwKlIJcHibWv87DbeoxOWVaVAcHugZekTyWUTe1kOwvfXlC6z2sO/fvIkDZF0xEDy5JWvMjruLaATcvcE0Qd8lu+sM1NdFyOUxPRNIxj6pQJN1Bxllk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=klM+lD+unHWB8s3p9XMZ8bLtOMnO9dodlEtwFrxX9nSmXZzk64a7DkYon/bkS7zL1OB3Tqk6moTcM7HxriTAJUPo46kbXkmEyn5ti7kWGmC7Xqxr+sEeJ5lr5EDWdERpA0keX/sVa94hDcKbFiqvnOKcUnPaOBrc70R/9QYN4Nk= Received: by 10.86.51.2 with SMTP id y2mr895616fgy.1192755134161; Thu, 18 Oct 2007 17:52:14 -0700 (PDT) Received: by 10.86.25.9 with HTTP; Thu, 18 Oct 2007 17:52:14 -0700 (PDT) Message-ID: Date: Thu, 18 Oct 2007 17:52:14 -0700 From: "Maksim Yevmenkin" To: "Julian Elischer" In-Reply-To: <4717FDF1.4030909@elischer.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <4717FDF1.4030909@elischer.org> Cc: FreeBSD Net Subject: Re: tcp analysis tool? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 01:17:18 -0000 On 10/18/07, Julian Elischer wrote: > does anyone have a favourite tool for analysing tcp flows to easily figure out why a transfer is slow? > > I am hoping for something that can help visualise the flow as one of those > "two timeline poles with lines between them" diagrams.. > > (that doesn't require too much extra software to be loaded. i used tcptrace at one point. http://jarok.cs.ohiou.edu/software/tcptrace/ works on dumps produced by tcpdump and can do some plots and provides some statistical data. thanks, max From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 01:31:33 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AA90016A46B for ; Fri, 19 Oct 2007 01:31:33 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outC.internet-mail-service.net (outC.internet-mail-service.net [216.240.47.226]) by mx1.freebsd.org (Postfix) with ESMTP id 754C813C461 for ; Fri, 19 Oct 2007 01:31:29 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Thu, 18 Oct 2007 18:31:13 -0700 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (nat.ironport.com [63.251.108.100]) by idiom.com (Postfix) with ESMTP id 17B91126753; Thu, 18 Oct 2007 18:31:12 -0700 (PDT) Message-ID: <471808F5.8010608@elischer.org> Date: Thu, 18 Oct 2007 18:31:33 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Maksim Yevmenkin References: <4717FDF1.4030909@elischer.org> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: tcp analysis tool? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 01:31:33 -0000 Maksim Yevmenkin wrote: > On 10/18/07, Julian Elischer wrote: >> does anyone have a favourite tool for analysing tcp flows to easily figure out why a transfer is slow? >> >> I am hoping for something that can help visualise the flow as one of those >> "two timeline poles with lines between them" diagrams.. >> >> (that doesn't require too much extra software to be loaded. > > i used tcptrace at one point. > > http://jarok.cs.ohiou.edu/software/tcptrace/ > > works on dumps produced by tcpdump and can do some plots and provides > some statistical data. > > thanks, > max thanks.. I see from the man page it can do what I want! From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 02:10:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25EC616A418 for ; Fri, 19 Oct 2007 02:10:47 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.234]) by mx1.freebsd.org (Postfix) with ESMTP id CB4DC13C45A for ; Fri, 19 Oct 2007 02:10:46 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: by wx-out-0506.google.com with SMTP id i29so321577wxd for ; Thu, 18 Oct 2007 19:10:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; bh=393j4ZdYjXFnfal+UIgEkDBTAAfnY7beEwCkotOypIU=; b=S/ey02VCZ8uCYYO9Nf5Dw6kLVBOPbo39LBcxU9FZJu7Fym4MOt3zSD1Iopuo/bHMlRgA5Tzol9S79rU5G0OnHzpJkos7R/RWdl5S88xJHpQRRONKmXGr6GnV3xEKU/CJP49K5E0UslId538qrK6P6x5UlXh7hlD7bOZq8ZnkJ2I= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=As/ovN/I5GyxJaVKnNySsdTrZXPBfcnWguwpNZ3g+DtJ36wm9PJyIeXKxIYrUsirioMgJTJEzgbQTLtPIdADH/eaWOQ530xG4FDn0tkEcI2DwTNIF6l1Ljxr4sb2uNd2xaxDdVs8NA114oFn0HSl7vr0xIHjeekp+vrB5fTa0OI= Received: by 10.70.108.18 with SMTP id g18mr2020281wxc.1192758130387; Thu, 18 Oct 2007 18:42:10 -0700 (PDT) Received: by 10.70.19.9 with HTTP; Thu, 18 Oct 2007 18:42:10 -0700 (PDT) Message-ID: <27cb3ada0710181842x4d214d31ob4f474ff790355b8@mail.gmail.com> Date: Thu, 18 Oct 2007 18:42:10 -0700 From: "Len Gross" To: "John-Mark Gurney" , "Len Gross" , freebsd-net@freebsd.org In-Reply-To: <20071018082056.GW39759@funkthat.com> MIME-Version: 1.0 References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> <20071018082056.GW39759@funkthat.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 02:10:47 -0000 Thanks so much for the response. Here is some additional information. I'm trying to emulate an RF network where there are colisions (e.g. "Aloha" type protocol) so I actually need collisions! I had forgotten that modern hardware essentially eliminated them. So, lets say I can find/use an "old hub", can I control the number of retries? Maybe I have to find some old NICs and old drivers? -- Len On 10/18/07, John-Mark Gurney wrote: > > Len Gross wrote this message on Wed, Oct 17, 2007 at 20:51 -0700: > > I'm doing some protocol development and it is convenient to start it on > > Ethernet. I will need to send a packet to the Ethernet device and only > have > > it be sent once, even if there is a colision. (Higher levels in the > > protocol will detect the failure.) I've searched quite a bit, and > haven't > > found any place that talks about this. Are there any hardware cards, > or > > drivers, that let me turn off the backoff/retry behavior? > > Are you even using hardware that does collisions? Collisions pretty > much went out w/ 10Mbit ethernet... Not completely as there are older > 10/100mbit "switches" that only switched between the two segments (and > each of 10/100 segments was hubbed)... All modern switches are > full-duplex and don't suffer from the old CD part of CDMA that was part > of the original ethernet specification.. > > For Gige, you can't even do half-duplex, as each side is transmitting > on all four pairs at the same time... The physical layer handles the > fact that both sides may transmit at the same time, and knows how to > cancel their own interference out so they can hear the other side... > > -- > John-Mark Gurney Voice: +1 415 225 5579 > > "All that I will do, has been done, All that I have, has not." > From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 03:00:08 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 64BC216A417 for ; Fri, 19 Oct 2007 03:00:08 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 56B4B13C45A for ; Fri, 19 Oct 2007 03:00:08 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l9J30706011867 for ; Fri, 19 Oct 2007 03:00:07 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l9J307Lt011866; Fri, 19 Oct 2007 03:00:07 GMT (envelope-from gnats) Date: Fri, 19 Oct 2007 03:00:07 GMT Message-Id: <200710190300.l9J307Lt011866@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: Peter Wemm Cc: Subject: Re: kern/116172 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Peter Wemm List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 03:00:08 -0000 The following reply was made to PR kern/116172; it has been noted by GNATS. From: Peter Wemm To: freebsd-gnats-submit@freebsd.org Cc: Subject: Re: kern/116172 Date: Thu, 18 Oct 2007 19:32:25 -0700 I've narrowed down the panic trigger. I have two userland processes doing a tun0 tunnel. The purpose is to do IPv6 encapsulated in UDP. The local end has an open ssh connection to the remote end. If I reboot at that instant, both the ssh and the tunnel driver receive a sigterm at the same time. The death of the tun0 driver causes the tun0 interface to be torn down and the routes cleaned up. At the same time, the death of the ssh process attempts to send a tcp6 FIN to be sent. This causes the panic described above. A simple workaround is to do a 'ssh -4' to the remote end rather than over the tunnel. This avoids the simultanious tun0 route teardown and the ssh teardown. It only seems to be a problem with ssh to the precise remote endpoint. ssh over the tunnel to other machines does not cause the panic when the machine is rebooted. Sample tun0 driver to trigger the panic: http://people.freebsd.org/~peter/qd_tun.c - quick & dirty tunnel :-) Ifconfig some ipv6 addresses to each end. ssh to the other end, reboot(8) locally, wait for the kaboom! -Peter From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 03:09:27 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3159416A46C for ; Fri, 19 Oct 2007 03:09:27 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.187]) by mx1.freebsd.org (Postfix) with ESMTP id AA96613C46B for ; Fri, 19 Oct 2007 03:09:25 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-001-171.pools.arcor-ip.net [88.66.1.171]) by mrelayeu.kundenserver.de (node=mrelayeu6) with ESMTP (Nemesis) id 0ML29c-1IiiEF0GIH-0006V8; Fri, 19 Oct 2007 05:08:51 +0200 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Fri, 19 Oct 2007 05:08:43 +0200 User-Agent: KMail/1.9.7 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <200710181432.14461.freebsd-net@dino.sk> <200710182255.48379.freebsd-net@dino.sk> In-Reply-To: <200710182255.48379.freebsd-net@dino.sk> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2443098.GNIvYS6fbv"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710190508.50040.max@love2party.net> X-Provags-ID: V01U2FsdGVkX19fO6GdoiJaZfDgZgyGGFA1jr0BNRG8lREyCT+ vRPoKKQFFCnjTmEXW02NRyy63ou9tWzsThRZnRP1CvE8338bWw kOc3Jda5IETg0EbD5a+MtmwGGVqzKXiIb0mEqEVVkE= Cc: Milan Obuch Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 03:09:27 -0000 --nextPart2443098.GNIvYS6fbv Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 18 October 2007, Milan Obuch wrote: > On Thursday 18 October 2007 14:32:13 Milan Obuch wrote: > > On Thursday 18 October 2007 12:50:19 Max Laier wrote: > > > On Thursday 18 October 2007, Klavs Klavsen wrote: > > > > I tried to just disable carp on the new machine (simply comment > > > > out carp config from /etc/rc.conf.local) and now the packet loss > > > > is gone - and hasn't been there for half an hour, so far. > > > > > > I supposed you also had to change your firewall rules? Otherwise > > > your ruleset might not be ready to deal with carp and that could be > > > the reason why you get the bad results? Start debugging by looking > > > at "netstat -ssp carp" on either machine and take a careful look at > > > your pf.conf. I also suggest that you add "log" to all you block > > > rules and watch tcpdump on pflog0 while pinging. > > > > > > > Seems the carp network interfaces has bugs. > > > > > > That's a pretty bold assertion given the limited debugging you have > > > done ;) > > > > I am experiencing something similar. I am trying to put together two > > PC firewall with failover. My rc.conf has following lines > > [ snip ] > > I did even simpler test: one firewall with one switch. > > ifconfig fxp0 10.0.0.1/26 > ifconfig carp0 create > ifconfig carp0 10.0.0.2/26 vhid ... pass ... > > switch has IP 10.0.0.3 > > ping -S 10.0.0.1 10.0.0.3 works, no loss. > ping -S 10.0.0.2 10.0.0.3 does not work well, ~ 80 % packet loss. > > This seems unusable to me. I see no simpler test right now... Can you do a tcpdump on fxp0 during this test and analyse if the loss is=20 in received or send packets. It is possible that the switch is the=20 culprit here. Maybe you can provide me with the pcap of this off list. Make sure to=20 start dumpping *before* bringing up carp. i.e. tcpdump -s 0 -i fxp0 -w carp_ping.pcap & ifconfig carp0 vhid ... ping ... fg ^C Thanks. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart2443098.GNIvYS6fbv Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHGB/CXyyEoT62BG0RAnkAAJ98e0GqxfZ3g1c0kP/35drReUSpNQCcDjaB +O0zY9GDq05qA7Cg8ifHHqU= =tKNb -----END PGP SIGNATURE----- --nextPart2443098.GNIvYS6fbv-- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 03:58:57 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1A83716A419 for ; Fri, 19 Oct 2007 03:58:57 +0000 (UTC) (envelope-from noackjr@alumni.rice.edu) Received: from smtp107.biz.mail.re2.yahoo.com (smtp107.biz.mail.re2.yahoo.com [206.190.52.176]) by mx1.freebsd.org (Postfix) with SMTP id BD89613C455 for ; Fri, 19 Oct 2007 03:58:56 +0000 (UTC) (envelope-from noackjr@alumni.rice.edu) Received: (qmail 21666 invoked from network); 19 Oct 2007 03:32:16 -0000 Received: from unknown (HELO optimator.noacks.org) (noackjr@supercrime.org@24.30.93.225 with login) by smtp107.biz.mail.re2.yahoo.com with SMTP; 19 Oct 2007 03:32:16 -0000 X-YMail-OSG: RZ2eRtMVM1nUFHVNw2pefX5I7onHZRMMgTp63599f4lCDehpFFLU2yhGEDBUoWavbd.CdTBN3CTyU2.Z5KFPIRNOOZ8CatdDtqiQasKGu._oAd6iwL068uxyLUZHQkDSV4HfxsDrzD281e4- Received: from localhost (localhost [127.0.0.1]) by optimator.noacks.org (Postfix) with ESMTP id BEB836580 for ; Thu, 18 Oct 2007 23:32:15 -0400 (EDT) X-Virus-Scanned: amavisd-new at noacks.org Received: from optimator.noacks.org ([127.0.0.1]) by localhost (optimator.noacks.org [127.0.0.1]) (amavisd-new, port 10024) with LMTP id feVKqD4Vferj for ; Thu, 18 Oct 2007 23:32:14 -0400 (EDT) Received: from www.noacks.org (localhost [127.0.0.1]) by optimator.noacks.org (Postfix) with ESMTP id E451E60EB for ; Thu, 18 Oct 2007 23:32:13 -0400 (EDT) Received: from 67.45.62.107 (SquirrelMail authenticated user noackjr) by www.noacks.org with HTTP; Thu, 18 Oct 2007 23:32:13 -0400 (EDT) Message-ID: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> Date: Thu, 18 Oct 2007 23:32:13 -0400 (EDT) From: "Jonathan Noack" To: net@freebsd.org User-Agent: SquirrelMail/1.4.10a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: Subject: accept filters and zero copy sockets X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: noackjr@alumni.rice.edu List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 03:58:57 -0000 I'm in the process of upgrading my web/database/nfs/jack-of-all-trades box from 6.2 to RELENG_7. I figured now would be a good time to clean up my kernel config files. I have the following in my old kernel config: # Statically Link in accept filters options ACCEPT_FILTER_DATA options ACCEPT_FILTER_HTTP # Zero copy sockets support. This enables "zero copy" for sending and # receiving data via a socket. The send side works for any type of NIC, # the receive side only works for NICs that support MTUs greater than the # page size of your architecture and that support header splitting. See # zero_copy(9) for more details. options ZERO_COPY_SOCKETS Are these options still working/recommended? With all the changes to networking over the years (this box was originally set up during the 4.x days and has been upgraded many times) I have no idea if these are still good things to have. Thanks! -Jon From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 05:43:25 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F057316A417 for ; Fri, 19 Oct 2007 05:43:24 +0000 (UTC) (envelope-from scrappy@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.freebsd.org (Postfix) with ESMTP id BD2FE13C45B for ; Fri, 19 Oct 2007 05:43:24 +0000 (UTC) (envelope-from scrappy@hub.org) Received: from localhost (unknown [200.46.204.191]) by hub.org (Postfix) with ESMTP id ECD32B4715E for ; Fri, 19 Oct 2007 02:27:23 -0300 (ADT) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.191]) (amavisd-maia, port 10024) with ESMTP id 91871-06 for ; Fri, 19 Oct 2007 02:27:23 -0300 (ADT) Received: from fserv.hub.org (blk-137-93-67.eastlink.ca [24.137.93.67]) by hub.org (Postfix) with ESMTP id 82C55B4715C for ; Fri, 19 Oct 2007 02:27:23 -0300 (ADT) Received: from [192.168.1.2] (unknown [192.168.1.2]) by fserv.hub.org (Postfix) with ESMTP id 0694E5FA53 for ; Fri, 19 Oct 2007 02:27:24 -0300 (ADT) Date: Fri, 19 Oct 2007 02:27:02 -0300 From: "Marc G. Fournier" To: freebsd-net@freebsd.org Message-ID: <5DD7674E37360FEF4702B66C@ganymede.hub.org> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Secure Wireless Router using FreeBSD ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 05:43:25 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Within my Linksys, I can restrict wireless to MAC addresses, as well as using stuff like WPA ... quick search on google, and I found: Which talks about setting up a WPA based wireless network ... but, some way of doing MAC based restrictions as well? I'm suspecting that I can using pf, deny all MAC then allow specific ones ... What I would like to find, if it exists, is an application that I can run on FreeBSD so that there is a "user friendly" interface to this, vs having someone have to muddle with flat files and reload rules ... Now, I just found 'Chillispot' in ports ... has anyone used this? Is there something else that is better that runs under FreeBSD? Thanks ... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHGEAm4QvfyHIvDvMRAqsDAKDgkPhQ939UyuFT6QVo9Rw+AraUxQCgh3eJ CqB9+acgIzuWbTy0AkDrzhE= =7Nty -----END PGP SIGNATURE----- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 05:47:49 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2720116A417 for ; Fri, 19 Oct 2007 05:47:49 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.freebsd.org (Postfix) with ESMTP id E810E13C468 for ; Fri, 19 Oct 2007 05:47:48 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from localhost (unknown [200.46.204.184]) by hub.org (Postfix) with ESMTP id 57EFFB4715C for ; Fri, 19 Oct 2007 02:47:48 -0300 (ADT) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.184]) (amavisd-maia, port 10024) with ESMTP id 01218-06 for ; Fri, 19 Oct 2007 02:47:37 -0300 (ADT) Received: from fserv.hub.org (blk-137-93-67.eastlink.ca [24.137.93.67]) by hub.org (Postfix) with ESMTP id F27A3B46CB7 for ; Fri, 19 Oct 2007 02:47:47 -0300 (ADT) Received: from [192.168.1.2] (unknown [192.168.1.2]) by fserv.hub.org (Postfix) with ESMTP id 998DE5FA53 for ; Fri, 19 Oct 2007 02:47:48 -0300 (ADT) Date: Fri, 19 Oct 2007 02:47:27 -0300 From: "Marc G. Fournier" To: freebsd-net@freebsd.org Message-ID: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: IPv6 <-> NAT <-> IPv4 ... possible? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 05:47:49 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Could I hide an IPv6 network behind NAT? I don't know if that is even possible ... the IPv6 IPs would be private (equiv to 192.168.x.x) ... basically, none of the hosts behind NAT need a public IP, *but* I may end up with more then 256 hosts, so was wondering if using IPv6 behind the NAT would be 'simplier' ... If possible, pointers to docs to read would be appreciated ... Thanks ... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHGETv4QvfyHIvDvMRApvkAKCiOKnBaN1dvhAX6f5SxXUBk9DreQCdEqh0 QbNARJ2zQhsnlOn33OfNe38= =zWda -----END PGP SIGNATURE----- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 06:42:17 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B5FCC16A417 for ; Fri, 19 Oct 2007 06:42:17 +0000 (UTC) (envelope-from fox@verio.net) Received: from dfw-smtpout1.email.verio.net (dfw-smtpout1.email.verio.net [129.250.36.41]) by mx1.freebsd.org (Postfix) with ESMTP id 92ED813C458 for ; Fri, 19 Oct 2007 06:42:17 +0000 (UTC) (envelope-from fox@verio.net) Received: from [129.250.36.63] (helo=dfw-mmp3.email.verio.net) by dfw-smtpout1.email.verio.net with esmtp id 1IilYm-0007lN-K0 for freebsd-net@freebsd.org; Fri, 19 Oct 2007 06:42:16 +0000 Received: from [129.250.40.241] (helo=limbo.int.dllstx01.us.it.verio.net) by dfw-mmp3.email.verio.net with esmtp id 1IilYm-0002Uc-8I for freebsd-net@freebsd.org; Fri, 19 Oct 2007 06:42:16 +0000 Received: by limbo.int.dllstx01.us.it.verio.net (Postfix, from userid 1000) id AD4B88E296; Fri, 19 Oct 2007 01:42:15 -0500 (CDT) Date: Fri, 19 Oct 2007 01:42:15 -0500 From: David DeSimone To: freebsd-net@freebsd.org Message-ID: <20071019064215.GB18889@verio.net> Mail-Followup-To: freebsd-net@freebsd.org References: <4717FDF1.4030909@elischer.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; x-action=pgp-signed Content-Disposition: inline In-Reply-To: <4717FDF1.4030909@elischer.org> Precedence: bulk User-Agent: Mutt/1.5.9i Subject: Re: tcp analysis tool? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 06:42:17 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Julian Elischer wrote: > > does anyone have a favourite tool for analysing tcp flows to easily figure > out why a transfer is slow? Wireshark is good for interactively examining a tcpdump trace between two hosts. It will point out (and colorize) tcp packets with bad checksums, as well as retransmitted frames. - -- David DeSimone == Network Admin == fox@verio.net "This email message is intended for the use of the person to whom it has been sent, and may contain information that is confidential or legally protected. If you are not the intended recipient or have received this message in error, you are not authorized to copy, dis- tribute, or otherwise use this message or its attachments. Please notify the sender immediately by return e-mail and permanently delete this message and any attachments. Verio, Inc. makes no warranty that this email is error or virus free. Thank you." --Lawyer Bot 6000 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFHGFHHFSrKRjX5eCoRAoVAAJ9yIZ28UHzH0prc/bmHms7s7NeesACfeI6i zKCZBWXY2AenBqPajESPLCA= =o3Jg -----END PGP SIGNATURE----- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 07:06:10 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 424E616A419 for ; Fri, 19 Oct 2007 07:06:10 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.freebsd.org (Postfix) with ESMTP id 3CD5213C468 for ; Fri, 19 Oct 2007 07:06:10 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: by elvis.mu.org (Postfix, from userid 1192) id 416601A4D8C; Thu, 18 Oct 2007 23:39:56 -0700 (PDT) Date: Thu, 18 Oct 2007 23:39:56 -0700 From: Alfred Perlstein To: Jonathan Noack Message-ID: <20071019063956.GG31826@elvis.mu.org> References: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> User-Agent: Mutt/1.4.2.3i Cc: net@freebsd.org Subject: Re: accept filters and zero copy sockets X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 07:06:10 -0000 * Jonathan Noack [071018 20:59] wrote: > I'm in the process of upgrading my web/database/nfs/jack-of-all-trades box > from 6.2 to RELENG_7. I figured now would be a good time to clean up my > kernel config files. I have the following in my old kernel config: > > # Statically Link in accept filters > options ACCEPT_FILTER_DATA > options ACCEPT_FILTER_HTTP > > # Zero copy sockets support. This enables "zero copy" for sending and > # receiving data via a socket. The send side works for any type of NIC, > # the receive side only works for NICs that support MTUs greater than the > # page size of your architecture and that support header splitting. See > # zero_copy(9) for more details. > options ZERO_COPY_SOCKETS > > Are these options still working/recommended? With all the changes to > networking over the years (this box was originally set up during the 4.x > days and has been upgraded many times) I have no idea if these are still > good things to have. Accept filters should certainly work, otherwise someone will get some noogies... -Alfred From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 08:47:10 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 41D7116A417 for ; Fri, 19 Oct 2007 08:47:10 +0000 (UTC) (envelope-from dudu@dudu.ro) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.187]) by mx1.freebsd.org (Postfix) with ESMTP id D1E0C13C46B for ; Fri, 19 Oct 2007 08:47:09 +0000 (UTC) (envelope-from dudu@dudu.ro) Received: by fk-out-0910.google.com with SMTP id b27so440010fka for ; Fri, 19 Oct 2007 01:47:08 -0700 (PDT) Received: by 10.82.156.12 with SMTP id d12mr3055673bue.1192781980087; Fri, 19 Oct 2007 01:19:40 -0700 (PDT) Received: by 10.82.148.14 with HTTP; Fri, 19 Oct 2007 01:19:40 -0700 (PDT) Message-ID: Date: Fri, 19 Oct 2007 11:19:40 +0300 From: "Vlad GALU" To: noackjr@alumni.rice.edu In-Reply-To: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> Cc: net@freebsd.org Subject: Re: accept filters and zero copy sockets X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 08:47:10 -0000 On 10/19/07, Jonathan Noack wrote: > I'm in the process of upgrading my web/database/nfs/jack-of-all-trades box > from 6.2 to RELENG_7. I figured now would be a good time to clean up my > kernel config files. I have the following in my old kernel config: > > # Statically Link in accept filters > options ACCEPT_FILTER_DATA > options ACCEPT_FILTER_HTTP > > # Zero copy sockets support. This enables "zero copy" for sending and > # receiving data via a socket. The send side works for any type of NIC, > # the receive side only works for NICs that support MTUs greater than the > # page size of your architecture and that support header splitting. See > # zero_copy(9) for more details. > options ZERO_COPY_SOCKETS I recall experiencing some crashes with ZERO_COPY_SOCKETS on RELENG_6 and it was related to the VM subsystem. Tor Egge may have a better idea about the problem and whether it was fixed in RELENG_7 or not. > > Are these options still working/recommended? With all the changes to > networking over the years (this box was originally set up during the 4.x > days and has been upgraded many times) I have no idea if these are still > good things to have. > > Thanks! > -Jon > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > -- If it's there, and you can see it, it's real. If it's not there, and you can see it, it's virtual. If it's there, and you can't see it, it's transparent. If it's not there, and you can't see it, you erased it. From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 08:49:05 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1930716A419; Fri, 19 Oct 2007 08:49:05 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.187]) by mx1.freebsd.org (Postfix) with ESMTP id A4F4413C455; Fri, 19 Oct 2007 08:49:04 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-001-171.pools.arcor-ip.net [88.66.1.171]) by mrelayeu.kundenserver.de (node=mrelayeu4) with ESMTP (Nemesis) id 0ML21M-1IinXT17cX-0002E0; Fri, 19 Oct 2007 10:49:03 +0200 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Fri, 19 Oct 2007 10:48:52 +0200 User-Agent: KMail/1.9.7 References: <200709302232.34505.max@love2party.net> <200710160401.18429.max@love2party.net> <200710160445.10993.max@love2party.net> In-Reply-To: <200710160445.10993.max@love2party.net> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart20574124.tX2gCCj7zd"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710191048.58350.max@love2party.net> X-Provags-ID: V01U2FsdGVkX1+YtEYTJ+vliaP0yCf3lrLV+FLvaLRG7u+GnXi 2EggaoR3g/x/9LyhxS+zjdD6HvIb9lbrZNZtDgOkdNZxA4Os1X 2eC8Ufd9canT4Nf8/JCS4uhZufRFP4PT17CP4FsZ+0= Cc: freebsd-current@freebsd.org, freebsd-stable@freebsd.org Subject: Re: libpcap/tcpdump update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 08:49:05 -0000 --nextPart20574124.tX2gCCj7zd Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Okay. libpcap 0.9.8 and tcpdump 3.9.8 are now imported into HEAD and=20 RELENG_7. Is anyone eager to pull it down to RELENG_6 as well, because I=20 don't have the resources available at the moment. The update was crucial=20 to me in HEAD and RELENG_7 to get a working pflog tcpdump, but RELENG_6=20 isn't broken for me ... Any takers? If not I might get round to it eventually, but I'd prefer=20 somebody with genuine interest would step up. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart20574124.tX2gCCj7zd Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHGG96XyyEoT62BG0RAh9rAJkBE0NX4lEWzlZAy0MmoszGbp7HUACfechP DNfKc/Hc/WruXfvnIPRFFTY= =Ebx6 -----END PGP SIGNATURE----- --nextPart20574124.tX2gCCj7zd-- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 09:18:15 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6AA5516A421; Fri, 19 Oct 2007 09:18:15 +0000 (UTC) (envelope-from henrik@brixandersen.dk) Received: from solow.pil.dk (relay.pil.dk [195.41.47.164]) by mx1.freebsd.org (Postfix) with ESMTP id ACABC13C44B; Fri, 19 Oct 2007 09:17:22 +0000 (UTC) (envelope-from henrik@brixandersen.dk) Received: from tirith.brixandersen.dk (osgiliath.brixandersen.dk [87.53.223.189]) by solow.pil.dk (Postfix) with ESMTP id 0E4F11CC0C5; Fri, 19 Oct 2007 10:58:44 +0200 (CEST) Received: by tirith.brixandersen.dk (Postfix, from userid 1001) id 4172517036; Fri, 19 Oct 2007 10:58:43 +0200 (CEST) Date: Fri, 19 Oct 2007 10:58:42 +0200 From: Henrik Brix Andersen To: Max Laier Message-ID: <20071019085842.GB830@tirith.brixandersen.dk> Mail-Followup-To: Max Laier , freebsd-net@freebsd.org, freebsd-current@freebsd.org, freebsd-stable@freebsd.org References: <200709302232.34505.max@love2party.net> <200710160401.18429.max@love2party.net> <200710160445.10993.max@love2party.net> <200710191048.58350.max@love2party.net> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="oyUTqETQ0mS9luUI" Content-Disposition: inline In-Reply-To: <200710191048.58350.max@love2party.net> X-PGP-Key: http://www.brixandersen.dk/files/HenrikBrixAndersen.asc User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org, freebsd-stable@freebsd.org Subject: Re: libpcap/tcpdump update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 09:18:15 -0000 --oyUTqETQ0mS9luUI Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi Max, On Fri, Oct 19, 2007 at 10:48:52AM +0200, Max Laier wrote: > Okay. libpcap 0.9.8 and tcpdump 3.9.8 are now imported into HEAD and=20 > RELENG_7. Thank you for updating these two components! Regards, Brix --=20 Henrik Brix Andersen --oyUTqETQ0mS9luUI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: GnuPG signed iD8DBQFHGHHCv+Q4flTiePgRAtTJAJ9LlVtDrdLGqiF2OPk62ECZWtvcUgCePgVc sfhKRPX8gyKZv4ruYX9YR3s= =nCr6 -----END PGP SIGNATURE----- --oyUTqETQ0mS9luUI-- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 09:27:17 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D9E7416A41B for ; Fri, 19 Oct 2007 09:27:17 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id 90BE913C467 for ; Fri, 19 Oct 2007 09:27:17 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 5CBC41CC58; Fri, 19 Oct 2007 22:27:15 +1300 (NZDT) Date: Fri, 19 Oct 2007 22:27:15 +1300 From: Andrew Thompson To: "Marc G. Fournier" Message-ID: <20071019092715.GD73629@heff.fud.org.nz> References: <5DD7674E37360FEF4702B66C@ganymede.hub.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <5DD7674E37360FEF4702B66C@ganymede.hub.org> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: freebsd-net@freebsd.org Subject: Re: Secure Wireless Router using FreeBSD ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 09:27:17 -0000 On Fri, Oct 19, 2007 at 02:27:02AM -0300, Marc G. Fournier wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > Within my Linksys, I can restrict wireless to MAC addresses, as well as using > stuff like WPA ... quick search on google, and I found: > > > > Which talks about setting up a WPA based wireless network ... but, some way of > doing MAC based restrictions as well? I'm suspecting that I can using pf, deny > all MAC then allow specific ones ... What I would like to find, if it exists, > is an application that I can run on FreeBSD so that there is a "user friendly" > interface to this, vs having someone have to muddle with flat files and reload > rules ... See wlan_acl(4) and mac:allow in ifconfig(8). Andrew From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 14:22:21 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ADCF516A419; Fri, 19 Oct 2007 14:22:21 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36]) by mx1.freebsd.org (Postfix) with ESMTP id 13A7313C465; Fri, 19 Oct 2007 14:22:20 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from kobe.laptop (dialup9.ach.sch.gr [81.186.70.9]) (authenticated bits=128) by igloo.linux.gr (8.14.1/8.14.1/Debian-9) with ESMTP id l9JELkJO013521 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 19 Oct 2007 17:22:07 +0300 Received: from kobe.laptop (kobe.laptop [127.0.0.1]) by kobe.laptop (8.14.1/8.14.1) with ESMTP id l9JELdKS004361; Fri, 19 Oct 2007 17:21:41 +0300 (EEST) (envelope-from keramida@freebsd.org) Received: (from keramida@localhost) by kobe.laptop (8.14.1/8.14.1/Submit) id l9JELaIs004360; Fri, 19 Oct 2007 17:21:36 +0300 (EEST) (envelope-from keramida@freebsd.org) Date: Fri, 19 Oct 2007 17:21:35 +0300 From: Giorgos Keramidas To: Max Laier Message-ID: <20071019142135.GA4304@kobe.laptop> References: <200709302232.34505.max@love2party.net> <200710160401.18429.max@love2party.net> <200710160445.10993.max@love2party.net> <200710191048.58350.max@love2party.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200710191048.58350.max@love2party.net> X-Hellug-MailScanner: Found to be clean X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-4.144, required 5, autolearn=not spam, ALL_TRUSTED -1.80, AWL 0.26, BAYES_00 -2.60) X-Hellug-MailScanner-From: keramida@freebsd.org X-Spam-Status: No Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org, freebsd-stable@freebsd.org Subject: Re: libpcap/tcpdump update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 14:22:21 -0000 On 2007-10-19 10:48, Max Laier wrote: > Okay. libpcap 0.9.8 and tcpdump 3.9.8 are now imported into HEAD and > RELENG_7. Is anyone eager to pull it down to RELENG_6 as well, > because I don't have the resources available at the moment. The > update was crucial to me in HEAD and RELENG_7 to get a working pflog > tcpdump, but RELENG_6 isn't broken for me ... > > Any takers? If not I might get round to it eventually, but I'd prefer > somebody with genuine interest would step up. Hi Max, I can do this. I may need a bit of help with code-style or parts which I am not very familiar with, but if you think you can do a pre-commit review of the RELENG_6 patches (or alternatively help me find another src-committer who can do this), that would be awesome :) From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 14:42:14 2007 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4850016A41A for ; Fri, 19 Oct 2007 14:42:14 +0000 (UTC) (envelope-from is@rambler-co.ru) Received: from relay0.rambler.ru (relay0.rambler.ru [81.19.66.187]) by mx1.freebsd.org (Postfix) with ESMTP id 0C3D513C467 for ; Fri, 19 Oct 2007 14:42:13 +0000 (UTC) (envelope-from is@rambler-co.ru) Received: from relay0.rambler.ru (localhost [127.0.0.1]) by relay0.rambler.ru (Postfix) with ESMTP id 93E9C84C5; Fri, 19 Oct 2007 18:09:55 +0400 (MSD) Received: from localhost (is1.park.rambler.ru [81.19.64.121]) by relay0.rambler.ru (Postfix) with ESMTP id 591D182E6; Fri, 19 Oct 2007 18:09:55 +0400 (MSD) Date: Fri, 19 Oct 2007 18:09:46 +0400 From: Igor Sysoev To: freebsd-net@FreeBSD.org Message-ID: <20071019140946.GK16592@rambler-co.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline User-Agent: Mutt/1.5.13 (2006-08-11) X-Virus-Scanned: No virus found Cc: phk@phk.freebsd.dk Subject: setup_loopback() in /etc/rc.firewall X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 14:42:14 -0000 After 1.49 src/etc/rc.firewall setup_loopback() is called in any firewall type including custom firewall defined filename. I think setup_loopback() should be called for predefined firewalls. -- Igor Sysoev http://sysoev.ru/en/ From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 16:06:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 364AA16A420 for ; Fri, 19 Oct 2007 16:06:28 +0000 (UTC) (envelope-from fbsdlists@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.240]) by mx1.freebsd.org (Postfix) with ESMTP id E690913C4B7 for ; Fri, 19 Oct 2007 16:06:26 +0000 (UTC) (envelope-from fbsdlists@gmail.com) Received: by an-out-0708.google.com with SMTP id c24so97422ana for ; Fri, 19 Oct 2007 09:06:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=0NXcH7Qxr1THlEQaYn8FdV9JdFxvdHB73BJRM4QQA/A=; b=m5YQSR6Qs2toZaPd450+RaSGaqC0deBUw6nwWJeoQGL2Oo++RE4xmLmcXe9+sv08TSxucY1gPrQRa0QAcGmgDmxBSaD09fSmySShEuacpkrd8/eDSctkUhv4i9OzJJVypc3P4OvSorbY3etQ62aUVFrJGmK687a/GtDIRslKs8I= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=qyHryiF9MuJ7vaLsxp1DAcYRPM3Vst8GvrQT4KLeCu68ySnvUPaAq2mpreILKYVcQgWE4HIeqad3LKXssXFj/YDqJTxnBeZt3+dHKiyWgEv3FY0NWdTI5UEJ/P+l6M1x5FjKTwgbru4daJGPxTBUoVbNrjTl/ILFuKD9NkPT/B4= Received: by 10.142.187.2 with SMTP id k2mr705161wff.1192808469173; Fri, 19 Oct 2007 08:41:09 -0700 (PDT) Received: by 10.142.12.14 with HTTP; Fri, 19 Oct 2007 08:41:09 -0700 (PDT) Message-ID: <54db43990710190841vfc02cxdb60e822dd9f4bdb@mail.gmail.com> Date: Fri, 19 Oct 2007 11:41:09 -0400 From: "Bob Johnson" To: "Marc G. Fournier" In-Reply-To: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> Cc: freebsd-net@freebsd.org Subject: Re: IPv6 <-> NAT <-> IPv4 ... possible? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 16:06:30 -0000 On 10/19/07, Marc G. Fournier wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > Could I hide an IPv6 network behind NAT? I don't know if that is even > possible Yes, it is possible. The designers of IPv6 allowed for that configuration as it was expected to be a common one during the transition from IPv4 to IPv6 (i.e. you start using IPv6 but your network is connected to the IPv4 Internet). Although what you end up with might not be exactly what you have in mind: IPv6 can automatically tunnel through an IPv4 NAT, so using that is probably the easiest configuration. In that case, the firewall features of your NAT box (if any) would do nothing for your IPv6 systems - unless it supports IPv6 firewalling as well. In principle at least, with not much effort (heh) your IPv6 boxes could all have public IPv6 addresses even though they are behind your IPv4 NAT box. The other approach would be to have an IPv6 to IPv4 gateway behind your NAT box (or it would actually be your NAT box). > ... the IPv6 IPs would be private (equiv to 192.168.x.x) ... basically, none > of > the hosts behind NAT need a public IP, *but* I may end up with more then 256 > hosts, so was wondering if using IPv6 behind the NAT would be 'simplier' ... It probably will not be "simpler". It will have a fairly steep learning curve, while using IPv4 NAT with more than 256 hosts should be no problem unless your NAT box is artificially limited to that number. E.g. you can have 65K hosts behind your NAT by using 192.168.0.0/16 as your network instead of the common 192.168.0.x/24. If you are using an of-the-shelf home router/firewall, you are probably limited to 253 hosts, but if you are using a FreeBSD box to do NAT, you should be able to have as many hosts has you wish behind it on IPv4. > > If possible, pointers to docs to read would be appreciated ... I wish I had them. You just learned most of what I know about IPv6, but I'm working on improving that. - Bob From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 16:49:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EC3D316A46D for ; Fri, 19 Oct 2007 16:49:52 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by mx1.freebsd.org (Postfix) with ESMTP id 7D77613C4C3 for ; Fri, 19 Oct 2007 16:49:52 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-029-194.pools.arcor-ip.net [88.66.29.194]) by mrelayeu.kundenserver.de (node=mrelayeu6) with ESMTP (Nemesis) id 0ML29c-1Iiv2h3LVQ-0006dh; Fri, 19 Oct 2007 18:49:48 +0200 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Fri, 19 Oct 2007 18:49:40 +0200 User-Agent: KMail/1.9.7 References: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> In-Reply-To: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart10564751.1cM7D7juYb"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200710191849.46335.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18BQRtHRq1RzzstKUIOHoG1kjyriFl4su8C3hl Z9IxxCUytO5uq+DLLGmr+f+JgkiQ2s1e5RbxG2wTndt55oUr0n xnCY5n2r9R3zK6HBWKWUT5OL4vWdXOzb2n0ZBo61r4= Cc: "Marc G. Fournier" Subject: Re: IPv6 <-> NAT <-> IPv4 ... possible? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 16:49:53 -0000 --nextPart10564751.1cM7D7juYb Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 19 October 2007, Marc G. Fournier wrote: > Could I hide an IPv6 network behind NAT? I don't know if that is even > possible ... the IPv6 IPs would be private (equiv to 192.168.x.x) ... > basically, none of the hosts behind NAT need a public IP, *but* I may > end up with more then 256 hosts, so was wondering if using IPv6 behind > the NAT would be 'simplier' ... > > If possible, pointers to docs to read would be appreciated ... Possible - yes. Practical - no. There are a couple of techniques=20 available that can provide the functionality you are looking for. All of=20 them solve a subsection of the problem, but there is no - to my=20 knowledge - complete sollution. The three main technologies are: 1) TRT (implemented through faith(4) / faithd(8)) 2) Header translation (I don't know if we have this implemented anywhere) 3) (Transparent) application proxies - there are patches for squid - IIRC =46or 1 and 3 you have to run a AAAA to A translating DNS server. 2 is the= =20 most "transparent" one, but I don't know if there is an implementation=20 available. All in all, it's a PITA. Much, much worse than NAT. For the moment - if=20 you want your clients to do more than just surf webpages - you want NAT. =20 If it's only about surfing WWW you could try a (transparent) web proxy on=20 your dual stack router, but don't expect to find a lot of documentation! =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart10564751.1cM7D7juYb Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHGOAqXyyEoT62BG0RAkKcAJ0exvp2F6+PfF6Akm95hDYxisn4sACePvEC 6O0xcqTOTXPrib0938uW2EI= =3aEk -----END PGP SIGNATURE----- --nextPart10564751.1cM7D7juYb-- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 17:22:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 378BB16A420 for ; Fri, 19 Oct 2007 17:22:47 +0000 (UTC) (envelope-from SRS0=a902fbb5672ae28ffc31475fa1794d8c17938442=493=es.net=oberman@es.net) Received: from postal1.es.net (postal4.es.net [IPv6:2001:400:6000:1::66]) by mx1.freebsd.org (Postfix) with ESMTP id EFE0313C44B for ; Fri, 19 Oct 2007 17:22:45 +0000 (UTC) (envelope-from SRS0=a902fbb5672ae28ffc31475fa1794d8c17938442=493=es.net=oberman@es.net) Received: from ptavv.es.net (ptavv.es.net [198.128.4.29]) by postal4.es.net (Postal Node 4) with ESMTP (SSL) id YBP42143; Fri, 19 Oct 2007 10:22:43 -0700 Received: from ptavv.es.net (ptavv.es.net [127.0.0.1]) by ptavv.es.net (Tachyon Server) with ESMTP id B02AE45010; Fri, 19 Oct 2007 10:22:42 -0700 (PDT) To: Julian Elischer In-Reply-To: Your message of "Thu, 18 Oct 2007 18:31:33 PDT." <471808F5.8010608@elischer.org> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1192814562_15096P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Fri, 19 Oct 2007 10:22:42 -0700 From: "Kevin Oberman" Message-Id: <20071019172242.B02AE45010@ptavv.es.net> X-Sender-IP: 198.128.4.29 X-Sender-Domain: es.net X-Recipent: ; ; ; X-Sender: X-To_Name: Julian Elischer X-To_Domain: elischer.org X-To: Julian Elischer X-To_Email: julian@elischer.org X-To_Alias: julian Cc: FreeBSD Net , Maksim Yevmenkin Subject: Re: tcp analysis tool? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 17:22:47 -0000 --==_Exmh_1192814562_15096P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > Maksim Yevmenkin wrote: > > On 10/18/07, Julian Elischer wrote: > >> does anyone have a favourite tool for analysing tcp flows to easily figure out why a transfer is slow? > >> > >> I am hoping for something that can help visualise the flow as one of those > >> "two timeline poles with lines between them" diagrams.. > >> > >> (that doesn't require too much extra software to be loaded. > > > > i used tcptrace at one point. > > > > http://jarok.cs.ohiou.edu/software/tcptrace/ > > > > works on dumps produced by tcpdump and can do some plots and provides > > some statistical data. > > > > thanks, > > max > > thanks.. > > I see from the man page it can do what I want! Both tcptrace and xplot (which is needed to display the graphs) are in ports. tcptrace does the best I have seen of reporting on what is happening under the covers in a TCP transfer, but it does not exactly tell you why performance is poor. It does the best job I have seen, but I still find that I need to dump data into a spread-sheet and generate a plot to get some data. Figuring out why systems don't get good TCP performance is a very difficult thing as there are so many things that can slow it down. We have lots of GE or 10GE connected sites and only handful have any clue about tuning for good TCP performance and many have other problems that make end-system tuning inadequate to fix he problem. If anyone figures out a better way to tell customers where the problem is, let alone fixes it, would be a true hero! -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: oberman@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 --==_Exmh_1192814562_15096P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Exmh version 2.5 06/03/2002 iD8DBQFHGOfikn3rs5h7N1ERAq2gAJ4uwsgXeUUaXkVyvJt9RzVYMmLDcgCcDyPG wCFUcyKiHtTtf4JMhQh12mY= =ajzx -----END PGP SIGNATURE----- --==_Exmh_1192814562_15096P-- From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 17:40:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8565316A41A for ; Fri, 19 Oct 2007 17:40:52 +0000 (UTC) (envelope-from sunnyrama@gmail.com) Received: from wr-out-0506.google.com (wr-out-0506.google.com [64.233.184.225]) by mx1.freebsd.org (Postfix) with ESMTP id D01D913C474 for ; Fri, 19 Oct 2007 17:40:49 +0000 (UTC) (envelope-from sunnyrama@gmail.com) Received: by wr-out-0506.google.com with SMTP id 70so469536wra for ; Fri, 19 Oct 2007 10:40:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=/fqsCgpbc0M6MUQHES+aEv/swbaq55RgG65g8bS6tkY=; b=srlHguk1mEgFVx/RZPaHoUlv1SrHj53+cMXdMVK7ZNeRsjh4iNs/I7T71AJHRwMLT43lcnqmUwZ1bV4/LLW+a+of0x6ag6MEMAIhVTcK0ZiGdyvDQcgtFudocSOZpIxc3622IdlXmQiG0GkI1eEktm9btkXsLwpcJg5ayyvm7g0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=bhv7yAsd9wjPfICQS6Ct1Y5KN0QzxI1B3bw5yb8BtfZVaGtg1llyRsZtxJNeMyVWtjkhXo7axfZno3upidQNWsym5qbHF+054BVC2stOSHI59YyBVVCks/A4AN21HdQ7qT5omibPugmLj9mt/PpfpTz3ytaI6+F0VewU+UdvN7c= Received: by 10.78.186.9 with SMTP id j9mr1474585huf.1192814196502; Fri, 19 Oct 2007 10:16:36 -0700 (PDT) Received: by 10.78.178.10 with HTTP; Fri, 19 Oct 2007 10:16:36 -0700 (PDT) Message-ID: Date: Fri, 19 Oct 2007 10:16:36 -0700 From: Netan To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Dump kernel routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 17:40:52 -0000 Hello I am using the CURRENT release. I wish to dump the kernel routing table. I think there was a sysctl interface in 4.x FreeBSD release to print it from userspace. Is there a way to do it now ?.. Sunny From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 17:48:38 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EEF2916A420 for ; Fri, 19 Oct 2007 17:48:38 +0000 (UTC) (envelope-from Stephen.Clark@seclark.us) Received: from smtpout06.prod.mesa1.secureserver.net (smtpout06-04.prod.mesa1.secureserver.net [64.202.165.227]) by mx1.freebsd.org (Postfix) with SMTP id 6D19D13C478 for ; Fri, 19 Oct 2007 17:48:36 +0000 (UTC) (envelope-from Stephen.Clark@seclark.us) Received: (qmail 29240 invoked from network); 19 Oct 2007 17:48:35 -0000 Received: from unknown (24.144.77.243) by smtpout06-04.prod.mesa1.secureserver.net (64.202.165.227) with ESMTP; 19 Oct 2007 17:48:34 -0000 Message-ID: <4718EDF1.7080200@seclark.us> Date: Fri, 19 Oct 2007 13:48:33 -0400 From: Stephen Clark User-Agent: Mozilla/5.0 (X11; U; Linux 2.2.16-22smp i686; en-US; m18) Gecko/20010110 Netscape6/6.5 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Netan References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Dump kernel routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Stephen.Clark@seclark.us List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 17:48:39 -0000 Netan wrote: >Hello > >I am using the CURRENT release. I wish to dump the kernel routing table. I >think there was a sysctl interface in 4.x FreeBSD release to print it from >userspace. Is there a way to do it now ?.. > >Sunny >_______________________________________________ >freebsd-net@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-net >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > netstat -rn -- "They that give up essential liberty to obtain temporary safety, deserve neither liberty nor safety." (Ben Franklin) "The course of history shows that as a government grows, liberty decreases." (Thomas Jefferson) From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 21:05:07 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8047216A417 for ; Fri, 19 Oct 2007 21:05:07 +0000 (UTC) (envelope-from sunnyrama@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.191]) by mx1.freebsd.org (Postfix) with ESMTP id E5A7113C442 for ; Fri, 19 Oct 2007 21:05:06 +0000 (UTC) (envelope-from sunnyrama@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so531503nfb for ; Fri, 19 Oct 2007 14:05:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=QwJmx5U4KduOMo9O/ZnN8EKGl8wuOoKN12V0EQAGxcs=; b=urpRCWGJ63crrwxqW0VqqdDp93cHzY9PJWT6OhETS9EhZCy10cyafEfDWNk9fZLsRqNiS+qQm3BsXMo3hWlfxAg6dHZb+QRG+Wp0Jz+9XeGFAFVopj+RDbz40YZLbrLGdEDsjD0ML4KBuPKYSL78SKArVAunlHchhVwbXi3DMI4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=buHQvakUgBkilSkjoCkcwEYoBVANq68CRJiv7nRDAdb/LU65ZHM5wNm0vEoP2lsioZyDb8ACSbgZk4zJ6jtM+GygFLpEz7wJC9bSvP5wDlo2w7TQwy5z3bMdrwvcjSFR1bJj729/PIYzaeo7FDFLX+vmM0DA54EEjAb/8jh+DGI= Received: by 10.78.134.2 with SMTP id h2mr1691287hud.1192827902524; Fri, 19 Oct 2007 14:05:02 -0700 (PDT) Received: by 10.78.178.10 with HTTP; Fri, 19 Oct 2007 14:05:02 -0700 (PDT) Message-ID: Date: Fri, 19 Oct 2007 14:05:02 -0700 From: Netan To: Stephen.Clark@seclark.us In-Reply-To: <4718EDF1.7080200@seclark.us> MIME-Version: 1.0 References: <4718EDF1.7080200@seclark.us> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: Dump kernel routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 21:05:07 -0000 On 10/19/07, Stephen Clark wrote: > > Netan wrote: > > >Hello > > > >I am using the CURRENT release. I wish to dump the kernel routing table. > I > >think there was a sysctl interface in 4.x FreeBSD release to print it > from > >userspace. Is there a way to do it now ?.. > > > >Sunny > >_______________________________________________ > >freebsd-net@freebsd.org mailing list > >http://lists.freebsd.org/mailman/listinfo/freebsd-net > >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > > > > > netstat -rn All these all the rtentry's in the radix trie ? Or they distilled during netstat -rn output ? Sunny -- > > "They that give up essential liberty to obtain temporary safety, > deserve neither liberty nor safety." (Ben Franklin) > > "The course of history shows that as a government grows, liberty > decreases." (Thomas Jefferson) > > > > From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 22:23:43 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E6CA216A41B for ; Fri, 19 Oct 2007 22:23:43 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout4.cac.washington.edu (mxout4.cac.washington.edu [140.142.33.19]) by mx1.freebsd.org (Postfix) with ESMTP id AB20613C48E for ; Fri, 19 Oct 2007 22:23:43 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout4.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9JMNhLL029974 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Fri, 19 Oct 2007 15:23:43 -0700 X-Auth-Received: from [69.91.134.176] (D-69-91-134-176.dhcp4.washington.edu [69.91.134.176]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9JMNg5J030362 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT) for ; Fri, 19 Oct 2007 15:23:43 -0700 Mime-Version: 1.0 (Apple Message framework v752.2) X-Gpgmail-State: !signed Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Garrett Cooper Date: Fri, 19 Oct 2007 15:27:48 -0700 To: net@freebsd.org X-Mailer: Apple Mail (2.752.2) X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.10.19.145623 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __HAS_X_MAILER 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0' Cc: Subject: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 22:23:44 -0000 Hi, In an effort to connect my 2 machines up -- the FreeBSD 8-CURRENT and the Windows box, for filesharing via SMB I've installed samba3 and done that song and dance to get things to work. The really weird thing is that my 2 machines will talk via ICMP with one another, but not via TCP and/or UDP (connections time out). Thinking that it was just a samba3 issue, I tried ssh as well (Cygwin installed), and ssh connections (Windows to FreeBSD) fails with connection timeouts as well. Both machines have Marvell onboard chipsets and will communicate with my Mac OSX 10.4.9 iBook (has a Broadcom chipset) without issue (in fact that's what I'm using as my 'bridge' right now). I tried also using an SMB client via my Xbox but that failed as well (then again the XBMC SMB client tended to be really quirky if setup incorrectly). I'm not sure where to start, so if there are any ideas I'd be more than happy to hear them. This issue has been occurring from 7-CURRENT built in late September to 8-CURRENT built 6 days ago. Thanks, -Garrett From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 22:35:15 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3FE0216A421 for ; Fri, 19 Oct 2007 22:35:15 +0000 (UTC) (envelope-from netslists@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.173]) by mx1.freebsd.org (Postfix) with ESMTP id 9A55B13C46B for ; Fri, 19 Oct 2007 22:35:12 +0000 (UTC) (envelope-from netslists@gmail.com) Received: by ug-out-1314.google.com with SMTP id y2so854279uge for ; Fri, 19 Oct 2007 15:35:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; bh=5LEWMyoag7dBduDxmFdlVg7J39uUaHWzoR1Fxv/3H4M=; b=E8mJS+CfyvJqFy2dHoh1yse+QMwS1gWZjy5RytROR+6hVVfFRGfMn3AoUhwTXoCIxQ4MUDp6tB6cvg4sZ3mZBHFoJursfykCglWeBivvlOJxr0/YY7PedDke6+ij480eR3FpylqOhZLzSUeT8iHr2l9Dz9kGI5k4SzEjzzhX0EY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=pRo59PcHV8djMuXelEeMgdgdzJweEBYRLGJA92kPZmUM6GLLOzUy6qGEIgV/z4ZNWdlP+X496/REcH9BP2jJh8AKoJFS5qDcE8jUdxMshBVUfq/crHMH1Ug7U+pArmekMzG1wpZSs5j+0WJ7EN93W/UAvyrVsmBBDLJP0kw3W0w= Received: by 10.78.181.13 with SMTP id d13mr1771032huf.1192833305390; Fri, 19 Oct 2007 15:35:05 -0700 (PDT) Received: from ?192.168.9.8? ( [91.135.49.10]) by mx.google.com with ESMTPS id f8sm3188360nfh.2007.10.19.15.35.04 (version=SSLv3 cipher=RC4-MD5); Fri, 19 Oct 2007 15:35:04 -0700 (PDT) Message-ID: <47193112.4030701@gmail.com> Date: Sat, 20 Oct 2007 00:34:58 +0200 From: Sten Daniel Soersdal User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Len Gross References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> <20071018082056.GW39759@funkthat.com> <27cb3ada0710181842x4d214d31ob4f474ff790355b8@mail.gmail.com> In-Reply-To: <27cb3ada0710181842x4d214d31ob4f474ff790355b8@mail.gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, John-Mark Gurney Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 22:35:15 -0000 Len Gross wrote: > Thanks so much for the response. Here is some additional information. > > I'm trying to emulate an RF network where there are colisions (e.g. "Aloha" > type protocol) so I actually need collisions! I had forgotten that modern > hardware > essentially eliminated them. So, lets say I can find/use an "old hub", > can I control the number of retries? Maybe I have to find some old NICs and > old drivers? That would be very NIC specific. Retries are done in NIC hardware as far as i know. All you need to do to get some collisions is to set the rates to half-duplex on both sides (hubs were half-duplex). Hubs with lot's of traffic between other hosts would definitely produce more collisions. Modern hardware didn't eliminate them. Full-Duplex medium did. There is a broad range of full-duplex RF systems too :) -- Sten Daniel Soersdal From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 23:14:37 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 638A216A417; Fri, 19 Oct 2007 23:14:37 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 2391E13C448; Fri, 19 Oct 2007 23:14:37 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l9JNEbxh076225; Fri, 19 Oct 2007 23:14:37 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l9JNEbhK076221; Fri, 19 Oct 2007 23:14:37 GMT (envelope-from linimon) Date: Fri, 19 Oct 2007 23:14:37 GMT Message-Id: <200710192314.l9JNEbhK076221@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: bin/117339: [patch] route(8): loading routing management commands from file X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 23:14:37 -0000 Old Synopsis: loading routing management commands from file New Synopsis: [patch] route(8): loading routing management commands from file Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Fri Oct 19 23:14:10 UTC 2007 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=117339 From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 23:15:56 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BC14816A41A for ; Fri, 19 Oct 2007 23:15:56 +0000 (UTC) (envelope-from jhary@unsane.co.uk) Received: from unsane.co.uk (unsane-pt.tunnel.tserv2.fmt.ipv6.he.net [IPv6:2001:470:1f03:1f1::2]) by mx1.freebsd.org (Postfix) with ESMTP id 2F76713C44B for ; Fri, 19 Oct 2007 23:15:56 +0000 (UTC) (envelope-from jhary@unsane.co.uk) Received: from [10.0.0.173] ([10.0.0.173]) (authenticated bits=0) by unsane.co.uk (8.14.0/8.14.0) with ESMTP id l9JNG2gT023181 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 20 Oct 2007 00:16:04 +0100 (BST) (envelope-from jhary@unsane.co.uk) Message-ID: <47193A96.3000102@unsane.co.uk> Date: Sat, 20 Oct 2007 00:15:34 +0100 From: Vince Hoffman User-Agent: Thunderbird 1.5.0.13 (Windows/20070809) MIME-Version: 1.0 To: "Marc G. Fournier" References: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> In-Reply-To: <6C9CF4C3635197B3CBED0D78@ganymede.hub.org> X-Enigmail-Version: 0.94.1.1 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: IPv6 <-> NAT <-> IPv4 ... possible? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 23:15:56 -0000 Marc G. Fournier wrote: > > Could I hide an IPv6 network behind NAT? I don't know if that is even possible > ... the IPv6 IPs would be private (equiv to 192.168.x.x) ... basically, none of > the hosts behind NAT need a public IP, *but* I may end up with more then 256 > hosts, so was wondering if using IPv6 behind the NAT would be 'simplier' ... > > If possible, pointers to docs to read would be appreciated ... > There was some talk about this on NANOG recently. I believe it's known as NAT-PT although http://www.getipv6.info/index.php/Educating_Yourself_about_IPv6 says that "IETF has deprecated NAT-PT to historical status, it does work and some people feel that it is superior to 6to4 Relay" (havent tried it myself) I believe KAME had an implementation for BSD in their snapkit, and google picks up a few hits on it like http://mucc.mahidol.ac.th/~ccvvs/KAME-NAT-PT-ENG.htm Hope thats useful, Vince > Thanks ... > > ---- > Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) > Email . scrappy@hub.org MSN . scrappy@hub.org > Yahoo . yscrappy Skype: hub.org ICQ . 7615664 _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 23:51:15 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7FBA616A468 for ; Fri, 19 Oct 2007 23:51:15 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay00.pair.com (relay00.pair.com [209.68.5.9]) by mx1.freebsd.org (Postfix) with SMTP id F1E5613C44B for ; Fri, 19 Oct 2007 23:51:13 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 85318 invoked from network); 19 Oct 2007 23:24:32 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 19 Oct 2007 23:24:32 -0000 X-pair-Authenticated: 209.68.2.70 Date: Fri, 19 Oct 2007 18:24:30 -0500 (CDT) From: Mike Silbersack To: Garrett Cooper In-Reply-To: Message-ID: <20071019182349.J97691@odysseus.silby.com> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 23:51:15 -0000 On Fri, 19 Oct 2007, Garrett Cooper wrote: > Hi, > In an effort to connect my 2 machines up -- the FreeBSD 8-CURRENT and > the Windows box, for filesharing via SMB I've installed samba3 and done that > song and dance to get things to work. The really weird thing is that my 2 > machines will talk via ICMP with one another, but not via TCP and/or UDP > (connections time out). Thinking that it was just a samba3 issue, I tried ssh > as well (Cygwin installed), and ssh connections (Windows to FreeBSD) fails > with connection timeouts as well. > Both machines have Marvell onboard chipsets and will communicate with > my Mac OSX 10.4.9 iBook (has a Broadcom chipset) without issue (in fact > that's what I'm using as my 'bridge' right now). I tried also using an SMB > client via my Xbox but that failed as well (then again the XBMC SMB client > tended to be really quirky if setup incorrectly). > I'm not sure where to start, so if there are any ideas I'd be more > than happy to hear them. This issue has been occurring from 7-CURRENT built > in late September to 8-CURRENT built 6 days ago. > Thanks, > -Garrett Just to clarify, how are the two hooked together? Is it over gigabit switch, a 10mbps hub, or directly cabled together? -Mike From owner-freebsd-net@FreeBSD.ORG Fri Oct 19 23:55:41 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 93FC416A41A for ; Fri, 19 Oct 2007 23:55:41 +0000 (UTC) (envelope-from karels@redrock.karels.net) Received: from redrock.karels.net (redrock.karels.net [206.196.45.2]) by mx1.freebsd.org (Postfix) with ESMTP id 3642713C455 for ; Fri, 19 Oct 2007 23:55:40 +0000 (UTC) (envelope-from karels@redrock.karels.net) Received: from redrock.karels.net (localhost.karels.net [127.0.0.1]) by redrock.karels.net (8.13.8/8.13.6) with ESMTP id l9JNtd3B069594; Fri, 19 Oct 2007 18:55:39 -0500 (CDT) (envelope-from karels@redrock.karels.net) Message-Id: <200710192355.l9JNtd3B069594@redrock.karels.net> To: Sten Daniel Soersdal From: Mike Karels In-reply-to: Your message of Sat, 20 Oct 2007 00:34:58 +0200. <47193112.4030701@gmail.com> Date: Fri, 19 Oct 2007 18:55:39 -0500 Sender: karels@karels.net Cc: Len Gross , freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: karels@karels.net List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2007 23:55:41 -0000 > Len Gross wrote: > > Thanks so much for the response. Here is some additional information. > > > > I'm trying to emulate an RF network where there are colisions (e.g. "Aloha" > > type protocol) so I actually need collisions! I had forgotten that modern > > hardware > > essentially eliminated them. So, lets say I can find/use an "old hub", > > can I control the number of retries? Maybe I have to find some old NICs and > > old drivers? > That would be very NIC specific. Retries are done in NIC hardware as far > as i know. The last NICs that I remember with control over retries were some of the original 3Com NICs. They supported only 10Base5, the original thick coax Ethernet (remember vampire taps?). They plugged into a Unibus on a VAX, or a PDP-11 I suppose. I think they were about $3000 each at the time. Mike From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 00:00:18 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE01F16A421 for ; Sat, 20 Oct 2007 00:00:18 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outA.internet-mail-service.net (outA.internet-mail-service.net [216.240.47.224]) by mx1.freebsd.org (Postfix) with ESMTP id 9585C13C459 for ; Sat, 20 Oct 2007 00:00:17 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Fri, 19 Oct 2007 17:00:17 -0700 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (nat.ironport.com [63.251.108.100]) by idiom.com (Postfix) with ESMTP id 9F70E12673F; Fri, 19 Oct 2007 17:00:16 -0700 (PDT) Message-ID: <47194526.7080200@elischer.org> Date: Fri, 19 Oct 2007 17:00:38 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Sten Daniel Soersdal References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> <20071018082056.GW39759@funkthat.com> <27cb3ada0710181842x4d214d31ob4f474ff790355b8@mail.gmail.com> <47193112.4030701@gmail.com> In-Reply-To: <47193112.4030701@gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: Len Gross , John-Mark Gurney , freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 00:00:18 -0000 Sten Daniel Soersdal wrote: > Len Gross wrote: >> Thanks so much for the response. Here is some additional information. >> >> I'm trying to emulate an RF network where there are colisions (e.g. >> "Aloha" >> type protocol) so I actually need collisions! I had forgotten that >> modern >> hardware >> essentially eliminated them. So, lets say I can find/use an "old hub", >> can I control the number of retries? Maybe I have to find some old >> NICs and >> old drivers? > > That would be very NIC specific. Retries are done in NIC hardware as far > as i know. > > All you need to do to get some collisions is to set the rates to > half-duplex on both sides (hubs were half-duplex). Hubs with lot's of > traffic between other hosts would definitely produce more collisions. > > Modern hardware didn't eliminate them. Full-Duplex medium did. > There is a broad range of full-duplex RF systems too :) one thing I'd like, that is related, is that if you disconnect a link for 3 hours it shouldn't sit there using 3000 Mbufs in its output queue.. how about discarding them.... currently they sit in the queue forwever as far as I can see. certainly in the em or bce drivers they do.. > From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 00:41:07 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D782D16A417 for ; Sat, 20 Oct 2007 00:41:07 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout4.cac.washington.edu (mxout4.cac.washington.edu [140.142.33.19]) by mx1.freebsd.org (Postfix) with ESMTP id 981B613C45B for ; Sat, 20 Oct 2007 00:41:07 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout4.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9K0f7M6006766 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Fri, 19 Oct 2007 17:41:07 -0700 X-Auth-Received: from dzihan.cs.washington.edu (dzihan.cs.washington.edu [128.208.4.96]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9K0f5h4019116 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 19 Oct 2007 17:41:06 -0700 Message-ID: <47194EA1.8000402@u.washington.edu> Date: Fri, 19 Oct 2007 17:41:05 -0700 From: Garrett Cooper User-Agent: Thunderbird 2.0.0.6 (X11/20071003) MIME-Version: 1.0 To: Mike Silbersack References: <20071019182349.J97691@odysseus.silby.com> In-Reply-To: <20071019182349.J97691@odysseus.silby.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.10.19.171428 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 00:41:07 -0000 Mike Silbersack wrote: > > On Fri, 19 Oct 2007, Garrett Cooper wrote: > >> Hi, >> In an effort to connect my 2 machines up -- the FreeBSD 8-CURRENT >> and the Windows box, for filesharing via SMB I've installed samba3 >> and done that song and dance to get things to work. The really weird >> thing is that my 2 machines will talk via ICMP with one another, but >> not via TCP and/or UDP (connections time out). Thinking that it was >> just a samba3 issue, I tried ssh as well (Cygwin installed), and ssh >> connections (Windows to FreeBSD) fails with connection timeouts as well. >> Both machines have Marvell onboard chipsets and will communicate >> with my Mac OSX 10.4.9 iBook (has a Broadcom chipset) without issue >> (in fact that's what I'm using as my 'bridge' right now). I tried >> also using an SMB client via my Xbox but that failed as well (then >> again the XBMC SMB client tended to be really quirky if setup >> incorrectly). >> I'm not sure where to start, so if there are any ideas I'd be >> more than happy to hear them. This issue has been occurring from >> 7-CURRENT built in late September to 8-CURRENT built 6 days ago. >> Thanks, >> -Garrett > > Just to clarify, how are the two hooked together? Is it over gigabit > switch, a 10mbps hub, or directly cabled together? > > -Mike Sure. They're both connected over a gigabit switch, but the Windows driver's kind of sketchy because it keeps on switching between 100MBit and 1GBit. I haven't really paid that much attention to what speed the FreeBSD msk driver is registering at. -Garrett From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 00:43:05 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5F43A16A418 for ; Sat, 20 Oct 2007 00:43:05 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout7.cac.washington.edu (mxout7.cac.washington.edu [140.142.32.178]) by mx1.freebsd.org (Postfix) with ESMTP id 1DB2613C442 for ; Sat, 20 Oct 2007 00:43:05 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout7.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9K0h4Yr005774 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Fri, 19 Oct 2007 17:43:04 -0700 X-Auth-Received: from dzihan.cs.washington.edu (dzihan.cs.washington.edu [128.208.4.96]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id l9K0h4EC019241 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 19 Oct 2007 17:43:04 -0700 Message-ID: <47194F18.3010303@u.washington.edu> Date: Fri, 19 Oct 2007 17:43:04 -0700 From: Garrett Cooper User-Agent: Thunderbird 2.0.0.6 (X11/20071003) MIME-Version: 1.0 To: Mike Silbersack References: <20071019182349.J97691@odysseus.silby.com> In-Reply-To: <20071019182349.J97691@odysseus.silby.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.10.19.172325 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 00:43:05 -0000 Mike Silbersack wrote: > > On Fri, 19 Oct 2007, Garrett Cooper wrote: > >> Hi, >> In an effort to connect my 2 machines up -- the FreeBSD 8-CURRENT >> and the Windows box, for filesharing via SMB I've installed samba3 >> and done that song and dance to get things to work. The really weird >> thing is that my 2 machines will talk via ICMP with one another, but >> not via TCP and/or UDP (connections time out). Thinking that it was >> just a samba3 issue, I tried ssh as well (Cygwin installed), and ssh >> connections (Windows to FreeBSD) fails with connection timeouts as well. >> Both machines have Marvell onboard chipsets and will communicate >> with my Mac OSX 10.4.9 iBook (has a Broadcom chipset) without issue >> (in fact that's what I'm using as my 'bridge' right now). I tried >> also using an SMB client via my Xbox but that failed as well (then >> again the XBMC SMB client tended to be really quirky if setup >> incorrectly). >> I'm not sure where to start, so if there are any ideas I'd be >> more than happy to hear them. This issue has been occurring from >> 7-CURRENT built in late September to 8-CURRENT built 6 days ago. >> Thanks, >> -Garrett > > Just to clarify, how are the two hooked together? Is it over gigabit > switch, a 10mbps hub, or directly cabled together? > > -Mike To make things more interesting, both machines are hooked up using private IPs, and neither machine has a true router setup (I did put in a dummy gateway though because the Windows machine and the FreeBSD machines weren't setting the default route to the private subnet properly). -Garrett From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 01:10:31 2007 Return-Path: Delivered-To: Net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B603216A41A; Sat, 20 Oct 2007 01:10:31 +0000 (UTC) (envelope-from yds@CoolRat.org) Received: from dppl.com (orion.dppl.net [216.182.10.230]) by mx1.freebsd.org (Postfix) with ESMTP id 453C113C459; Sat, 20 Oct 2007 01:10:31 +0000 (UTC) (envelope-from yds@CoolRat.org) Received: from [192.168.1.84] (c-68-83-224-175.hsd1.nj.comcast.net [68.83.224.175]) (AUTH: PLAIN yds, SSL: TLSv1/SSLv3,256bits,AES256-SHA) by dppl.com with esmtp; Fri, 19 Oct 2007 21:00:24 -0400 id 06432C14.0000000047195328.00009989 Date: Fri, 19 Oct 2007 21:01:54 -0400 From: Yarema To: Net@FreeBSD.org Message-ID: X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: yongari@FreeBSD.org Subject: if_re Fatal trap 12: page fault while in kernel mode X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 01:10:31 -0000 I'm running a pair of VIA C7 mini-ITX carp(4)ed 6.2-STABLE boxes with one if_vr and three if_re RealTek 8169S Single-chip Gigabit Ethernet NICs. vr is used for pfsync and all re interfaces have carp. I'm unable to run any kernel newer than April 11th, 2007 without getting something along the lines of: Fatal trap 12: page fault while in kernel mode fault virtual address = 0x31 fault code = supervisor read, page not present instruction pointer = 0x20:0xc0658773 stack pointer = 0x28:0xe374bc28 frame pointer = 0x28:0xe374bc7c code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 11 (swi1: net) trap number = 12 panic: page fault Uptime: 32s usually within a minute of going multiuser. Single user is stable and allows me to roll back to the good Apr 11th kernel. I've tried building a newer kernel using /sys/dev/re/if_re.c Revision 1.46.2.26 committed on Apr 11th with the same results. Kernel panic within a minute of bootup, but rock solid in single user. --On Friday, October 19, 2007 11:19:40 +0300 Vlad GALU wrote: > I recall experiencing some crashes with ZERO_COPY_SOCKETS on > RELENG_6 and it was related to the VM subsystem. Tor Egge may have a > better idea about the problem and whether it was fixed in RELENG_7 or > not. I do have ZERO_COPY_SOCKETS enabled. Could this be relevant? I've put up the the dmesg.boot, kernel, vmcore, panic.txt and the KERNCONF files at http://yds.CoolRat.org/C787D3NG/ -- Yarema From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 02:22:18 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AA3B416A418 for ; Sat, 20 Oct 2007 02:22:18 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay00.pair.com (relay00.pair.com [209.68.5.9]) by mx1.freebsd.org (Postfix) with SMTP id 250E413C457 for ; Sat, 20 Oct 2007 02:22:17 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 14755 invoked from network); 20 Oct 2007 02:22:16 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 20 Oct 2007 02:22:16 -0000 X-pair-Authenticated: 209.68.2.70 Date: Fri, 19 Oct 2007 21:22:16 -0500 (CDT) From: Mike Silbersack To: Garrett Cooper In-Reply-To: <47194EA1.8000402@u.washington.edu> Message-ID: <20071019212012.C97691@odysseus.silby.com> References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 02:22:18 -0000 On Fri, 19 Oct 2007, Garrett Cooper wrote: >> Just to clarify, how are the two hooked together? Is it over gigabit >> switch, a 10mbps hub, or directly cabled together? >> >> -Mike > > Sure. They're both connected over a gigabit switch, but the Windows > driver's kind of sketchy because it keeps on switching between 100MBit and > 1GBit. I haven't really paid that much attention to what speed the FreeBSD > msk driver is registering at. > -Garrett Ah ha! I had the flopping between 100mbps and 1gbps problem with some Intel cards once - some of the machines in the lab were fine, others kept switching back and forth. We eventually narrowed it down to the cables we had hand-made; some of them just weren't up to snuff, and the NIC apparently decided that it had to go back down to 100. I think you should switch your gigabit switch out for a 100mbps switch and see if the network becomes more reliable. -Mike From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 07:32:11 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0CB0A16A417 for ; Sat, 20 Oct 2007 07:32:11 +0000 (UTC) (envelope-from kris@FreeBSD.org) Received: from weak.local (hub.freebsd.org [IPv6:2001:4f8:fff6::36]) by mx1.freebsd.org (Postfix) with ESMTP id 7C9BB13C44B; Sat, 20 Oct 2007 07:32:09 +0000 (UTC) (envelope-from kris@FreeBSD.org) Message-ID: <4719AEF8.6070805@FreeBSD.org> Date: Sat, 20 Oct 2007 10:32:08 +0300 From: Kris Kennaway User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Vlad GALU References: <15756.67.45.62.107.1192764733.squirrel@www.noacks.org> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: noackjr@alumni.rice.edu, net@freebsd.org Subject: Re: accept filters and zero copy sockets X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 07:32:11 -0000 Vlad GALU wrote: > On 10/19/07, Jonathan Noack wrote: >> I'm in the process of upgrading my web/database/nfs/jack-of-all-trades box >> from 6.2 to RELENG_7. I figured now would be a good time to clean up my >> kernel config files. I have the following in my old kernel config: >> >> # Statically Link in accept filters >> options ACCEPT_FILTER_DATA >> options ACCEPT_FILTER_HTTP >> >> # Zero copy sockets support. This enables "zero copy" for sending and >> # receiving data via a socket. The send side works for any type of NIC, >> # the receive side only works for NICs that support MTUs greater than the >> # page size of your architecture and that support header splitting. See >> # zero_copy(9) for more details. >> options ZERO_COPY_SOCKETS > > I recall experiencing some crashes with ZERO_COPY_SOCKETS on > RELENG_6 and it was related to the VM subsystem. Tor Egge may have a > better idea about the problem and whether it was fixed in RELENG_7 or > not. I think it is believed to be fixed in 7.0, so it is worth testing. Kris From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 07:58:02 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5800E16A41B for ; Sat, 20 Oct 2007 07:58:02 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from loki.netlab.sk (ns1.netlab.sk [84.245.65.2]) by mx1.freebsd.org (Postfix) with ESMTP id E446513C474 for ; Sat, 20 Oct 2007 07:58:01 +0000 (UTC) (envelope-from freebsd-net@dino.sk) Received: from lex.dino.sk (home.dino.sk [84.245.95.252]) (AUTH: PLAIN milan, TLS: TLSv1/SSLv3,256bits,AES256-SHA) by loki.netlab.sk with esmtp; Sat, 20 Oct 2007 09:54:22 +0200 id 0002E033.4719B42E.00002D72 From: Milan Obuch To: freebsd-net@freebsd.org Date: Sat, 20 Oct 2007 09:57:13 +0200 User-Agent: KMail/1.9.6 References: <2385.62.242.232.132.1192696439.squirrel@www.enableit.dk> <200710182255.48379.freebsd-net@dino.sk> <200710190508.50040.max@love2party.net> In-Reply-To: <200710190508.50040.max@love2party.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200710200957.15087.freebsd-net@dino.sk> Subject: Re: packet loss with carp on 6.2 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 07:58:02 -0000 On Friday 19 October 2007 05:08:43 Max Laier wrote: > On Thursday 18 October 2007, Milan Obuch wrote: > > On Thursday 18 October 2007 14:32:13 Milan Obuch wrote: > > > On Thursday 18 October 2007 12:50:19 Max Laier wrote: [ snip ] > > > > > > I am experiencing something similar. I am trying to put together two > > > PC firewall with failover. My rc.conf has following lines > > > > [ snip ] > > > > I did even simpler test: one firewall with one switch. > > > > ifconfig fxp0 10.0.0.1/26 > > ifconfig carp0 create > > ifconfig carp0 10.0.0.2/26 vhid ... pass ... > > > > switch has IP 10.0.0.3 > > > > ping -S 10.0.0.1 10.0.0.3 works, no loss. > > ping -S 10.0.0.2 10.0.0.3 does not work well, ~ 80 % packet loss. > > > > This seems unusable to me. I see no simpler test right now... > > Can you do a tcpdump on fxp0 during this test and analyse if the loss is > in received or send packets. It is possible that the switch is the > culprit here. > I did some more tests, and there seems to be an issue with switch. Making the same tests against host connected via the very same switch does not fail in any way. I will try to solve the issue with vendor. Now I am looking for some workaround - we can't swap the switch for another, so we need to live with it. > > Maybe you can provide me with the pcap of this off list. Make sure to > start dumpping *before* bringing up carp. i.e. > > tcpdump -s 0 -i fxp0 -w carp_ping.pcap & > ifconfig carp0 vhid ... > > ping ... > > fg ^C > > Thanks. I will try it and will send it to you privately, just now I need a workaround so I can use carp in our network to full benefit. Even the packet loss detected does not actually come from real network outage, it is real nightmare for network stuff. Regards, Milan -- No need to mail me directly. Just reply to mailing list, please. From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 09:22:19 2007 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C8E5B16A419 for ; Sat, 20 Oct 2007 09:22:19 +0000 (UTC) (envelope-from wmoran@collaborativefusion.com) Received: from mx00.pub.collaborativefusion.com (mx00.pub.collaborativefusion.com [206.210.89.199]) by mx1.freebsd.org (Postfix) with ESMTP id 8B18413C47E for ; Sat, 20 Oct 2007 09:22:15 +0000 (UTC) (envelope-from wmoran@collaborativefusion.com) Received: from working (c-71-60-127-199.hsd1.pa.comcast.net [71.60.127.199]) (AUTH: LOGIN wmoran, SSL: TLSv1/SSLv3,256bits,AES256-SHA) by wingspan with esmtp; Sat, 20 Oct 2007 05:11:50 -0400 id 00056407.4719C656.00016E97 Date: Sat, 20 Oct 2007 05:11:49 -0400 From: Bill Moran To: Mike Silbersack Message-Id: <20071020051149.672a9913.wmoran@collaborativefusion.com> In-Reply-To: <20071019212012.C97691@odysseus.silby.com> References: <20071019182349.J97691@odysseus.silby.com> <47194EA1.8000402@u.washington.edu> <20071019212012.C97691@odysseus.silby.com> Organization: Collaborative Fusion Inc. X-Mailer: Sylpheed 2.4.7 (GTK+ 2.10.14; i386-portbld-freebsd6.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: Garrett Cooper , net@freebsd.org Subject: Re: Marvell chipsets on 8-CURRENT and XP x64 won't talk with one another X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 09:22:19 -0000 Mike Silbersack wrote: > > > On Fri, 19 Oct 2007, Garrett Cooper wrote: > > >> Just to clarify, how are the two hooked together? Is it over gigabit > >> switch, a 10mbps hub, or directly cabled together? > >> > >> -Mike > > > > Sure. They're both connected over a gigabit switch, but the Windows > > driver's kind of sketchy because it keeps on switching between 100MBit and > > 1GBit. I haven't really paid that much attention to what speed the FreeBSD > > msk driver is registering at. > > -Garrett > > Ah ha! > > I had the flopping between 100mbps and 1gbps problem with some Intel cards > once - some of the machines in the lab were fine, others kept switching > back and forth. We eventually narrowed it down to the cables we had > hand-made; some of them just weren't up to snuff, and the NIC apparently > decided that it had to go back down to 100. > > I think you should switch your gigabit switch out for a 100mbps switch and > see if the network becomes more reliable. Better would be to: a) Fix or replace the faulty wiring. Just because it _seems_ to be OK at 100 doesn't mean it is. If it's unable to work reliably at a speed it should work at, you need to fix that. b) Force the speed/duplex on both ends. One of the ugliest networking problems I've seen is when the two ends negotiate different speeds or duplexes. It amazes me how few people are familiar with this problem and how to diagnose/fix it. -- Bill Moran Collaborative Fusion Inc. wmoran@collaborativefusion.com Phone: 412-422-3463x4023 From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 11:14:12 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 665E916A417 for ; Sat, 20 Oct 2007 11:14:12 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from fallbackmx03.syd.optusnet.com.au (fallbackmx03.syd.optusnet.com.au [211.29.133.136]) by mx1.freebsd.org (Postfix) with ESMTP id EC82913C448 for ; Sat, 20 Oct 2007 11:14:11 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail05.syd.optusnet.com.au (mail05.syd.optusnet.com.au [211.29.132.186]) by fallbackmx03.syd.optusnet.com.au (8.12.11.20060308/8.12.11) with ESMTP id l9JMg0HN003389 for ; Sat, 20 Oct 2007 08:42:00 +1000 Received: from server.vk2pj.dyndns.org (c220-239-20-82.belrs4.nsw.optusnet.com.au [220.239.20.82]) by mail05.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id l9JMft7W022464 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 20 Oct 2007 08:41:56 +1000 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.1/8.14.1) with ESMTP id l9JMftEx059975; Sat, 20 Oct 2007 08:41:55 +1000 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.1/8.14.1/Submit) id l9JMftwB059974; Sat, 20 Oct 2007 08:41:55 +1000 (EST) (envelope-from peter) Date: Sat, 20 Oct 2007 08:41:55 +1000 From: Peter Jeremy To: Len Gross Message-ID: <20071019224155.GI20308@server.vk2pj.dyndns.org> References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="liOOAslEiF7prFVr" Content-Disposition: inline In-Reply-To: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 11:14:12 -0000 --liOOAslEiF7prFVr Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Oct 17, 2007 at 08:51:34PM -0700, Len Gross wrote: >I'm doing some protocol development and it is convenient to start it on >Ethernet. I will need to send a packet to the Ethernet device and only ha= ve >it be sent once, even if there is a colision. I know we've still got some hubs lying around in a backroom at work but I don't know of anything that will let you disable the retry-on-CD. Have you considered simulating the network at a slightly higher lever: Use ipfw pipes or similar to simulate packet loss (either set a queue length of 1 or probabilistically). This could be done either as a bridge or by tunneling your protocol over IP or UDP. --=20 Peter --liOOAslEiF7prFVr Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHGTKz/opHv/APuIcRArusAJ4pMIwKZcAFLFNwyMU3uZfv44JnzACeNiwh nAGneCdvy3oU4yYbp3MTbVI= =/kAs -----END PGP SIGNATURE----- --liOOAslEiF7prFVr-- From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 13:20:38 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0AC2B16A418 for ; Sat, 20 Oct 2007 13:20:38 +0000 (UTC) (envelope-from ndenev@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.191]) by mx1.freebsd.org (Postfix) with ESMTP id 4B73213C461 for ; Sat, 20 Oct 2007 13:20:35 +0000 (UTC) (envelope-from ndenev@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so625692rvb for ; Sat, 20 Oct 2007 06:20:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; bh=6k/3RNwrbLrdbGBpoLler4O/HUGGQOjrN6hyXPfTrCE=; b=fKqkHoupxUosdpLI78O0+fY0gkJ0/rj1/Rk1Udhxbe/YBkGDUaSB4mL4gEE9+FIRsafZtrwewjxALQ5wNWmI32yC24z/OJArhQLI8nUJrdjySXvLWwZU1uT3Wb1ih2P3CZ1+XBVWf6aLdtUsxMdI16qwm7hcLoRT3AwDtUrRNlc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=JcnkZx394F5bECLAK9YOZExlwBNUZ3GvIq5glH1xs+aZwGAInE5B6Yj1KZXsjvV8hu43ypbTBhdN4v3mpSO+6BYrXBlaDX6MfytiCNG7NfcK8tdUobIz96ga6xcx9DSmPanHyMERMz6QmpZrBw4o7nUCdA2t31DrFErJRYsyCYo= Received: by 10.141.162.16 with SMTP id p16mr1538231rvo.1192886434392; Sat, 20 Oct 2007 06:20:34 -0700 (PDT) Received: by 10.140.192.2 with HTTP; Sat, 20 Oct 2007 06:20:34 -0700 (PDT) Message-ID: <2e77fc10710200620q4d6d33d5ta389d1ea32bf8417@mail.gmail.com> Date: Sat, 20 Oct 2007 16:20:34 +0300 From: "Niki Denev" Sender: ndenev@gmail.com To: Netan In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <4718EDF1.7080200@seclark.us> X-Google-Sender-Auth: fcc50a0f061981e1 Cc: freebsd-net@freebsd.org Subject: Re: Dump kernel routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 13:20:38 -0000 On 10/20/07, Netan wrote: > On 10/19/07, Stephen Clark wrote: > > > > Netan wrote: > > > > >Hello > > > > > >I am using the CURRENT release. I wish to dump the kernel routing table. > > I > > >think there was a sysctl interface in 4.x FreeBSD release to print it > > from > > >userspace. Is there a way to do it now ?.. > > > > > >Sunny > > > > > > > > netstat -rn > > > > All these all the rtentry's in the radix trie ? Or they distilled during > netstat -rn output ? > > Sunny > > -- > > > > "They that give up essential liberty to obtain temporary safety, > > deserve neither liberty nor safety." (Ben Franklin) > > > > "The course of history shows that as a government grows, liberty > > decreases." (Thomas Jefferson) > > > > > > > > Maybe you need "-A" switch? netstat -r [-AanW] [-f address_family] [-M core] [-N system] Display the contents of all routing tables, or a routing table for a particular address_family. If -A is also present, show the contents of the internal Patricia tree structures; used for debugging. If -a is also present, show protocol-cloned routes (routes generated by an RTF_PRCLONING parent route); normally these routes are not shown. When -W is also present, show the path MTU for each route, and print interface names with a wider field size. hth, niki From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 16:56:24 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B3F9216A41B for ; Sat, 20 Oct 2007 16:56:24 +0000 (UTC) (envelope-from rermilov@team.vega.ru) Received: from mail.vega.ru (mx1.vega.ru [87.242.77.163]) by mx1.freebsd.org (Postfix) with ESMTP id DCF8E13C459 for ; Sat, 20 Oct 2007 16:56:09 +0000 (UTC) (envelope-from rermilov@team.vega.ru) Received: from [87.242.97.68] (port=59262 helo=edoofus.dev.vega.ru) by mail.vega.ru with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.68 (FreeBSD)) (envelope-from ) id 1IjH6x-000Oux-Lu; Sat, 20 Oct 2007 16:23:39 +0000 Received: from edoofus.dev.vega.ru (localhost [127.0.0.1]) by edoofus.dev.vega.ru (8.14.1/8.14.1) with ESMTP id l9KGMoDp001515; Sat, 20 Oct 2007 20:22:50 +0400 (MSD) (envelope-from rermilov@team.vega.ru) Received: (from ru@localhost) by edoofus.dev.vega.ru (8.14.1/8.14.1/Submit) id l9KGMnbx001490; Sat, 20 Oct 2007 20:22:49 +0400 (MSD) (envelope-from rermilov@team.vega.ru) X-Authentication-Warning: edoofus.dev.vega.ru: ru set sender to rermilov@team.vega.ru using -f Date: Sat, 20 Oct 2007 20:22:48 +0400 From: Ruslan Ermilov To: Netan Message-ID: <20071020162248.GA92212@team.vega.ru> References: <4718EDF1.7080200@seclark.us> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.16 (2007-06-09) Cc: Stephen.Clark@seclark.us, freebsd-net@freebsd.org Subject: Re: Dump kernel routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 16:56:24 -0000 On Fri, Oct 19, 2007 at 02:05:02PM -0700, Netan wrote: > On 10/19/07, Stephen Clark wrote: > > > > Netan wrote: > > > > >Hello > > > > > >I am using the CURRENT release. I wish to dump the kernel routing table. > > I > > >think there was a sysctl interface in 4.x FreeBSD release to print it > > from > > >userspace. Is there a way to do it now ?.. > > > > > >Sunny > > >_______________________________________________ > > >freebsd-net@freebsd.org mailing list > > >http://lists.freebsd.org/mailman/listinfo/freebsd-net > > >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > > > > > > > > > netstat -rn > > > > All these all the rtentry's in the radix trie ? Or they distilled during > netstat -rn output ? > Try the undocumented "route -vnd flush" command. Cheers, -- Ruslan Ermilov ru@FreeBSD.org FreeBSD committer From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 16:59:36 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 450D616A420 for ; Sat, 20 Oct 2007 16:59:36 +0000 (UTC) (envelope-from Hartmut.Brandt@dlr.de) Received: from smtp-1.dlr.de (smtp-1.dlr.de [195.37.61.185]) by mx1.freebsd.org (Postfix) with ESMTP id C9AE813C467 for ; Sat, 20 Oct 2007 16:59:35 +0000 (UTC) (envelope-from Hartmut.Brandt@dlr.de) Received: from knop-beagle.kn.op.dlr.de ([129.247.173.6]) by smtp-1.dlr.de over TLS secured channel with Microsoft SMTPSVC(6.0.3790.1830); Sat, 20 Oct 2007 18:35:17 +0200 Date: Sat, 20 Oct 2007 18:35:17 +0200 (CEST) From: Harti Brandt X-X-Sender: brandt_h@knop-beagle.kn.op.dlr.de To: Len Gross In-Reply-To: <20071019224155.GI20308@server.vk2pj.dyndns.org> Message-ID: <20071020183000.E8153@knop-beagle.kn.op.dlr.de> References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> <20071019224155.GI20308@server.vk2pj.dyndns.org> X-OpenPGP-Key: harti@freebsd.org MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-OriginalArrivalTime: 20 Oct 2007 16:35:17.0350 (UTC) FILETIME=[329F7860:01C81337] Cc: freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Harti Brandt List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 16:59:36 -0000 On Sat, 20 Oct 2007, Peter Jeremy wrote: PJ>On Wed, Oct 17, 2007 at 08:51:34PM -0700, Len Gross wrote: PJ>>I'm doing some protocol development and it is convenient to start it on PJ>>Ethernet. I will need to send a packet to the Ethernet device and only have PJ>>it be sent once, even if there is a colision. PJ> PJ>I know we've still got some hubs lying around in a backroom at work PJ>but I don't know of anything that will let you disable the retry-on-CD. PJ> PJ>Have you considered simulating the network at a slightly higher lever: PJ>Use ipfw pipes or similar to simulate packet loss (either set a queue PJ>length of 1 or probabilistically). This could be done either as a PJ>bridge or by tunneling your protocol over IP or UDP. Some years ago I wrote a netgraph node that connected to ethernet nodes and simulated a wireless broadcast channel including collisions, timevariable delay, loss and shaping. Can be done in a couple of hundreds of lines and easily allows >100MBit/sec with gigabit ethernet. The ethernet is just the physical transport medium for the packets and does not take part in the emulation. All that was controlled by bsnmpd and a remote command line tool and/or Java-GUI. Unfortunately I cannot release this (yet) due to licensing... harti From owner-freebsd-net@FreeBSD.ORG Sat Oct 20 18:08:10 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5D90C16A41A for ; Sat, 20 Oct 2007 18:08:10 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.228]) by mx1.freebsd.org (Postfix) with ESMTP id 1BA7B13C455 for ; Sat, 20 Oct 2007 18:08:09 +0000 (UTC) (envelope-from sandiegobiker@gmail.com) Received: by wx-out-0506.google.com with SMTP id i29so765103wxd for ; Sat, 20 Oct 2007 11:08:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=Ucdso7NKFzhTau38KmYkkoWv9h94tBW07X9ANuu2ilU=; b=IGntj9/4MvqMXjYIcjq+l3a3IVp6ZW2PdpD8BSYCTnA5rW0qp0VnkU7IuZnxb2bN33pOnUOy2fYBj73lsfBkoO9ScF9QI+2O144MwFHAI3p9HzilQna8+V/G1GYdLyc9b5HB81kYcpOA9ls98hO3mIp6/vwj0iouppUrWnlLKEg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=XCiA0e3YPYpdxVR5QqdFyOI4/+ofAuxxzCkFAwm2L/N+zWNxYmM+XSRX9wQdG2tSjkgv8LnPxRiezYoHplgWVzBsVXKbFtdytWZJNlg7/8pXjOp/xgbwOqot+eQynG1yQPhlEkerXkqOLeaaMLJBOcPAfFUXaDYJJy3SiaID0ZM= Received: by 10.70.61.3 with SMTP id j3mr5357637wxa.1192903688746; Sat, 20 Oct 2007 11:08:08 -0700 (PDT) Received: by 10.70.19.9 with HTTP; Sat, 20 Oct 2007 11:08:08 -0700 (PDT) Message-ID: <27cb3ada0710201108l5e717fdbhc9fab610cb2a047c@mail.gmail.com> Date: Sat, 20 Oct 2007 11:08:08 -0700 From: "Len Gross" To: "Harti Brandt" In-Reply-To: <20071020183000.E8153@knop-beagle.kn.op.dlr.de> MIME-Version: 1.0 References: <27cb3ada0710172051t536a4d11pfdfdb079ebd98932@mail.gmail.com> <20071019224155.GI20308@server.vk2pj.dyndns.org> <20071020183000.E8153@knop-beagle.kn.op.dlr.de> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: Disable Exponential Backoff (retry) on Ethernet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2007 18:08:10 -0000 If I have to, I will employ some form of simulation of collisions, but that will have to be done carefully in order to get the effect of collsions beteen multiple stations without messing up timing. I REALLY wanted to have the PHY handle it. Usng half duplex and some old hubs (if I can find one) would get collisions, but the retry would create other problems. So, looks like "simulated" collisions will be the way to go. BTW: I'm using Netgraph - very cool stuff. --Len On 10/20/07, Harti Brandt wrote: > > On Sat, 20 Oct 2007, Peter Jeremy wrote: > > PJ>On Wed, Oct 17, 2007 at 08:51:34PM -0700, Len Gross wrote: > PJ>>I'm doing some protocol development and it is convenient to start it > on > PJ>>Ethernet. I will need to send a packet to the Ethernet device and > only have > PJ>>it be sent once, even if there is a colision. > PJ> > PJ>I know we've still got some hubs lying around in a backroom at work > PJ>but I don't know of anything that will let you disable the retry-on-CD. > PJ> > PJ>Have you considered simulating the network at a slightly higher lever: > PJ>Use ipfw pipes or similar to simulate packet loss (either set a queue > PJ>length of 1 or probabilistically). This could be done either as a > PJ>bridge or by tunneling your protocol over IP or UDP. > > Some years ago I wrote a netgraph node that connected to ethernet nodes > and simulated a wireless broadcast channel including collisions, > timevariable delay, loss and shaping. Can be done in a couple of hundreds > of lines and easily allows >100MBit/sec with gigabit ethernet. The > ethernet is just the physical transport medium for the packets and does > not take part in the emulation. All that was controlled by bsnmpd and a > remote command line tool and/or Java-GUI. Unfortunately I cannot release > this (yet) due to licensing... > > harti >