From owner-freebsd-questions@FreeBSD.ORG Fri Jun 22 18:01:23 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 280BB16A400 for ; Fri, 22 Jun 2007 18:01:23 +0000 (UTC) (envelope-from extazyti@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.249]) by mx1.freebsd.org (Postfix) with ESMTP id D53A513C468 for ; Fri, 22 Jun 2007 18:01:22 +0000 (UTC) (envelope-from extazyti@gmail.com) Received: by an-out-0708.google.com with SMTP id c14so229573anc for ; Fri, 22 Jun 2007 11:01:22 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=EgwbDJYuuv5w6ZEd1op3LphIqXotIrcYciLXG1CFyPt8GiX3zKBx/Pd5Khv/T6927dDMqK56zLjo3tTWT5yKY2OXyBbXU5aThP9+GDaZeMZZkPtgR31W9t7zd+Vzltstue8+OfpMTmiB4z6dFWnpeRF9JAdFlAjCvZFuQAFDNHo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=INze6WMvPw+cHnuGJ+EbrOdoEBn31TA0CmMp4hW55AsEOwbefdqV3ho4FlaTvRj5DRY2nOzafxkV/ErJACewAaLStdr+5fHaCe/n9A9RXVNiF8ycd8NEGykHaCXc9Qsn79+zTmcoBiaOst/xUUhCdLFqBhYh2ZTRaE+gufj1lVo= Received: by 10.100.14.19 with SMTP id 19mr1832084ann.1182535281752; Fri, 22 Jun 2007 11:01:21 -0700 (PDT) Received: by 10.100.131.8 with HTTP; Fri, 22 Jun 2007 11:01:21 -0700 (PDT) Message-ID: <468d29450706221101w6572c8c1h6f8b5a30c9331437@mail.gmail.com> Date: Fri, 22 Jun 2007 21:01:21 +0300 From: ExTaZyTi To: freebsd-questions@freebsd.org In-Reply-To: <44hcp0dqe8.fsf@be-well.ilk.org> MIME-Version: 1.0 References: <468d29450706210715m31c112acs1936dabf1b287d82@mail.gmail.com> <44hcp0dqe8.fsf@be-well.ilk.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: Network Problem in FreeBSD 6.2-RELEASE-p5 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jun 2007 18:01:23 -0000 Is the FreeBSD machine performing NAT for the Windows box? extazyti: yes with PF firewall. (But I don't have this problem before re-build my world+kernel (my last fbsd was fbsd6.2-STABLE. But this problem exist again in fbsd6.2-STABLE when I have build option ot drop TCP+SYN and have some bug..I donk know what exactly)) Are you saying that this is a second problem? extazyti: YES. because I think limmiting my connectins is normal when I have "net.inet.tcp.blackhole=2" but Now I haven't this sysctl option and this is problem again. How are you doing the scan, and how do you know the ports are not really open? extazyti: I use PortScan with a delay MS - 20 (He sends TCP4-sockets) and ports It's not really open because there is no program to open random ports with this values and I use the netstat command. Aslo this problem was again before time when I have bugged again my kernel with TCP_DROP SYN+FIN in my kernel. Which sysctl? extazyti: ALL, I put "#" before all texts in my sysctl.conf and reboot my system. Are you sure that the sysctl value changed? extazyti: I think yes..after restart and I changed special net.inet.tcp.blackhole to "0". Did you look at it after changing it to make sure it really shows up as different? extazyti: No. But I think reboot changes to default this options when have "#" before all texts in /etc/sysctl.conf 2007/6/22, Lowell Gilbert : > > [lists trimmed to just -questions] > > ExTaZyTi writes: > > > I have a serious problem with my network. > > I have connected 2 PC's, 1 - FreeBSD, 2 - Windows XP. > > > > The problem is follow - My FreeBSD limmiting connections , I cannot open > > more 224 TCP4-Sockets in my Windows Box. > > When I downloading torrent file, I cannot create more connections to the > > web, and while this time I can't open for example - web sites. > > Is the FreeBSD machine performing NAT for the Windows box? > > > Tow problem who worry myself is when I scan a my freebsd box or other > > "server" for open ports its FAKE show me: 81 82 ,83 ,465,463 and other > ports > > open.. but It's FAKE .. it's not really open.. > > Are you saying that this is a second problem? > > How are you doing the scan, and how do you know the ports are not > really open? > > > I Cleared my sysctl, and test, cleared my firewall and test, re-build my > > kernel with any options changed and test again.. Just don't Work :(( > > Which sysctl? > > > I have use PF firewall and FreeBSD 6.2-RELEASE-p5. > > > > I Think this problem is from "net.inet.tcp.blackhole=2" in my sysctl > because > > it's work before i do sysctl -w net.inet.tcp.blackhole=2.. > > but when back this option to value = 0 this problem is stay there.. and > no > > restarts or re-build my kernel can fix this..or maybe be wrong to > > this supposition. Sorry for my english. > > Are you sure that the sysctl value changed? > Did you look at it after changing it to make sure it really shows up > as different? >