From owner-freebsd-ipfw@FreeBSD.ORG  Mon Dec  6 15:45:45 2004
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 37A1616A4CE; Mon,  6 Dec 2004 15:45:45 +0000 (GMT)
Received: from mx.us.army.mil (mxoutdr1.us.army.mil [143.69.242.38])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 38C2943D2F; Mon,  6 Dec 2004 15:45:44 +0000 (GMT)
	(envelope-from martes.wigglesworth@us.army.mil)
Received: from mta03.int.dr1.us.army.mil (localhost [127.0.0.1])
 by mailrouter.us.army.mil (AKO MTA - mta03 )
 with ESMTP id <0I8B00E625408K@mta03.int.dr1.us.army.mil>; Mon,
 06 Dec 2004 15:45:36 +0000 (GMT)
Received: from [192.168.3.50] ([83.170.20.46]) by mailrouter.us.army.mil
 (AKO MTA - mta03 ) with ESMTPA id <0I8B00JFS52O22@mta03.int.dr1.us.army.mil>;
 Mon, 06 Dec 2004 15:45:33 +0000 (GMT)
Date: Mon, 06 Dec 2004 18:43:52 +0300
From: martes wigglesworth <martes.wigglesworth@us.army.mil>
To: ipfw-mailings <freebsd-ipfw@freebsd.org>,
	freebsd-questions <freebsd-questions-request@freebsd.org>,
	newbies freebsd list <freebsd-newbies@freebsd.org>
Message-id: <1102347832.675.41.camel@Mobile1.276NET>
Organization: HHC 276 EN BN
MIME-version: 1.0
X-Mailer: Ximian Evolution 1.4.6
Content-type: text/plain
Content-transfer-encoding: 7BIT
Subject: Weird lockup of network traffic...
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: martes.wigglesworth@us.army.mil
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Dec 2004 15:45:45 -0000

Hello list.

I have experienced a very unusual glich, that I cannot explain.  All of
a sudden, my network router box became non-complient with internet
traffic requests. At first, I thought that it was because I had to
restart bind 8 with ndc resart, however, after restarting the service, I
still continued to recieve failed server errors.  After attempting to
ping my provider, I noticed that I came accross this message:ping:

sendto: No buffer space available
ping: sendto: No buffer space available
ping: sendto: No buffer space available
ping: sendto: No buffer space available

What does this indicate?  I am still learning, and do not have
significant experience/knowledge with any type of frame buffers, or
kernel programming.  I can only suspect that maybe my firewalling rules
clogged some sort of buffers for the kernel.  I don't really know, that
is the only thing that I can think of. I have the following firewalling
rules setup:

00098   124     8614 allow ip from any to any via lo0
00099     0        0 allow ip from 127.0.0.1 to 127.0.0.1
00100   617    69897 allow tcp from any to any dst-port 22 setup
keep-state
00102     0        0 allow udp from 0.0.0.0 to 255.255.255.255 dst-port
67,68 setup keep-state
00103     0        0 allow udp from any to any dst-port 53 via
keep-state
00104   685    79362 deny udp from any to any dst-port 137,138,513
00106     0        0 allow udp from any to any dst-port 33435-33524
keep-state
00110     0        0 allow log ip from any to { 192.168.1.0/24 or dst-ip
192.168.2.0/24 } in recv sis0
00200 15704 10185681 divert 8668 ip from any to any via sis0
00300  6267  8810869 queue 1 log ip from any to 192.168.1.0/24 out {
xmit xl0 or xmit rl0 }
00301  1715   777060 queue 2 log ip from any to 192.168.2.0/24 out {
xmit xl0 or xmit rl0 }
65535 25856 10939503 allow ip from any to any

My pipe configs are as follows:
00001: 256.000 Kbit/s    0 ms   50 sl. 0 queues (1 buckets) droptail
    mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000
00002: 128.000 Kbit/s    0 ms   50 sl. 0 queues (1 buckets) droptail
    mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000
q00001: weight 1 pipe 1   50 sl. 4 queues (64 buckets) droptail
    mask: 0x00 0x00000000/0x0000 -> 0xffffffff/0x0000
BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes
Pkt/Byte Drp
 12 ip           0.0.0.0/0        192.168.1.28/0       56     4856  0   
0   0
 15 ip           0.0.0.0/0        192.168.1.31/0      136    20860  0   
0   0
 26 ip           0.0.0.0/0        192.168.1.10/0     6294  9165950  0   
0   0
 35 ip           0.0.0.0/0        192.168.1.51/0       46     5351  0   
0   0
q00002: weight 1 pipe 2   50 sl. 4 queues (64 buckets) droptail
    mask: 0x00 0x00000000/0x0000 -> 0xffffffff/0x0000
BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes
Pkt/Byte Drp
 11 ip           0.0.0.0/0        192.168.2.27/0       29     4396  0   
0   0
 13 ip           0.0.0.0/0        192.168.2.29/0      156    62105  0   
0   0
 44 ip           0.0.0.0/0        192.168.2.60/0     1659   812626  0   
0   0
 53 ip           0.0.0.0/0        192.168.2.37/0       26     1176  0   
0   0

Any help is much appreciated.


-- 
Respectfully,


M.G.W.

System:
Asus M6N 
AMD Duron 
256MB RAM
40GB HD
10/100 NIC
BSD-5.2.1-RELEASE