|
||||||||
Hi All, on another m0n0wall, this time between a LAN and an international (private) WAN, with about 14 static routes, I see the following behaviour: 1) Routing is fine, to all hosts and networks in the 'static routes' part 2) I add a 1:1 NAT mapping from 10.32.200.4 to 10.32.1.14 3) After the NAT entry is saved, I lose the static routes in the routing table 4) I reboot -> all is OK again OR I click 'edit' on a static route and save it without changes -> all is OK Included are the status.cgi output from before the NAT mapping and the netstat -rn outputs from before and after... Joachim =================================================== netstat -rn BEFORE adding 1:1 NAT entry Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 10.32.1.30 UGSc 0 53807 sis0 10 10.32.200.1 UGSc 1 175860 sis1 10.32/23 link#1 UC 52 0 sis0 10.32.0.11 00:01:e6:6f:83:b3 UHLW 1 21773 sis0 563 10.32.0.19 00:b0:d0:33:f2:a7 UHLW 0 29 sis0 1126 10.32.0.27 00:c0:4f:a5:46:e1 UHLW 0 0 sis0 937 10.32.0.51 00:c0:4f:f2:4c:2b UHLW 0 29 sis0 1058 10.32.0.56 00:e0:00:9a:dd:12 UHLW 0 29 sis0 939 10.32.0.69 00:20:e0:6e:4e:3b UHLW 0 264 sis0 1185 10.32.0.82 00:c0:4f:32:c8:07 UHLW 0 29 sis0 849 10.32.0.83 00:e0:00:98:2a:10 UHLW 0 187 sis0 593 10.32.0.85 00:b0:d0:2f:2e:5b UHLW 0 29 sis0 307 10.32.0.86 00:e0:00:98:b3:68 UHLW 0 3 sis0 1050 10.32.0.90 00:b0:d0:f4:72:93 UHLW 0 8493 sis0 756 10.32.0.92 00:c0:4f:1f:08:6d UHLW 0 29 sis0 158 10.32.0.103 00:c0:4f:9d:31:85 UHLW 0 5 sis0 735 10.32.0.106 00:01:03:88:9b:ed UHLW 0 58 sis0 778 10.32.0.117 00:30:05:35:0b:ef UHLW 0 29 sis0 92 10.32.0.122 00:04:76:48:3d:6a UHLW 0 29 sis0 599 10.32.0.130 00:b0:d0:2e:d0:d1 UHLW 0 1320 sis0 656 10.32.0.158 00:c0:4f:1f:1a:a9 UHLW 0 5518 sis0 1197 10.32.0.164 00:0b:5d:0e:22:d9 UHLW 0 29 sis0 904 10.32.0.165 00:00:39:6a:a0:b9 UHLW 0 207 sis0 1143 10.32.0.169 00:b0:d0:6a:f1:01 UHLW 0 29 sis0 849 10.32.0.177 00:b0:d0:89:71:bd UHLW 0 29 sis0 1155 10.32.0.188 00:e0:00:99:e2:4a UHLW 0 29 sis0 921 10.32.0.191 00:c0:4f:39:be:93 UHLW 0 333 sis0 480 10.32.1.1 00:00:0c:18:33:19 UHLW 2 14 sis0 1132 10.32.1.2 00:c0:9f:20:fc:e2 UHLW 0 1509 sis0 988 10.32.1.3 00:06:5b:0e:9c:90 UHLW 0 6 sis0 983 10.32.1.4 00:c0:4f:32:c8:0e UHLW 0 176 sis0 1169 10.32.1.5 00:08:c7:5b:db:0b UHLW 0 12492 sis0 1199 10.32.1.6 00:02:a5:28:44:20 UHLW 0 173 sis0 1181 10.32.1.7 00:30:94:3c:f4:e0 UHLW 1 0 sis0 467 10.32.1.8 00:b0:d0:ab:5a:2c UHLW 0 8 sis0 1168 10.32.1.9 00:60:08:6c:4e:d2 UHLW 1 15812 sis0 871 10.32.1.10 00:b0:d0:db:b6:79 UHLW 0 811 sis0 1053 10.32.1.11 00:00:24:c0:7f:28 UHLW 1 422 sis0 160 10.32.1.12 00:50:8b:55:c7:d0 UHLW 0 163 sis0 1048 10.32.1.16 00:08:c7:9f:08:1f UHLW 0 376561 sis0 1178 10.32.1.17 00:50:8b:2c:e2:9a UHLW 0 236864 sis0 1189 10.32.1.18 00:50:8b:55:ca:95 UHLW 0 80 sis0 1055 10.32.1.19 00:c0:4f:24:87:65 UHLW 0 3688 sis0 1014 10.32.1.21 00:a0:24:a6:3a:45 UHLW 0 18045 sis0 159 10.32.1.24 00:08:02:46:8d:a9 UHLW 0 15935 sis0 1148 10.32.1.26 00:c0:4f:03:2e:cb UHLW 0 620007 sis0 1131 10.32.1.27 00:c0:9f:20:fc:e2 UHLW 0 493 sis0 1106 10.32.1.30 00:90:7f:04:fe:44 UHLW 5 56 sis0 1172 10.32.1.35 00:30:48:22:7e:a8 UHLW 0 1056 sis0 1155 10.32.1.50 00:c0:4f:0f:fd:40 UHLW 0 29 sis0 1085 10.32.1.56 00:e0:00:98:c6:7c UHLW 0 202 sis0 1029 10.32.1.202 00:06:5b:71:b8:00 UHLW 0 29 sis0 302 10.32.1.234 00:b0:d0:a9:d4:7d UHLW 0 841 sis0 928 10.32.1.238 00:c0:4f:44:3b:9b UHLW 2 6837 sis0 1128 10.32.1.241 00:50:04:30:c7:dc UHLW 0 29 sis0 510 10.32.4/24 10.32.1.1 UGSc 0 1115 sis0 10.32.7/24 10.32.1.1 UGSc 0 72124 sis0 10.32.8/24 10.32.1.7 UGSc 0 1678 sis0 10.32.10/24 10.32.1.30 UGSc 0 976 sis0 10.32.20/24 10.32.1.30 UGSc 1 0 sis0 10.32.200/24 link#2 UC 2 0 sis1 10.32.200.1 00:0c:ce:a1:e2:e1 UHLW 8 53 sis1 127 10.32.200.3 00:60:fb:50:43:9d UHLW 0 212 sis1 1065 127.0.0.1 127.0.0.1 UH 0 0 lo0 134.188 10.32.200.1 UGSc 0 70695 sis1 134.188.1/24 10.32.1.30 UGSc 0 0 sis0 160.120.2.17/32 10.32.200.1 UGSc 0 0 sis1 160.120.2.113/32 10.32.200.1 UGSc 0 0 sis1 160.120.12.8/32 10.32.200.1 UGSc 0 0 sis1 160.120.61.110/32 10.32.200.1 UGSc 0 0 sis1 172.27.20.145/32 10.32.200.1 UGSc 0 0 sis1 192.168.1 10.32.1.11 UGSc 0 299 sis0 =========================================== netstat -rn AFTER adding 1:1 NAT entry Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 10.32.1.30 UGSc 2 718 sis0 10.32/23 link#1 UC 38 0 sis0 10.32.0.11 00:01:e6:6f:83:b3 UHLW 0 21931 sis0 177 10.32.0.27 00:c0:4f:a5:46:e1 UHLW 0 0 sis0 890 10.32.0.69 00:20:e0:6e:4e:3b UHLW 0 264 sis0 1198 10.32.0.86 00:e0:00:98:b3:68 UHLW 0 3 sis0 1064 10.32.0.103 00:c0:4f:9d:31:85 UHLW 0 7 sis0 1112 10.32.0.107 00:b0:d0:b9:e7:35 UHLW 0 29 sis0 358 10.32.0.122 00:04:76:48:3d:6a UHLW 0 29 sis0 1117 10.32.0.130 00:b0:d0:2e:d0:d1 UHLW 0 1320 sis0 977 10.32.0.147 00:30:05:43:42:f2 UHLW 0 29 sis0 305 10.32.0.158 00:c0:4f:1f:1a:a9 UHLW 0 5518 sis0 1191 10.32.0.165 00:00:39:6a:a0:b9 UHLW 0 207 sis0 1061 10.32.0.177 00:b0:d0:89:71:bd UHLW 0 58 sis0 1163 10.32.1.1 00:00:0c:18:33:19 UHLW 2 14 sis0 1143 10.32.1.2 00:c0:9f:20:fc:e2 UHLW 0 1730 sis0 616 10.32.1.3 00:06:5b:0e:9c:90 UHLW 0 6 sis0 1093 10.32.1.4 00:c0:4f:32:c8:0e UHLW 0 176 sis0 1112 10.32.1.5 00:08:c7:5b:db:0b UHLW 0 12505 sis0 1198 10.32.1.6 00:02:a5:28:44:20 UHLW 0 173 sis0 1192 10.32.1.7 link#1 UHLW 1 0 sis0 10.32.1.8 00:b0:d0:ab:5a:2c UHLW 0 8 sis0 1129 10.32.1.9 00:60:08:6c:4e:d2 UHLW 1 15813 sis0 391 10.32.1.10 00:b0:d0:db:b6:79 UHLW 0 811 sis0 1063 10.32.1.11 00:00:24:c0:7f:28 UHLW 1 422 sis0 907 10.32.1.12 00:50:8b:55:c7:d0 UHLW 0 163 sis0 1158 10.32.1.16 00:08:c7:9f:08:1f UHLW 0 376680 sis0 1088 10.32.1.17 00:50:8b:2c:e2:9a UHLW 0 236970 sis0 1200 10.32.1.18 00:50:8b:55:ca:95 UHLW 0 80 sis0 1066 10.32.1.19 00:c0:4f:24:87:65 UHLW 0 3707 sis0 1024 10.32.1.21 00:a0:24:a6:3a:45 UHLW 0 18085 sis0 1070 10.32.1.24 00:08:02:46:8d:a9 UHLW 0 15969 sis0 1137 10.32.1.26 00:c0:4f:03:2e:cb UHLW 0 621352 sis0 1067 10.32.1.27 00:c0:9f:20:fc:e2 UHLW 0 493 sis0 1068 10.32.1.30 00:90:7f:04:fe:44 UHLW 6 56 sis0 1192 10.32.1.35 00:30:48:22:7e:a8 UHLW 0 1056 sis0 1009 10.32.1.50 00:c0:4f:0f:fd:40 UHLW 0 58 sis0 1080 10.32.1.56 00:e0:00:98:c6:7c UHLW 0 202 sis0 747 10.32.1.234 00:b0:d0:a9:d4:7d UHLW 0 841 sis0 1182 10.32.1.238 00:c0:4f:44:3b:9b UHLW 7 6956 sis0 1158 10.32.4/24 10.32.1.1 UGSc 0 1242 sis0 10.32.7/24 10.32.1.1 UGSc 0 72663 sis0 10.32.8/24 10.32.1.7 UGSc 0 1707 sis0 10.32.10/24 10.32.1.30 UGSc 0 1130 sis0 10.32.20/24 10.32.1.30 UGSc 1 0 sis0 10.32.200/24 link#2 UC 1 0 sis1 10.32.200.3 00:60:fb:50:43:9d UHLW 0 4 sis1 1186 10.32.200.4/32 link#2 UC 0 0 sis1 127.0.0.1 127.0.0.1 UH 0 0 lo0 134.188.1/24 10.32.1.30 UGSc 0 0 sis0 192.168.1 10.32.1.11 UGSc 0 314 sis0 =========================================== status.cgi BEFORE adding 1:1 NAT entry ***** Server statistics on Thu Mar 6 20:44:20 CET 1980 ***** ***** System uptime ***** 8:44PM up 7 days, 21:51, 0 users, load averages: 0.32, 0.17, 0.10 ***** Interfaces ***** sis0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 inet 10.32.0.1 netmask 0xfffffe00 broadcast 10.32.1.255 ether 00:00:24:c1:2e:14 media: Ethernet autoselect (100baseTX) status: active sis1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 inet 10.32.200.2 netmask 0xffffff00 broadcast 10.32.200.255 ether 00:00:24:c1:2e:15 media: Ethernet autoselect (10baseT/UTP) status: active sis2: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500 ether 00:00:24:c1:2e:16 media: Ethernet autoselect (none) status: no carrier ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500 sl0: flags=c010<POINTOPOINT,LINK2,MULTICAST> mtu 552 faith0: flags=8002<BROADCAST,MULTICAST> mtu 1500 lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384 inet 127.0.0.1 netmask 0xff000000 ***** netstat -ni ***** Name Mtu Network Address Ipkts Ierrs Opkts Oerrs Coll sis0 1500 <Link#1> 00:00:24:c1:2e:14 5797978 0 4479277 2277 3586 sis0 1500 10.32/23 10.32.0.1 543649 - 33295 - - sis1 1500 <Link#2> 00:00:24:c1:2e:15 7317529 0 7068194 19440 45547 sis1 1500 10.32.200/24 10.32.200.2 11370 - 12100 - - sis2* 1500 <Link#3> 00:00:24:c1:2e:16 0 0 0 0 0 ppp0* 1500 <Link#4> 0 0 0 0 0 sl0* 552 <Link#5> 0 0 0 0 0 faith 1500 <Link#6> 0 0 0 0 0 lo0 16384 <Link#7> 6 0 6 0 0 lo0 16384 127 127.0.0.1 0 - 0 - - ***** ipfw show ***** ipfw: getsockopt(IP_FW_GET): Protocol not available ***** ipnat -l ***** List of active MAP/Redirect filters: List of active sessions: List of active host mappings: ***** ipfstat -v ***** opts 0x40 name /dev/ipl IPv6 packets: in 0 out 0 input packets: blocked 85925 passed 12051042 nomatch 0 counted 0 short 1 output packets: blocked 1236966 passed 11524565 nomatch 0 counted 0 short 0 input packets logged: blocked 85925 passed 0 output packets logged: blocked 1236966 passed 0 packets logged: input 0 output 0 log failures: input 0 output 0 fragment state(in): kept 0 lost 0 fragment state(out): kept 0 lost 0 packet state(in): kept 736720 lost 13569 packet state(out): kept 618062 lost 12190 ICMP replies: 0 TCP RSTs sent: 0 Invalid source(in): 0 Result cache hits(in): 50997 (out): 35 IN Pullups succeeded: 0 failed: 0 OUT Pullups succeeded: 0 failed: 0 Fastroute successes: 0 failures: 0 TCP cksum fails(in): 0 (out): 0 Packet log flags set: (0x20000000) packets blocked by filter ***** ipfstat -hio ***** 0 pass out quick on lo0 from any to any 0 pass out quick on sis0 proto udp from 10.32.0.1/32 port = 67 to any port = 68 0 pass out quick on sis1 proto udp from any port = 68 to any port = 67 22779 block out quick on sis0 from any to any head 150 0 pass out quick proto udp from 10.32.0.1/32 to 10.32.0.0/23 port = 53 keep state group 150 0 pass out quick proto udp from 10.32.0.1/32 to 10.32.0.0/23 port = 514 keep state group 150 20 pass out quick proto icmp from 10.32.0.1/32 to 10.32.0.0/23 keep state group 150 11428 block out quick on sis1 from any to any head 250 3 pass out quick proto tcp from any to any keep state group 250 11425 pass out quick proto udp from any to any keep state group 250 0 pass out quick proto icmp from any to any keep state group 250 0 block out quick from any to any 0 pass in quick on lo0 from any to any 0 block in quick from any to any with short 0 block in quick from any to any with ipopt 258 pass in quick on sis0 proto udp from any port = 68 to 255.255.255.255/32 port = 67 0 pass in quick on sis0 proto udp from any port = 68 to 10.32.0.1/32 port = 67 1560 block in log quick on sis1 from 10.32.0.0/23 to any 0 block in log quick on sis1 proto udp from any port = 67 to 10.32.0.0/23 port = 68 0 pass in quick on sis1 proto udp from any port = 67 to any port = 68 13561 skip 15 in on sis0 from 10.0.0.0/8 to any 0 skip 14 in on sis0 from 10.32.10.0/24 to any 0 skip 13 in on sis0 from 10.32.20.0/24 to any 0 skip 12 in on sis0 from 10.32.4.0/24 to any 0 skip 11 in on sis0 from 10.32.7.0/24 to any 0 skip 10 in on sis0 from 10.32.8.0/24 to any 0 skip 9 in on sis0 from 134.188.0.0/16 to any 0 skip 8 in on sis0 from 134.188.1.0/24 to any 0 skip 7 in on sis0 from 160.120.12.8/32 to any 0 skip 6 in on sis0 from 160.120.2.113/32 to any 0 skip 5 in on sis0 from 160.120.2.17/32 to any 0 skip 4 in on sis0 from 160.120.61.110/32 to any 0 skip 3 in on sis0 from 172.27.20.145/32 to any 200 skip 2 in on sis0 from 192.168.1.0/24 to any 0 skip 1 in on sis0 from 10.32.0.0/23 to any 669 block in quick on sis0 from any to any 5100 skip 1 in proto tcp from any to any flags S/FSRA 755 block in quick proto tcp from any to any 13194 block in quick on sis0 from any to any head 100 72 pass in quick from 10.32.0.0/23 to 10.32.0.1/32 keep state group 100 13122 pass in quick from any to any keep state group 100 3178 block in log quick on sis1 from any to any head 200 3178 pass in quick from any to any keep state group 200 0 block in quick from any to any ***** resolv.conf ***** domain brussels.be.oce.net nameserver 10.32.20.34 nameserver 10.96.64.22 ***** Processes ***** USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 37176 10.0 1.6 1332 832 ?? RN 8:44PM 0:00.10 /bin/sh status.cgi root 37175 2.0 0.7 868 344 ?? SN 8:44PM 0:00.02 sleep 1 root 2 0.0 0.0 0 0 ?? DL 27Feb80 0:00.00 (cryptoret) root 3 0.0 0.0 0 0 ?? DL 27Feb80 0:03.31 (pagedaemon) root 4 0.0 0.0 0 0 ?? DL 27Feb80 0:15.06 (bufdaemon) root 5 0.0 0.0 0 0 ?? DL 27Feb80 0:13.72 (vnlru) root 6 0.0 0.0 0 0 ?? DL 27Feb80 1:27.48 (syncer) root 33 0.0 1.0 880 532 ?? Ss 27Feb80 0:06.14 /usr/local/sbin/watchdogd root 58 0.0 2.4 1448 1212 ?? Ss 27Feb80 22:37.44 /sbin/ipmon -sD root 91 0.0 1.3 948 648 ?? Ss 27Feb80 27:56.92 /usr/sbin/syslogd -ss root 100 0.0 2.1 2220 1092 ?? Ss 27Feb80 0:00.48 /usr/local/sbin/mini_httpd -c cgi-bin/*|**.php -u root -i /var/run/mini_httpd.pid root 118 0.0 1.7 1328 852 ?? I 27Feb80 0:00.05 /bin/sh /etc/rc.initial console root 36340 0.0 1.7 1324 852 ?? SN 28Feb80 72:03.05 /bin/sh /usr/local/bin/runmsntp.sh /var/run/runmsntp.pid /var/run/msntp.pid 300 ocebe13.brussels.be.oce.net root 37177 0.0 2.2 2228 1128 ?? S 8:44PM 0:00.01 /usr/local/sbin/mini_httpd -c cgi-bin/*|**.php -u root -i /var/run/mini_httpd.pid root 0 0.0 0.0 0 0 ?? DLs 27Feb80 0:00.00 (swapper) root 37187 0.0 1.2 1064 620 ?? RN 8:44PM 0:00.00 ps xauww root 1 0.0 1.3 1052 688 ?? ILs 27Feb80 0:00.09 /sbin/init -- ***** top -b ***** last pid: 37188; load averages: 0.32, 0.17, 0.10 up 7+21:51:24 20:44:21 10 processes: 1 running, 9 sleeping Mem: 3040K Active, 2808K Inact, 5888K Wired, 4096K Buf, 39M Free Swap: PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND 37176 root 10 10 1332K 832K wait 0:00 10.00% 0.49% sh 37175 root 10 10 868K 344K nanslp 0:00 2.00% 0.10% sleep 36340 root 10 10 1324K 852K wait 72:03 0.00% 0.00% sh 91 root 2 0 948K 648K select 27:57 0.00% 0.00% syslogd 58 root 10 0 1448K 1212K nanslp 22:37 0.00% 0.00% ipmon 33 root 10 0 880K 532K nanslp 0:06 0.00% 0.00% watchdogd 100 root 2 0 2220K 1092K accept 0:00 0.00% 0.00% mini_httpd 37188 root 78 10 1856K 920K RUN 0:00 0.00% 0.00% top 118 root 3 0 1328K 852K ttyin 0:00 0.00% 0.00% sh 37177 root -6 0 2228K 1128K piperd 0:00 0.00% 0.00% mini_httpd ***** dhcpd.conf ***** cat: /var/etc/dhcpd.conf: No such file or directory ***** /conf/ez-ipupdate.cache ***** cat: /conf/ez-ipupdate.cache: No such file or directory ***** df ***** Filesystem 512-blocks Used Avail Capacity Mounted on /dev/md0c 19774 16438 1756 90% / procfs 8 8 0 100% /proc /dev/ad0a 9854 8396 670 93% /cf ***** /var/etc/racoon.conf ***** cat: /var/etc/racoon.conf: No such file or directory ***** SPD ***** No SPD entries. ***** SAD ***** No SAD entries. ***** last 200 system log entries ***** Feb 27 21:54:32 ocebe30 /kernel: Waiting (max 60 seconds) for system process `vnlru' to stop...stopped Feb 27 21:54:32 ocebe30 /kernel: Waiting (max 60 seconds) for system process `bufdaemon' to stop...stopped Feb 27 21:54:32 ocebe30 /kernel: Waiting (max 60 seconds) for system process `syncer' to stop...stopped Feb 27 21:54:32 ocebe30 /kernel: Feb 27 21:54:32 ocebe30 /kernel: syncing disks... Feb 27 21:54:32 ocebe30 /kernel: done Feb 27 21:54:32 ocebe30 /kernel: Uptime: 1d2h27m59s Feb 27 21:54:32 ocebe30 /kernel: Rebooting... Feb 27 21:54:32 ocebe30 /kernel: Copyright (c) 1992-2003 The FreeBSD Project. Feb 27 21:54:32 ocebe30 /kernel: Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 Feb 27 21:54:32 ocebe30 /kernel: The Regents of the University of California. All rights reserved. Feb 27 21:54:32 ocebe30 /kernel: FreeBSD 4.8-RELEASE #0: Sun Sep 28 16:42:26 CEST 2003 Feb 27 21:54:32 ocebe30 /kernel: root at nb dot neon1 dot net:/usr/src/sys/compile/M0N0WALL_NET45XX_IPSEC Feb 27 21:54:32 ocebe30 /kernel: Timecounter "i8254" frequency 1189163 Hz Feb 27 21:54:32 ocebe30 /kernel: CPU: AMD Am5x86 Write-Back (486-class CPU) Feb 27 21:54:32 ocebe30 /kernel: Origin = "AuthenticAMD" Id = 0x4f4 Stepping = 4 Feb 27 21:54:32 ocebe30 /kernel: Features=0x1<FPU> Feb 27 21:54:32 ocebe30 /kernel: real memory = 67108864 (65536K bytes) Feb 27 21:54:32 ocebe30 /kernel: avail memory = 51838976 (50624K bytes) Feb 27 21:54:32 ocebe30 /kernel: Preloaded elf kernel "kernel" at 0xc0d14000. Feb 27 21:54:32 ocebe30 /kernel: Preloaded mfs_root "/mfsroot" at 0xc0d1409c. Feb 27 21:54:32 ocebe30 /kernel: md0: Preloaded image </mfsroot> 10485760 bytes at 0xc0312120 Feb 27 21:54:32 ocebe30 /kernel: md1: Malloc disk Feb 27 21:54:32 ocebe30 /kernel: Timecounter "ELAN" frequency 8333333 Hz Feb 27 21:54:32 ocebe30 /kernel: npx0: <math processor> on motherboard Feb 27 21:54:32 ocebe30 /kernel: npx0: INT 16 interface Feb 27 21:54:32 ocebe30 /kernel: pcib0: <AMD Elan SC520 host to PCI bridge> on motherboard Feb 27 21:54:32 ocebe30 /kernel: pci0: <PCI bus> on pcib0 Feb 27 21:54:32 ocebe30 /kernel: sis0: <NatSemi DP83815 10/100BaseTX> port 0xe000-0xe0ff mem 0xa0000000-0xa0000fff irq 10 at device 18.0 on pci0 Feb 27 21:54:32 ocebe30 /kernel: sis0: Ethernet address: 00:00:24:c1:2e:14 Feb 27 21:54:32 ocebe30 /kernel: miibus0: <MII bus> on sis0 Feb 27 21:54:32 ocebe30 /kernel: ukphy0: <Generic IEEE 802.3u media interface> on miibus0 Feb 27 21:54:32 ocebe30 /kernel: ukphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto Feb 27 21:54:32 ocebe30 /kernel: sis1: <NatSemi DP83815 10/100BaseTX> port 0xe100-0xe1ff mem 0xa0001000-0xa0001fff irq 11 at device 19.0 on pci0 Feb 27 21:54:32 ocebe30 /kernel: sis1: Ethernet address: 00:00:24:c1:2e:15 Feb 27 21:54:32 ocebe30 /kernel: miibus1: <MII bus> on sis1 Feb 27 21:54:32 ocebe30 /kernel: ukphy1: <Generic IEEE 802.3u media interface> on miibus1 Feb 27 21:54:32 ocebe30 /kernel: ukphy1: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto Feb 27 21:54:32 ocebe30 /kernel: sis2: <NatSemi DP83815 10/100BaseTX> port 0xe200-0xe2ff mem 0xa0002000-0xa0002fff irq 5 at device 20.0 on pci0 Feb 27 21:54:32 ocebe30 /kernel: sis2: Ethernet address: 00:00:24:c1:2e:16 Feb 27 21:54:32 ocebe30 /kernel: miibus2: <MII bus> on sis2 Feb 27 21:54:32 ocebe30 /kernel: ukphy2: <Generic IEEE 802.3u media interface> on miibus2 Feb 27 21:54:32 ocebe30 /kernel: ukphy2: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto Feb 27 21:54:32 ocebe30 /kernel: isa0: <ISA bus> on motherboard Feb 27 21:54:32 ocebe30 /kernel: ata0 at port 0x1f0-0x1f7,0x3f6 irq 14 on isa0 Feb 27 21:54:32 ocebe30 /kernel: ata1 at port 0x170-0x177,0x376 irq 15 on isa0 Feb 27 21:54:32 ocebe30 /kernel: sio0 at port 0x3f8-0x3ff irq 4 flags 0x30 on isa0 Feb 27 21:54:32 ocebe30 /kernel: sio0: type 16550A, console Feb 27 21:54:32 ocebe30 /kernel: sio1 at port 0x2f8-0x2ff irq 3 on isa0 Feb 27 21:54:32 ocebe30 /kernel: sio1: type 16550A Feb 27 21:54:32 ocebe30 /kernel: Elan-mmcr driver: MMCR at 0xc598e000 Feb 27 21:54:32 ocebe30 /kernel: IPsec: Initialized Security Association Processing. Feb 27 21:54:32 ocebe30 /kernel: IP Filter: v3.4.31 initialized. Default = block all, Logging = enabled Feb 27 21:54:32 ocebe30 /kernel: ad0: 62MB <64MB CTS> [1001/4/32] at ata0-master BIOSPIO Feb 27 21:54:32 ocebe30 /kernel: Mounting root from ufs:/dev/md0c Feb 27 22:19:02 ocebe30 /kernel: sis1: watchdog timeout Feb 28 10:36:40 ocebe30 /kernel: arp: 10.32.0.159 moved from 00:00:39:22:02:3f to 00:40:10:17:4b:60 on sis0 Feb 29 11:43:56 ocebe30 /kernel: arp: 10.32.0.67 moved from 00:10:a4:d0:46:7d to 00:04:76:48:fb:28 on sis0 Feb 29 19:33:22 ocebe30 /kernel: sis0: watchdog timeout Mar 1 10:56:56 ocebe30 /kernel: sis0: watchdog timeout Mar 2 22:29:32 ocebe30 /kernel: sis1: watchdog timeout Mar 3 04:20:57 ocebe30 /kernel: sis1: watchdog timeout ***** last 50 filter log entries ***** Mar 6 19:43:55 ocebe30 ipmon[58]: 19:43:55.337574 sis0 @0:4 B 10.32.0.1,1723 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:43:56 ocebe30 ipmon[58]: 19:43:56.401170 sis0 @0:4 B 10.32.0.1,1724 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:43:56 ocebe30 ipmon[58]: 19:43:56.445008 sis0 @0:4 B 10.32.0.1,1726 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:43:57 ocebe30 ipmon[58]: 19:43:57.508706 sis0 @0:4 B 10.32.0.1,1727 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:43:57 ocebe30 ipmon[58]: 19:43:57.537092 sis0 @0:4 B 10.32.0.1,1729 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:43:58 ocebe30 ipmon[58]: 19:43:58.600977 sis0 @0:4 B 10.32.0.1,1730 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:43:58 ocebe30 ipmon[58]: 19:43:58.629847 sis0 @0:4 B 10.32.0.1,1732 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:43:59 ocebe30 ipmon[58]: 19:43:59.692796 sis0 @0:4 B 10.32.0.1,1733 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:43:59 ocebe30 ipmon[58]: 19:43:59.721578 sis0 @0:4 B 10.32.0.1,1735 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:00 ocebe30 ipmon[58]: 19:44:00.785299 sis0 @0:4 B 10.32.0.1,1736 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:00 ocebe30 ipmon[58]: 19:44:00.814106 sis0 @0:4 B 10.32.0.1,1738 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:02 ocebe30 ipmon[58]: 19:44:01.880916 sis0 @0:4 B 10.32.0.1,1739 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:02 ocebe30 ipmon[58]: 19:44:01.909673 sis0 @0:4 B 10.32.0.1,1741 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:03 ocebe30 ipmon[58]: 19:44:02.972956 sis0 @0:4 B 10.32.0.1,1742 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:03 ocebe30 ipmon[58]: 19:44:03.002100 sis0 @0:4 B 10.32.0.1,1744 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:04 ocebe30 ipmon[58]: 19:44:04.064758 sis0 @0:4 B 10.32.0.1,1745 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:04 ocebe30 ipmon[58]: 19:44:04.093992 sis0 @0:4 B 10.32.0.1,1747 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:05 ocebe30 ipmon[58]: 19:44:05.157023 sis0 @0:4 B 10.32.0.1,1748 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:05 ocebe30 ipmon[58]: 19:44:05.185868 sis0 @0:4 B 10.32.0.1,1750 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:06 ocebe30 ipmon[58]: 19:44:06.248266 sis0 @0:4 B 10.32.0.1,1751 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:06 ocebe30 ipmon[58]: 19:44:06.277436 sis0 @0:4 B 10.32.0.1,1753 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:06 ocebe30 ipmon[58]: 19:44:06.397082 sis0 @0:24 B 172.20.80.2 -> 192.168.1.71 PR icmp len 20 56 icmp unreach/port for 192.168.1.71,137 - 172.20.80.2,137 PR udp len 20 96 IN Mar 6 19:44:07 ocebe30 ipmon[58]: 19:44:07.341347 sis0 @0:4 B 10.32.0.1,1754 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:07 ocebe30 ipmon[58]: 19:44:07.370292 sis0 @0:4 B 10.32.0.1,1756 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:07 ocebe30 ipmon[58]: 19:44:07.496772 sis0 @0:24 B 172.20.80.2 -> 192.168.1.71 PR icmp len 20 56 icmp unreach/port for 192.168.1.71,137 - 172.20.80.2,137 PR udp len 20 96 IN Mar 6 19:44:08 ocebe30 ipmon[58]: 19:44:08.433075 sis0 @0:4 B 10.32.0.1,1757 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:08 ocebe30 ipmon[58]: 19:44:08.462101 sis0 @0:4 B 10.32.0.1,1759 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:08 ocebe30 ipmon[58]: 19:44:08.596754 sis0 @0:24 B 172.20.80.2 -> 192.168.1.71 PR icmp len 20 56 icmp unreach/port for 192.168.1.71,137 - 172.20.80.2,137 PR udp len 20 96 IN Mar 6 19:44:09 ocebe30 ipmon[58]: 19:44:09.524987 sis0 @0:4 B 10.32.0.1,1760 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:09 ocebe30 ipmon[58]: 19:44:09.553719 sis0 @0:4 B 10.32.0.1,1762 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:10 ocebe30 ipmon[58]: 19:44:10.617106 sis0 @0:4 B 10.32.0.1,1763 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:10 ocebe30 ipmon[58]: 19:44:10.646166 sis0 @0:4 B 10.32.0.1,1765 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:11 ocebe30 ipmon[58]: 19:44:11.709068 sis0 @0:4 B 10.32.0.1,1766 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:11 ocebe30 ipmon[58]: 19:44:11.737950 sis0 @0:4 B 10.32.0.1,1768 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:12 ocebe30 ipmon[58]: 19:44:12.801138 sis0 @0:4 B 10.32.0.1,1769 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:12 ocebe30 ipmon[58]: 19:44:12.830118 sis0 @0:4 B 10.32.0.1,1771 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:13 ocebe30 ipmon[58]: 19:44:13.893416 sis0 @0:4 B 10.32.0.1,1772 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:14 ocebe30 ipmon[58]: 19:44:13.925142 sis0 @0:4 B 10.32.0.1,1774 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:15 ocebe30 ipmon[58]: 19:44:14.989253 sis0 @0:4 B 10.32.0.1,1775 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:15 ocebe30 ipmon[58]: 19:44:15.019364 sis0 @0:4 B 10.32.0.1,1777 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:16 ocebe30 ipmon[58]: 19:44:16.081236 sis0 @0:4 B 10.32.0.1,1778 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:16 ocebe30 ipmon[58]: 19:44:16.110026 sis0 @0:4 B 10.32.0.1,1780 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:17 ocebe30 ipmon[58]: 19:44:17.173335 sis0 @0:4 B 10.32.0.1,1781 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:17 ocebe30 ipmon[58]: 19:44:17.202350 sis0 @0:4 B 10.32.0.1,1783 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:18 ocebe30 ipmon[58]: 19:44:18.265838 sis0 @0:4 B 10.32.0.1,1784 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:18 ocebe30 ipmon[58]: 19:44:18.294400 sis0 @0:4 B 10.32.0.1,1786 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:19 ocebe30 ipmon[58]: 19:44:19.357536 sis0 @0:4 B 10.32.0.1,1787 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:19 ocebe30 ipmon[58]: 19:44:19.386242 sis0 @0:4 B 10.32.0.1,1789 -> 10.32.1.26,123 PR udp len 20 76 OUT Mar 6 19:44:20 ocebe30 ipmon[58]: 19:44:20.449384 sis0 @0:4 B 10.32.0.1,1790 -> 10.32.20.34,53 PR udp len 20 73 OUT Mar 6 19:44:20 ocebe30 ipmon[58]: 19:44:20.477946 sis0 @0:4 B 10.32.0.1,1792 -> 10.32.1.26,123 PR udp len 20 76 OUT ***** ls /conf ***** config.xml ***** ls /var/run ***** dev.db htpasswd ipmon.pid ld-elf.so.hints log mini_httpd.pid runmsntp.pid syslog.pid utmp watchdogd.pid ***** config.xml ***** <?xml version="1.0"?> <m0n0wall> <version>1.1</version> <system> <hostname>ocebe30</hostname> <domain>brussels.be.oce.net</domain> <password>mono</password> <timezone>Europe/Brussels</timezone> <time-update-interval>300</time-update-interval> <timeservers>ocebe13.brussels.be.oce.net</timeservers> <webgui> <protocol>http</protocol> </webgui> <dnsserver>10.32.20.34</dnsserver> <dnsserver>10.96.64.22</dnsserver> </system> <interfaces> <lan> <if>sis0</if> <ipaddr>10.32.0.1</ipaddr> <subnet>23</subnet> </lan> <wan> <if>sis1</if> <spoofmac/> <mtu/> <ipaddr>10.32.200.2</ipaddr> <subnet>24</subnet> <gateway>10.32.1.30</gateway> </wan> </interfaces> <staticroutes> <route> <interface>lan</interface> <network>10.0.0.0/8</network> <gateway>10.32.200.1</gateway> <descr>Wan Traffic</descr> </route> <route> <interface>lan</interface> <network>10.32.10.0/24</network> <gateway>10.32.1.30</gateway> <descr>VPN Users</descr> </route> <route> <interface>lan</interface> <network>10.32.20.0/24</network> <gateway>10.32.1.30</gateway> <descr>DMZ Océ Belgium</descr> </route> <route> <interface>lan</interface> <network>10.32.4.0/24</network> <gateway>10.32.1.1</gateway> <descr>SEMA</descr> </route> <route> <interface>lan</interface> <network>10.32.7.0/24</network> <gateway>10.32.1.1</gateway> <descr>SEMA Lan</descr> </route> <route> <interface>lan</interface> <network>10.32.8.0/24</network> <gateway>10.32.1.7</gateway> <descr>Bilan Traffic</descr> </route> <route> <interface>lan</interface> <network>134.188.0.0/16</network> <gateway>10.32.200.1</gateway> <descr>Océ Venlo WAN traffic</descr> </route> <route> <interface>lan</interface> <network>134.188.1.0/24</network> <gateway>10.32.1.30</gateway> <descr>Océ Venlo INTERNET traffic</descr> </route> <route> <interface>lan</interface> <network>160.120.12.8/32</network> <gateway>10.32.200.1</gateway> <descr>German Host on WAN</descr> </route> <route> <interface>lan</interface> <network>160.120.2.113/32</network> <gateway>10.32.200.1</gateway> <descr>German Host on WAN</descr> </route> <route> <interface>lan</interface> <network>160.120.2.17/32</network> <gateway>10.32.200.1</gateway> <descr>German Host on WAN</descr> </route> <route> <interface>lan</interface> <network>160.120.61.110/32</network> <gateway>10.32.200.1</gateway> <descr>German Host on WAN</descr> </route> <route> <interface>lan</interface> <network>172.27.20.145/32</network> <gateway>10.32.200.1</gateway> <descr>Host on WAN</descr> </route> <route> <interface>lan</interface> <network>192.168.1.0/24</network> <gateway>10.32.1.11</gateway> <descr>Showroom traffic</descr> </route> </staticroutes> <pppoe/> <pptp/> <dyndns> <type>dyndns</type> <username/> <password/> <host/> <mx/> </dyndns> <dhcpd> <range> <from>192.168.1.100</from> <to>192.168.1.199</to> </range> </dhcpd> <pptpd> <mode/> <redir/> <localip/> <remoteip/> </pptpd> <dnsmasq/> <diag> <ipv6nat> <ipaddr/> </ipv6nat> </diag> <syslog/> <nat> <advancedoutbound> <enable/> </advancedoutbound> </nat> <filter> <rule> <interface>lan</interface> <source> <any/> </source> <destination> <any/> </destination> <descr>Default LAN -> any</descr> </rule> <rule> <interface>wan</interface> <source> <any/> </source> <destination> <any/> </destination> <descr>WAN -> any</descr> </rule> </filter> <shaper/> <ipsec/> </m0n0wall> ***** kldstat ***** kldstat: not found ***** ngctl list ***** There are 4 total nodes: Name: ngctl37202 Type: socket ID: 00000004 Num hooks: 0 Name: sis2 Type: ether ID: 00000003 Num hooks: 0 Name: sis1 Type: ether ID: 00000002 Num hooks: 0 Name: sis0 Type: ether ID: 00000001 Num hooks: 0 ----------------------------------------------- MISSION STATEMENT ----------------------------------------------- Océ enables its customers to manage their documents efficiently and effectively by offering innovative print and document management products and services for professional environments. ----------------------------------------------- DISCLAIMER ----------------------------------------------- This e-mail message and any attachment are intended for the sole use of the recipient(s) named above and may contain information which is confidential and/or protected by intellectual property rights. Any use of the information contained herein (including, but not limited to, total or partial reproduction, communication or distribution in any form) by other persons than the designated recipient(s) is prohibited. If you have received this e-mail in error, please notify the sender either by telephone (0032-2-729.48.11) or by e-mail and delete the material from any computer. Oce-Belgium/Oce-Interservices is nor responsible for the correct and complete transfer of the contents of the sent e-mail, neither for the receipt on due time. This e-mail message does not bring about a contractual obligation for Oce-Belgium/Oce-Interservices. Thank you for your cooperation. For further information about Oce-Belgium/Oce-Interservices please see our website at www.oce.be ----------------------------------------------- |