Strange problem of ipfilter

budsz budiyt at
Fri Oct 19 07:20:18 PDT 2007


I got strange problem ipfilter on FreeBSD 6.2-STABLE. After uptime my
machine running 7 days until 10 days, I can't access DNS, sometime
SSH, and etc,  to my box, but this happen randomly. For example I've
rule like this:

pass  in           quick on rl0 proto tcp from to port = 22 keep state

pass  in           quick proto udp from to port = 53 keep state

Whereis: my client block ip, ip box running ipfilter.

I try to create rule:

pass in all
pass out all

Then reload ipfilter rule. Or I try to restart my machine with my
default rule. So everything gone be alright. FYI, I use:

root:~# ipf -V
ipf: IP Filter: v4.1.13 (416)
Kernel: IP Filter: v4.1.13
Running: yes
Log Flags: 0 = none set
Default: block all, Logging: available
Active list: 0
Feature mask: 0xa

root:~# uname -srm
FreeBSD 6.2-STABLE i386

I do compile ipfilter with default block in kernel configuration. This
night I'll try to make world my FreeBSD box and I hope FreeBSD's
commiter already revision with this bug.

Would you give some clue to fix this problem. Thanks you for your help.


More information about the freebsd-questions mailing list