login
Search
I'm new to OpenBSD so I don't have a clue where to start in troubleshooting this problem. I have enough *nix experience that I was able to install OpenBSD for first time ever and get PF working, but that was with a lot of help with google. I've tried searching and searching for about a week now and still cant find anything about how to resolve this issue.
I haven't figured out exactly how often my external interface dies yet but it seems like anywhere between 24-72 hours. Sometimes I can't do anything external the firewall, and sometimes I can do a nslookup but can't reach a web page (port 80). I was reseting the machine and this fixed the problem. Then I found out about pfctl -f and started issuing that command. As soon as the firewall (pf) is reset is starts working again. Does anybody have any ideas where I can start looking to try and solve this problem?
The firewall is an old Intel Celeron Dell small desktop system which I installed two extra NICs in (Intel, and DCI If I rem correctly). One is external, one is internal, and one is setup for wireless.
Thanks!!
If you are using pppoe, your
If you are using pppoe, your IP is changing and you will need to reload pf rules. Create this file: /etc/ppp/ppp.linkup
Add this to the file:
MYADDR:
! sh -c "/sbin/pfctl -ef /etc/pf.conf"
This will cause pf rules to reload everytime your link goes up. BTW, your link goes down/up when your IP changes.
Nope...
This is good information, but not the solution to the problem, as my linkup file is set up and this still occurs. pf seems to simply stop forwarding on the external interface. I'm going to try something I read on another forum, that is to stop scrubbing incoming packets. But this is a bad thing for pf, I hope some one with more knowlege than me explores this problem.