Gabriele Bulfon
Mon, 19 Sep 2005 09:29:45 -0700
I recently reinstalled a system (running Solaris 8 with ipfilter) with Solaris 10 with its bundled ipfilter. The ipfilter rules works fine, with a lot of configs (firewall rules, nat rules and redirect rules to internal services).
The system seems to slow down after more or less a week of work, and client machines suffer slow internet bandwidth. Then I have to reboot the system to get the original performances. Last but not least, I recently had a strange behaviour of the redirect rules. A simple rdr of a pubblic IP on port 80/25 to an internal IP, that usually works fine, started to respond alternatively. Telnetting to the IP:80/25, I got sometimes the correct machine to respond, and sometimes the ipfilter machine to respond (like 3 times each). So I rebooted the machine. Everything worked fine again. To solve the problem teomporarily, I had to place a cron job to "init 6" the machine every night. I remembered about a strange problem I had with the first Solaris 8 installation. Because NAT was not running on that machine, I discovered that there was a bug with the "ce0" interface (fibre interface), so I was suggested to put this line in /etc/system: set ip:dohwcksum=0 and infacet it did work fine. I didn't have to place this same line on Solaris 10, as the NAT rules worked fine with no modification. But maybe the problems I'm facing are still connected with it? Please, Help! Gabriele. This message posted from opensolaris.org _______________________________________________ networking-discuss mailing list networking-discuss@opensolaris.org