Verified! I have seen the exact same thing. I went as far as reviewing and removing many filters... NO LUCK!
My final solution was to remove the net cables until boot completes. A bit ugly, but it works. One other this is set a filter to block everything from talking directly to the main DMZ NIC. That did make the problem far less repeatable. Danny -----Original Message----- From: GnatBox User [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 06, 2002 2:06 PM To: [EMAIL PROTECTED] Subject: [gb-users] Hangs durring reboot with heavy traffic Hi all, I'm experiencing a problem with a GB-1000 3.2.1s. Anybody else? Here's the problem illustrated. When the GnatBox is rebooted with large amounts of traffic going through it hangs. Here is the sequence: A) Prior to reboot a large volume of traffic must be flowing through the GnatBox. B) Reboot the GnatBox. C) Watch the console screen during reboot. (This is where the problem is evident). 1) The network components are loaded (NIC drivers, IP address etc) 2) There is a default BLOCK EVERYTHING rule that is loaded PRIOR to the customer created rule base. 3) Once the default BLOCK EVERYTHING rule is in place the GnatBox begins frantically blocking the large volume of traffic that has been flowing through it (to the exclusion of everything else). You can see it doing this in the serial console. Screens and screens go by with blocked traffic logs. 4) The GnatBox NEVER gets to the point where it loads the customer created rule base. It is using all of it's CPU cycles to block traffic. 5) It will remain in this state until the network cables are physically unplugged (or the traffic is caused to subside in some other fashion). 6) Once this is done then you can see the GnatBox (through the consol serial connection) load the customer created rule base and then it's fine. Thanks, Paul Terhune SurfControl Inc. 831.431.1375 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
