Please excuse the OT post.
I'm building a backup DNS box. But I keep getting the following error
messages. The explanation seems odd since the error message comes
immediately. This is the scenario I'm trying to replace on FreeBSD box
running DNS with two ip addresses with a second box. I add both IPs to the
second box bring it up and clear the arp-cache on my cisco router. The box
resolves DNS locally but other local boxes get failed connections when they
attempt to run DIG or telnet to port 53. However they are able to ping the
box.
Mar 3 09:33:51 iconn /kernel: Limiting icmp unreach response from 233 to
200 packets per second
Mar 3 09:33:54 iconn /kernel: Limiting icmp unreach response from 216 to
200 packets per second
Mar 3 09:34:01 iconn /kernel: Limiting icmp unreach response from 204 to
200 packets per second
12.25. What are these messages about ``icmp-response bandwidth limit 300/200
pps'' in my log files?
This is the kernel telling you that some activity is provoking it to send
more ICMP or TCP reset (RST) responses than it thinks it should. ICMP
responses are often generated as a result of attempted connections to unused
UDP ports. TCP resets are generated as a result of attempted connections to
unopened TCP ports. Among others, these are the kinds of activities which
may cause these messages:
Andrew P. Kaplan
www.cshore.com
Do not despair of life. You have no doubt force enough to overcome
your obstacles. Think of the fox prowling through wood and field in
a winter night for something to satisfy his hunger. Notwithstanding
cold and hounds and traps, his race survives. I do not believe any
of them ever committed suicide.
-- Henry David Thoreau
