Ah, is this one really for me? It's not that it's leaking information, it is that it is sending packets on the external interfaces with internal IPs. Ie, it slowly stops NATTing.
Lund
JP DiCicco wrote:
Please run a packet capture (www.ethereal.com if you don't have software), including HTTP information coming from the client. This should be run both inside and outside the FW. Most likely, this is where your internal IP information is coming from...
JP
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Darren Reed Sent: Tuesday, February 22, 2005 9:13 AM To: Jorgen Lundman Cc: [EMAIL PROTECTED] Subject: Re: Solaris 10 and IPFilter leaking internal addresses
Darren Reed wrote:
I think this problem is known about.
A-ha! We had another go in the afternoon after tweaking /etc/system, but there is nothing I can do to stop it from slowly dying.
I did see a load of pfil and ipfilter for Sol10 from John Wehle, perhaps I should upgrade and see how that goes.
I would be interested to know what the output of "ipnat -s" is when you start to see the leakage..
DArren
-- Jorgen Lundman | <[EMAIL PROTECTED]> Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home)
