Hello.
I have a weird problem here, running latest ipfilter in a Solaris 8 Box
Sparc at 32 bits.
Basically, I do get traffic over hme0 and need to redirect it to rf0 for
a transparent proxy test.
I have this:
bash-2.03# ipnat -l
List of active MAP/Redirect filters:
rdr hme0 0.0.0.0/0 port 80 -> ip.of.ext.interface port 3128 tcp
List of active sessions:
RDR ip.of.ext.interface 3128 <- -> 199.181.132.250 80
[ip.of.origin.client 3421]
RDR ip.of.ext.interface 3128 <- -> 63.171.232.40 80
[ip.of.origin.client 3420]
RDR ip.of.ext.interface 3128 <- -> 199.181.132.250 80
[ip.of.origin.client 3419]
RDR ip.of.ext.interface 3128 <- -> 63.171.232.40 80
[ip.of.origin.client 3418]
RDR ip.of.ext.interface 3128 <- -> 63.171.232.40 80
[ip.of.origin.client 3417]
RDR ip.of.ext.interface 3128 <- -> 199.181.132.250 80
[ip.of.origin.client 3416]
RDR ip.of.ext.interface 3128 <- -> 63.171.232.40 80
[ip.of.origin.client 3415]
RDR ip.of.ext.interface 3128 <- -> 199.181.132.250 80
[ip.of.origin.client 3414]
bash-2.03# netstat -an | grep 3128
*.3128 *.* 0 0 24576 0
LISTEN
ip.of.ext.interface.3128 ip.of.origin.client.3414 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3415 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3416 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3417 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3418 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3419 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3420 0 0 25200
0 SYN_RCVD
ip.of.ext.interface.3128 ip.of.origin.client.3421 0 0 25200
0 SYN_RCVD
As you can note, the connection keeps in SYN_RCVD status with no
stablishment of the session.
here is the relevant information about the systems:
bash-2.03# uname -a
SunOS monitor 5.8 Generic_117350-26 sun4u sparc SUNW,Ultra-5_10
bash-2.03# isainfo -vk
32-bit sparc kernel modules
bash-2.03# ifconfig -a
lo0: flags=1000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4> mtu 8232 index 2
inet 127.0.0.1 netmask ff000000
hme0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index
3
inet internal.interface.addy netmask fffffff0 broadcast
broadcast.address
ether 8:0:20:b0:f9:94
rf0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
inet external.ip.of.system netmask fffffff0 broadcast
broadcast.address.of.this.net
ether 0:e0:7d:f6:11:7f
bash-2.03# netstat -rn
Routing Table: IPv4
Destination Gateway Flags Ref Use Interface
-------------------- -------------------- ----- ----- ------ ---------
net_of_rf0 the.gw.is.ok U 1 7 rf0
externalnet gw.is.ok UG 1 0
internal.net internal.gw U 1 22 hme0
default the.gw.is.ok UG 1 372
127.0.0.1 127.0.0.1 UH 2 285 lo0
bash-2.03# netstat -i
Name Mtu Net/Dest Address Ipkts Ierrs Opkts Oerrs Collis
Queue
lo0 8232 loopback localhost 806 0 806 0 0
0
hme0 1500 Tollana Tollana 26422 0 19343 0 0
0
rf0 1500 destiny.net ip.of.rf0 297332 0 142455 0 0 0
bash-2.03# netstat -s -P ip
IPv4 ipForwarding = 1 ipDefaultTTL = 255
ipInReceives =319826 ipInHdrErrors = 0
ipInAddrErrors = 0 ipInCksumErrs = 0
ipForwDatagrams = 3580 ipForwProhibits = 559
ipInUnknownProtos = 0 ipInDiscards = 0
ipInDelivers =316085 ipOutRequests =158230
ipOutDiscards = 0 ipOutNoRoutes = 66
ipReasmTimeout = 60 ipReasmReqds = 0
ipReasmOKs = 0 ipReasmFails = 0
ipReasmDuplicates = 0 ipReasmPartDups = 0
ipFragOKs = 0 ipFragFails = 0
ipFragCreates = 0 ipRoutingDiscards = 0
tcpInErrs = 0 udpNoPorts = 356
udpInCksumErrs = 0 udpInOverflows = 0
rawipInOverflows = 0 ipsecInSucceeded = 0
ipsecInFailed = 0 ipInIPv6 = 0
ipOutIPv6 = 0 ipOutSwitchIPv6 = 84
bash-2.03# ipf -V
ipf: IP Filter: v4.1.9 (500)
Kernel: IP Filter: v4.1.9
Running: yes
Log Flags: 0 = none set
Default: pass all, Logging: available
Active list: 1
Feature mask: 0x187
bash-2.03# ipfstat
bad packets: in 0 out 0
IPv6 packets: in 0 out 0
input packets: blocked 0 passed 43288 nomatch 0 counted 0 short
0
output packets: blocked 0 passed 20890 nomatch 0 counted 0 short
0
input packets logged: blocked 0 passed 43288
output packets logged: blocked 0 passed 20890
packets logged: input 0 output 0
log failures: input 7709 output 7294
fragment state(in): kept 0 lost 0 not fragmented 0
fragment state(out): kept 0 lost 0 not fragmented 0
packet state(in): kept 0 lost 0
packet state(out): kept 0 lost 0
ICMP replies: 0 TCP RSTs sent: 0
Invalid source(in): 0
Result cache hits(in): 40623 (out): 17126
IN Pullups succeeded: 0 failed: 0
OUT Pullups succeeded: 25 failed: 0
Fastroute successes: 0 failures: 0
TCP cksum fails(in): 0 (out): 0
IPF Ticks: 1162
Packet log flags set: (0)
none
bash-2.03# ipfstat -io
pass out log all
pass in log all
bash-2.03# ipnat -slv
mapped in 40 out 0
added 15 expired 0
no memory 0 bad nat 0
inuse 2
rules 1
wilds 0
table ffbefd0c list 724047a8
List of active MAP/Redirect filters:
rdr hme0 0.0.0.0/0 port 80 -> external.ip port 3128 tcp
List of active sessions:
RDR external.ip 3128 <- -> 216.239.115.148 80 [client.ip 3428]
age 1223 use 0 sumd 0x9631/0x9631 pr 6 bkt 97/684 flags 1
ifp hme0,hme0 bytes 48/0 pkts 1/0 ipsumd 8a49
RDR external.ip 3128 <- -> 199.181.132.250 80 [client.ip 3427]
age 1178 use 0 sumd 0x9605/0x9605 pr 6 bkt 96/205 flags 1
ifp hme0,hme0 bytes 144/0 pkts 3/0 ipsumd 8a1d
List of active host mappings:
bash-2.03#
--
Gustavo Lozano
[EMAIL PROTECTED]
