[leaf-user] =?iso-8859-1?Q?Re:_[leaf-user]_Bering_often_doesn=B4t_?=connect at startup

Ray Olszewski Wed, 02 Jul 2003 12:41:26 -0700

At 02:23 PM 7/2/2003 -0300, Herbert Höhlke wrote:

Hello

I´m using Bering 1.1 floppy firewall. When the firewall starts, the most of
the times, the workstations don´t connect. I would appreciate if somebody
could give a hint. I don´t know if the problem caused by the firewalll or by
my ISP.
I check the connection with "ping www.yahoo.com" in the firewall.
The operator has to restart the firewall until the workstations connect
well.
I have to use "ifdown ppp0" and "ifup ppp0" one or more times until the
firewall connects well.
I have set my ISP DNS IPs in /etc/resolv.conf, but the connection also
fails.

Before I wade through the distinctions in the LCP output (which I suspect, but do not know, are irrelevant to your problem), I'd like you to describe the symptoms a bit more exactly.

First, "until the workstations connect well" is a bit vague as a characterization of the ping problem ... especially since you are ping'ing by FQN, not IP address. How EXACTLY does "ping www.yahoo.com" fail? What happens if you rry to ping the other end of the PPP connection (as identified in the log) by IP address? Your own end of the PPP connection? The ISP's gateway (you should be able to get that from the Bering firewall's routing table)? Whatever the router uses to resolve DNS queries (the ISP's servers?)? Whatever the workstations use to resolve DNS queries?

Second, you refer to "until the firewall connects well". Does this mean the Bering firewall itself cannot "ping www.yahoo.com", or does it mean something else? In any case, what are the results of all the above tests when run from the router, not a workstation?

Finally, instead of "ip addr show", please use "ip -s link show", so we (and you) can see packet counts. If the problem is actually with the PPP connection itself, that should show up as error or dropped packets. Oh, is this a PPPoE link or dialup?

Even if the firewall connects or not, ppp0 is defined. The output of "ip add
show" allways is:

3: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
    link/ether 00:20:18:03:65:62 brd ff:ff:ff:ff:ff:ff
4: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
    link/ether 00:00:21:86:92:56 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.1/24 brd 192.168.1.255 scope global eth1
5: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP> mtu 1492 qdisc pfifo_fast qlen 3
    link/ppp
    inet 200.45.216.85 peer 200.3.62.137/32 scope global ppp0

and the "ip route show" is also the same with a good and a bad connection:
=====
200.3.62.137 dev ppp0  proto kernel  scope link  src 200.45.216.85
192.168.1.0/24 dev eth1  proto kernel  scope link  src 192.168.1.1
default via 200.3.62.137 dev ppp0
=====

The daemon.logs are different with a good and a bad connection.

Daemon.log with a GOOD connection at startup
=====
Jul  1 11:00:22 firewall pppd[10802]: rcvd [LCP ConfReq id=0x81 <mru 1492>
<auth pap> <magic 0x7fb977c3>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00
Jul  1 11:00:22 firewall pppd[10802]: sent [LCP ConfAck id=0x81 <mru 1492>
<auth pap> <magic 0x7fb977c3>]
Jul  1 11:00:22 firewall pppd[10802]: Couldn't increase MRU to 1500
Jul  1 11:00:22 firewall pppd[10802]: sent [LCP EchoReq id=0x0
magic=0x839a0621]
Jul  1 11:00:22 firewall pppd[10802]: sent [PAP AuthReq id=0x1
user="[EMAIL PROTECTED]" password=<hidden>]
Jul  1 11:00:22 firewall pppd[10802]: rcvd [LCP EchoRep id=0x0
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:22 firewall pppd[10802]: rcvd [PAP AuthAck id=0x1 ""] 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 ...
Jul  1 11:00:22 firewall pppd[10802]: sent [IPCP ConfReq id=0x1 <addr
0.0.0.0>]
Jul  1 11:00:22 firewall pppd[10802]: rcvd [IPCP ConfReq id=0x25 <addr
200.3.62.137>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  1 11:00:22 firewall pppd[10802]: sent [IPCP ConfAck id=0x25 <addr
200.3.62.137>]
Jul  1 11:00:22 firewall pppd[10802]: rcvd [IPCP ConfNak id=0x1 <addr
200.45.216.85>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  1 11:00:22 firewall pppd[10802]: sent [IPCP ConfReq id=0x2 <addr
200.45.216.85>]
Jul  1 11:00:22 firewall pppd[10802]: rcvd [IPCP ConfAck id=0x2 <addr
200.45.216.85>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  1 11:00:22 firewall pppd[10802]: local  IP address 200.45.216.85
Jul  1 11:00:22 firewall pppd[10802]: remote IP address 200.3.62.137
Jul  1 11:00:22 firewall pppd[10802]: Script /etc/ppp/ip-up started (pid
11683)
Jul  1 11:00:23 firewall pppd[10802]: Script /etc/ppp/ip-up finished (pid
11683), status = 0x100
Jul  1 11:00:25 firewall pppd[10802]: rcvd [LCP EchoReq id=0x1
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:25 firewall pppd[10802]: sent [LCP EchoRep id=0x1
magic=0x839a0621 68 6f 61 40]
Jul  1 11:00:35 firewall pppd[10802]: rcvd [LCP EchoReq id=0x2
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:35 firewall pppd[10802]: sent [LCP EchoRep id=0x2
magic=0x839a0621 68 6f 61 40]
Jul  1 11:00:42 firewall pppd[10802]: sent [LCP EchoReq id=0x1
magic=0x839a0621]
Jul  1 11:00:42 firewall pppd[10802]: rcvd [LCP EchoRep id=0x1
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:45 firewall pppd[10802]: rcvd [LCP EchoReq id=0x3
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:45 firewall pppd[10802]: sent [LCP EchoRep id=0x3
magic=0x839a0621 68 6f 61 40]
Jul  1 11:00:55 firewall pppd[10802]: rcvd [LCP EchoReq id=0x4
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:00:55 firewall pppd[10802]: sent [LCP EchoRep id=0x4
magic=0x839a0621 68 6f 61 40]
Jul  1 11:01:02 firewall pppd[10802]: sent [LCP EchoReq id=0x2
magic=0x839a0621]
Jul  1 11:01:02 firewall pppd[10802]: rcvd [LCP EchoRep id=0x2
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:05 firewall pppd[10802]: rcvd [LCP EchoReq id=0x5
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:05 firewall pppd[10802]: sent [LCP EchoRep id=0x5
magic=0x839a0621 68 6f 61 40]
Jul  1 11:01:22 firewall pppd[10802]: sent [LCP EchoReq id=0x3
magic=0x839a0621]
Jul  1 11:01:22 firewall pppd[10802]: rcvd [LCP EchoRep id=0x3
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:25 firewall pppd[10802]: rcvd [LCP EchoReq id=0x6
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:25 firewall pppd[10802]: sent [LCP EchoRep id=0x6
magic=0x839a0621 68 6f 61 40]
Jul  1 11:01:42 firewall pppd[10802]: sent [LCP EchoReq id=0x4
magic=0x839a0621]
Jul  1 11:01:42 firewall pppd[10802]: rcvd [LCP EchoRep id=0x4
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:45 firewall pppd[10802]: rcvd [LCP EchoReq id=0x7
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:45 firewall pppd[10802]: sent [LCP EchoRep id=0x7
magic=0x839a0621 68 6f 61 40]
Jul  1 11:01:55 firewall pppd[10802]: rcvd [LCP EchoReq id=0x8
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:01:55 firewall pppd[10802]: sent [LCP EchoRep id=0x8
magic=0x839a0621 68 6f 61 40]
Jul  1 11:02:02 firewall pppd[10802]: sent [LCP EchoReq id=0x5
magic=0x839a0621]
Jul  1 11:02:02 firewall pppd[10802]: rcvd [LCP EchoRep id=0x5
magic=0x7fb977c3] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:02:05 firewall pppd[10802]: rcvd [LCP EchoReq id=0x9
magic=0x7fb977c3 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  1 11:02:05 firewall pppd[10802]: sent [LCP EchoRep id=0x9
magic=0x839a0621 68 6f 61 40]
=====

Daemon.log with a BAD connection at startup
=====
Jul  2 09:14:24 firewall pppd[5337]: rcvd [LCP EchoRep id=0x0
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:14:24 firewall pppd[5337]: rcvd [PAP AuthAck id=0x1 ""] 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 ...
Jul  2 09:14:24 firewall pppd[5337]: sent [IPCP ConfReq id=0x1 <addr
0.0.0.0>]
Jul  2 09:14:24 firewall pppd[5337]: rcvd [IPCP ConfReq id=0x19 <addr
200.3.62.137>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  2 09:14:24 firewall pppd[5337]: sent [IPCP ConfAck id=0x19 <addr
200.3.62.137>]
Jul  2 09:14:24 firewall pppd[5337]: rcvd [IPCP ConfNak id=0x1 <addr
200.82.32.224>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  2 09:14:24 firewall pppd[5337]: sent [IPCP ConfReq id=0x2 <addr
200.82.32.224>]
Jul  2 09:14:24 firewall pppd[5337]: rcvd [IPCP ConfAck id=0x2 <addr
200.82.32.224>] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00
Jul  2 09:14:24 firewall pppd[5337]: local  IP address 200.82.32.224
Jul  2 09:14:24 firewall pppd[5337]: remote IP address 200.3.62.137
Jul  2 09:14:24 firewall pppd[5337]: Script /etc/ppp/ip-up started (pid
16686)
Jul  2 09:14:24 firewall pppd[5337]: Script /etc/ppp/ip-up finished (pid
16686), status = 0x100
Jul  2 09:14:28 firewall pppd[5337]: rcvd [LCP EchoReq id=0x1
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:14:28 firewall pppd[5337]: sent [LCP EchoRep id=0x1
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:14:38 firewall pppd[5337]: rcvd [LCP EchoReq id=0x2
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:14:38 firewall pppd[5337]: sent [LCP EchoRep id=0x2
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:14:44 firewall pppd[5337]: sent [LCP EchoReq id=0x1
magic=0x77aa3ee9]
Jul  2 09:14:44 firewall pppd[5337]: rcvd [LCP EchoRep id=0x1
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:04 firewall pppd[5337]: sent [LCP EchoReq id=0x2
magic=0x77aa3ee9]
Jul  2 09:15:04 firewall pppd[5337]: rcvd [LCP EchoRep id=0x2
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:24 firewall pppd[5337]: sent [LCP EchoReq id=0x3
magic=0x77aa3ee9]
Jul  2 09:15:24 firewall pppd[5337]: rcvd [LCP EchoRep id=0x3
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:38 firewall pppd[5337]: rcvd [LCP EchoReq id=0x3
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:38 firewall pppd[5337]: sent [LCP EchoRep id=0x3
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:15:44 firewall pppd[5337]: sent [LCP EchoReq id=0x4
magic=0x77aa3ee9]
Jul  2 09:15:44 firewall pppd[5337]: rcvd [LCP EchoRep id=0x4
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:48 firewall pppd[5337]: rcvd [LCP EchoReq id=0x4
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:48 firewall pppd[5337]: sent [LCP EchoRep id=0x4
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:15:58 firewall pppd[5337]: rcvd [LCP EchoReq id=0x5
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:15:58 firewall pppd[5337]: sent [LCP EchoRep id=0x5
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:04 firewall pppd[5337]: sent [LCP EchoReq id=0x5
magic=0x77aa3ee9]
Jul  2 09:16:04 firewall pppd[5337]: rcvd [LCP EchoRep id=0x5
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:08 firewall pppd[5337]: rcvd [LCP EchoReq id=0x6
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:08 firewall pppd[5337]: sent [LCP EchoRep id=0x6
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:18 firewall pppd[5337]: rcvd [LCP EchoReq id=0x7
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:18 firewall pppd[5337]: sent [LCP EchoRep id=0x7
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:24 firewall pppd[5337]: sent [LCP EchoReq id=0x6
magic=0x77aa3ee9]
Jul  2 09:16:24 firewall pppd[5337]: rcvd [LCP EchoRep id=0x6
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:28 firewall pppd[5337]: rcvd [LCP EchoReq id=0x8
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:28 firewall pppd[5337]: sent [LCP EchoRep id=0x8
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:38 firewall pppd[5337]: rcvd [LCP EchoReq id=0x9
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:38 firewall pppd[5337]: sent [LCP EchoRep id=0x9
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:44 firewall pppd[5337]: sent [LCP EchoReq id=0x7
magic=0x77aa3ee9]
Jul  2 09:16:44 firewall pppd[5337]: rcvd [LCP EchoRep id=0x7
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:48 firewall pppd[5337]: rcvd [LCP EchoReq id=0xa
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:48 firewall pppd[5337]: sent [LCP EchoRep id=0xa
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:16:58 firewall pppd[5337]: rcvd [LCP EchoReq id=0xb
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:16:58 firewall pppd[5337]: sent [LCP EchoRep id=0xb
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:17:04 firewall pppd[5337]: sent [LCP EchoReq id=0x8
magic=0x77aa3ee9]
Jul  2 09:17:04 firewall pppd[5337]: rcvd [LCP EchoRep id=0x8
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:17:08 firewall pppd[5337]: rcvd [LCP EchoReq id=0xc
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:17:08 firewall pppd[5337]: sent [LCP EchoRep id=0xc
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:17:18 firewall pppd[5337]: rcvd [LCP EchoReq id=0xd
magic=0x847ea138 00 00 00 00] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
Jul  2 09:17:18 firewall pppd[5337]: sent [LCP EchoRep id=0xd
magic=0x77aa3ee9 68 6f 61 40]
Jul  2 09:17:24 firewall pppd[5337]: sent [LCP EchoReq id=0x9
magic=0x77aa3ee9]
Jul  2 09:17:24 firewall pppd[5337]: rcvd [LCP EchoRep id=0x9
magic=0x847ea138] 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
=====


-------------------------------------------------------
This SF.Net email sponsored by: Free pre-built ASP.NET sites including
Data Reports, E-commerce, Portals, and Forums are available now.
Download today and enter to win an XBOX or Visual Studio .NET.
http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] =?iso-8859-1?Q?Re:_[leaf-user]_Bering_often_doesn=B4t_?=connect at startup

Reply via email to