Hello Stuart
Well during the past few days i was busy trying to make it work , i upgraded to
version 4.0 also changed all the Ethernet cards .as according to some mailing
lists this error comes cause of some Ethernet nic's. only changing the CPU is
left , now gonna try make it work on a SEP cpu ..
do you think it would work ?
if it doesn't bother you much can you see my pf.conf & check if there aren't
any logical mistakes .. that is causing this.
thanks once again
lan_net = "10.0.0.0/16"
int_if = "xl1"
ext_if1 = "xl0"
ext_if2 = "xl2"
ext_gw1 = "192.168.0.1"
ext_gw2 = "203.81.235.1"
chadd = "10.0.0.1"
ports = "22 25 53 80 110 119 123 143 443 465 554 900 995 1755 1863 1999 2090
2091 2095 3000 3020 2020 3389 5000 5001 5050 5100 5190 6667
11999 14360"
table <allowedclients> persist file "/etc/allowedclients"
# nat outgoing connections on each internet interface
nat on $ext_if1 from $lan_net to <allowedclients> -> ($ext_if1)
nat on $ext_if2 from $lan_net to <allowedclients> -> ($ext_if2)
rdr on $int_if proto tcp from <allowedclients> to any port 80 -> $chadd port
8080
# pass all outgoing packets on internal interface
pass out on $int_if from any to $lan_net
# pass in quick any packets destined for the gateway itself
pass in quick on $int_if from $lan_net to $int_if
pass in on $int_if route-to { ($ext_if1 $ext_gw1) } inet proto tcp from \
$lan_net to any port {$ports} keep state
pass in on $int_if route-to { ($ext_if2 $ext_gw2) } from \
$lan_net flags S/SA keep state
# general "pass out" rules for external interfaces
pass out on $ext_if1 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if1 proto { udp, icmp } from any to any keep state
pass out on $ext_if2 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if2 proto { udp, icmp } from any to any keep state
# route packets from any IPs on $ext_if1 to $ext_gw1 and the same for
# $ext_if2 and $ext_gw2
pass out on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any
pass out on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any
*:$., 88,.$:*(((*$ Stingray *:$., 88,.$:*((*$
----- Original Message ----
From: Stuart Henderson <[EMAIL PROTECTED]>
To: S t i n g r a y <[EMAIL PROTECTED]>
Cc: openbsd <[email protected]>
Sent: Monday, January 8, 2007 4:52:11 PM
Subject: Re: Is this possible or not ?
On 2007/01/08 01:39, S t i n g r a y wrote:
> but now i have another problem which is whenever i load this file my server
> crashes with a "kernel: page fault" the whole error is
> epic0: lost carrier
> kernel: page fault trap, code=0
> stopped at pf_route +0x248 : movl
>
> do you know why is this ?
>
> i am using OpenBSD 3.9
I don't know why, but my suggestions are:
- first, try 4.0 or a -current snapshot (-current is best)
in case it's already fixed;
- if it still crashes, try and get the information from "trace"
and "ps" - if you're lucky, it will still be in "dmesg" after
you reboot (type "boot r" at the ddb prompt, don't power-cycle).
Otherwise, copy it by hand or better, if you have a null modem
cable, capture the whole lot: openbsd.org/faq/faq7.html#SerCon
has instructions.
____________________________________________________________________________________
Never miss an email again!
Yahoo! Toolbar alerts you the instant new Mail arrives.
http://tools.search.yahoo.com/toolbar/features/mail/
