[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
PPPoE/DSL connection problems: pop, ssh
Hello:
I have a firewall running OpenBSD 2.7. It is a 486/25, 16MB RAM, 2x 3C509B
ISA NIC's (see dmesg below).
Most everything works fine from inside the firewall. Web browsing works
just fine from both the internal network and on the firewall itself. The
problems we have are that pop and ssh don't work from the internal network,
but from firewall machine.
For pop on the ISP server, and from the internal network, you can connect
(via a pop client or telneting to port 110) and log in, get a list of the
messages, but then when you try to retrieve the first message it just sits
there and eventually pop clients timeout. When you connect from the
firewall itself you can get all the messages, no problems.
Some ssh clients won't finish connecting, but the OpenBSD and cygwin
clients do. again, on the firewall machine, it works just fine.
So, here is the dmesg and the ipf/ipnat/ppp conf files for anyone that can
use them (ep0 is the external and ep1 is the internal interface). If
anyone can find where I am doing something wrong please feel free to smack
me on the head and point it out.
-danimal
dmesg
------------%< snip %<----------------------%< snip %<------------
OpenBSD 2.7-stable (DELPH) #1: Tue Oct 3 17:01:22 EDT 2000
root@delphinidae:/usr/src/sys/arch/i386/compile/DELPH
cpu0: Intel 486DX (486-class)
real mem = 16363520 (15980K)
avail mem = 12681216 (12384K)
using 225 buffers containing 921600 bytes (900K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(c9) BIOS, date 03/04/94
isa0 at mainbus0
isadma0 at isa0
wdc0 at isa0 port 0x1f0/8 irq 14
wd0 at wdc0 channel 0 drive 0: <WDC AC2540H>
wd0: can use 16-bit, PIO mode 3
wd0: 16-sector PIO, LBA, 515MB, 1048 cyl, 16 head, 63 sec, 1056384 sectors
ep0 at isa0 port 0x300/16 irq 10: address 00:20:af:25:75:e4, utp/aui (default utp)
ep1 at isa0 port 0x320/16 irq 11: address 00:60:97:0b:44:e7, utp (default utp)
pcppi0 at isa0 port 0x61
sysbeep0 at pcppi0
lpt2 at isa0 port 0x3bc/4: polled
pccom0 at isa0 port 0x3f8/8 irq 4: ns16450, no fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16450, no fifo
vt0 at isa0 port 0x60/16 irq 1: vga 80/132 col, color, 8 scr, mf2-kbd
pms0 at vt0 irq 12
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask 4040 netmask 4c40 ttymask 5c42
pctr: no performance counters in CPU
dkcsum: wd0 matched BIOS disk 80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
------------%< snip %<----------------------%< snip %<------------
ipf.rules (these are the super simple rules to make sure it is working)
------------%< snip %<----------------------%< snip %<------------
pass in from any to any
pass out from any to any
------------%< snip %<----------------------%< snip %<------------
ipnat.rules
------------%< snip %<----------------------%< snip %<------------
map tun0 10/24 -> tun0/32 portmap tcp/udp 10000:60000
map tun0 10/24 -> tun0/32
------------%< snip %<----------------------%< snip %<------------
ppp.conf
------------%< snip %<----------------------%< snip %<------------
default:
set log Phase Chat LCP IPCP CCP tun command Warning Error Alert
set device "!/usr/sbin/pppoe -i ep0"
disable acfcomp protocomp vjcomp deflate pred1
nat enable yes
nat same_ports yes
nat use_sockets yes
deny acfcomp
set mru 1492
set mtu 1492
set crtscts off
set speed sync
accept lqr
set dial
set login
set timeout 0
set authname [scrubbed]
set authkey [scrubbed]
set ifaddr 10.0.0.1/0 10.0.0.2/0 0.0.0.0 0.0.0.0
add default HISADDR
------------%< snip %<----------------------%< snip %<------------