DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 11th March 2013
kbeaucha kbeaucha is offline
Port Guard
 
Join Date: May 2008
Posts: 24
Thanked 0 Times in 0 Posts
Default Ethernet port becomes unresponsive - troubleshooting suggestions

Hello:

I have a remote site where I'm having a problem with the OpenBSD network gateway I'm using there. This site is one of five that are all configured basically the same, and this site has been in service for many years. What we thought was a minor change has apparently caused a new problem.

The remote site's gateway forwards packets between its upstream port and its local network port. Most traffic comes in on enc0, because the gateway is one end of a point-to-point VPN tunnel set up using ipsec, but the upstream port is pingable and permits ssh logins.

For the longest time a Soekris 4801 ran the tunnel flawlessly.

A recent change put a new embedded controller behind this gateway. From the local network, you can log into the controller by telneting to port 1400, and the same port is used to push data back to a Macintosh on our main campus through the tunnel.

No changes were made to our remote ruleset to accommodate this move.

After we added this controller and Mac connection, we began to experience times when the upstream port at the remote site would become unresponsive. Data wasn't traversing the tunnel for anything behind the Soekris; I believe the tunnel was being dropped. The upstream port would not allow ssh logins and would not respond to pings.

Power-cycling the Soekris would bring everything back.

To eliminate the possibility that the Soekris was the cause, we replaced it with a (faster) PC Engines Alix unit. The problems seemed to go away for over a year, until last week, when the tunnel dropped again.

Due to some other problems I wasn't able to log into the Alix's serial port, but the upstream (and local network) ports still had link, and the admin for the switch that the upstream port was plugged into said he could see link and get the MAC address of the gateway. I am open to suggestions on what to look for if this should occur again to help resolve the problem.


tia
kmb

Last edited by kbeaucha; 11th March 2013 at 08:09 PM. Reason: Add some details on state of upstream port from other admin
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Upgraded all ports, now slow and unresponsive X caravel FreeBSD Ports and Packages 5 12th July 2012 07:45 PM
need help with troubleshooting pf.conf tinhead OpenBSD Security 11 25th March 2011 09:34 PM
need troubleshooting tip for vpn connections badguy OpenBSD Security 19 10th November 2010 02:53 PM
Need suggestions on what to name this project TerryP Off-Topic 10 6th November 2010 03:13 PM
CD/DVD burner becomes unresponsive after burncd dewarrn1 FreeBSD General 2 23rd October 2008 01:45 AM


All times are GMT. The time now is 01:59 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick