Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.ecn.uoknor.edu!news.wildstar.net!serv.hinet.net!news.uoregon.edu!news.rediris.es!minerva.ibernet.es!uunet!in2.uu.net!206.28.134.7!news.cybercom.net!news.cybercom.net!rhuff From: rhuff@shell1.cybercom.net (Robert Huff) Newsgroups: comp.unix.bsd.freebsd.misc Subject: natd + telnet = system crash Date: 19 Apr 1997 02:15:26 GMT Organization: Cyber Access Internet Services (617) 876-5660 Lines: 303 Distribution: world Message-ID: <RHUFF.97Apr18221526@shell1.cybercom.net> NNTP-Posting-Host: shell1.cybercom.net Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:39308 I'm trying to run NATD; everything works fine for the masqueraded machine. Locally I can run everything (ftp, ping, http) _except_ telnet. If I start telnet across the masqueraded interface I get a kernel panic within 15-20 seconds. I am appending (1) DDB crash info; (2) NATD init file; (3) kernel config file; and (4) boot probe results. I have firewall=YES in sysconfig, and rc.firewall set to "open". Robert Huff fatal trap 12: page fault in kernel mode fault virtual address 0xf1fa200 fault code supervisor read, page not present instruction poiinter 0x8:0xf0145cce stack pointer 0x10:0xefbffdec frame pointer 0x10:0xefbffdf0 code segment base 0x0 limit 0xffff type 0x1b DPL 0 pres 1 def 32 gran 1 eflags interrupt enabled, resume, IOPL = 0 current process natd interrupt mask tty kernel type 12 trap code = 0 stopped at _pppfcs+0x16 xorb (%edx,%dl) #!/bin/sh if [ $# != 1 ] then echo "usage: natd.test ifname" exit 1 fi #ipfw -f flush ipfw add 5000 divert 32000 ip from any to any via $1 in ipfw add 5100 divert 32001 ip from any to any via $1 out #ipfw add 65534 pass ip from any to any ipfw show /sbin/natd -i 32000 -o 32001 -n $1 # # GENERIC -- Generic machine with WD/AHx/NCR/BTx family disks # # For more information read the handbook part System Administration -> # Configuring the FreeBSD Kernel -> The Configuration File. # The handbook is available in /usr/share/doc/handbook or online as # latest version from the FreeBSD World Wide Web server # <URL:http://www.FreeBSD.ORG/> # # An exhaustive list of options and more detailed explanations of the # device lines is present in the ./LINT configuration file. If you are # in doubt as to the purpose or necessity of a line, check first in LINT. # # $Id: GENERIC,v 1.77.2.4 1997/02/22 20:31:24 joerg Exp $ machine "i386" #cpu "I386_CPU" cpu "I486_CPU" #cpu "I586_CPU" #cpu "I686_CPU" ident COMPOSTELLA maxusers 25 options MATH_EMULATE #Support for x87 emulation options INET #InterNETworking options FFS #Berkeley Fast Filesystem options NFS #Network Filesystem options MSDOSFS #MSDOS Filesystem options "CD9660" #ISO 9660 Filesystem options PROCFS #Process filesystem options "COMPAT_43" #Compatible with BSD 4.3 [KEEP THIS!] options SCSI_DELAY=4 #Be pessimistic about Joe SCSI device options BOUNCE_BUFFERS #include support for DMA bounce buffers options UCONSOLE #Allow users to grab the console options FAILSAFE #Be conservative options USERCONFIG #boot -c editor options VISUAL_USERCONFIG #visual boot -c editor options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #print information about # dropped packets options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity options IPDIVERT #divert sockets #options TCPDEBUG options DDB # kernel debugger # # These three options provide support for System V Interface # Definition-style interprocess communication, in the form of shared # memory, semaphores, and message queues, respectively. # options SYSVSHM options SYSVSEM options SYSVMSG # # This option includes a MD5 routine in the kernel, this is used for # various authentication and privacy uses. # options "MD5" config kernel root on sd1 controller isa0 #controller eisa0 controller pci0 controller fdc0 at isa? port "IO_FD1" bio irq 6 drq 2 vector fdintr disk fd0 at fdc0 drive 0 #disk fd1 at fdc0 drive 1 #tape ft0 at fdc0 drive 2 #controller wdc0 at isa? port "IO_WD1" bio irq 14 vector wdintr #disk wd0 at wdc0 drive 0 #disk wd1 at wdc0 drive 1 #controller wdc1 at isa? port "IO_WD2" bio irq 15 vector wdintr #disk wd2 at wdc1 drive 0 #disk wd3 at wdc1 drive 1 #options ATAPI #Enable ATAPI support for IDE bus #options ATAPI_STATIC #Don't do it as an LKM #device wcd0 #IDE CD-ROM # A single entry for any of these controllers (ncr, ahb, ahc, amd) is # sufficient for any number of installed devices. #controller ncr0 #controller amd0 #controller ahb0 controller ahc0 #controller bt0 at isa? port "IO_BT0" bio irq ? vector bt_isa_intr #controller uha0 at isa? port "IO_UHA0" bio irq ? drq 5 vector uhaintr #controller aha0 at isa? port "IO_AHA0" bio irq ? drq 5 vector ahaintr #controller aic0 at isa? port 0x340 bio irq 11 vector aicintr #controller nca0 at isa? port 0x1f88 bio irq 10 vector ncaintr #controller nca1 at isa? port 0x350 bio irq 5 vector ncaintr #controller sea0 at isa? bio irq 5 iomem 0xc8000 iosiz 0x2000 vector seaintr controller scbus0 device sd0 #device od0 #See LINT for possible `od' options. device st0 device cd0 #Only need one of these, the code dynamically grows #device wt0 at isa? port 0x300 bio irq 5 drq 1 vector wtintr #device mcd0 at isa? port 0x300 bio irq 10 vector mcdintr #controller matcd0 at isa? port 0x230 bio #device scd0 at isa? port 0x230 bio # syscons is the default console driver, resembling an SCO console #device sc0 at isa? port "IO_KBD" tty irq 1 vector scintr # Enable this and PCVT_FREEBSD for pcvt vt220 compatible console driver device vt0 at isa? port "IO_KBD" tty irq 1 vector pcrint options PCVT_FREEBSD=210 # pcvt running on FreeBSD >= 2.0.5 options XSERVER # include code for XFree86 #options FAT_CURSOR # start with block cursor # If you have a ThinkPAD, uncomment this along with the rest of the PCVT lines #options PCVT_SCANSET=2 # IBM keyboards are non-std # Mandatory, don't remove device npx0 at isa? port "IO_NPX" irq 13 vector npxintr # # Laptop support (see LINT for more options) # #device apm0 at isa? disable # Advanced Power Management #options APM_BROKEN_STATCLOCK # Workaround some buggy APM BIOS # PCCARD (PCMCIA) support #controller crd0 #device pcic0 at crd? #device pcic1 at crd? device sio0 at isa? port "IO_COM1" tty irq 4 vector siointr device sio1 at isa? port "IO_COM2" tty irq 3 vector siointr #device sio2 at isa? disable port "IO_COM3" tty irq 5 vector siointr #device sio3 at isa? disable port "IO_COM4" tty irq 9 vector siointr device lpt0 at isa? port? tty irq 7 vector lptintr #device lpt1 at isa? port? tty #device mse0 at isa? port 0x23c tty irq 5 vector mseintr #device psm0 at isa? disable port "IO_KBD" conflicts tty irq 12 vector psmintr # Order is important here due to intrusive probes, do *not* alphabetize # this list of network interfaces until the probes have been fixed. # Right now it appears that the ie0 must be probed before ep0. See # revision 1.20 of this file. device de0 #device fxp0 #device vx0 device ed0 at isa? port 0x340 net irq 9 vector edintr #device ed0 at isa? port 0x340 net irq 2 iomem 0xd8000 vector edintr #device ed1 at isa? port 0x300 net irq 5 iomem 0xd8000 vector edintr #device ie0 at isa? port 0x360 net irq 7 iomem 0xd0000 vector ieintr #device ep0 at isa? port 0x300 net irq 10 vector epintr #device ex0 at isa? port 0x300 net irq 10 iomem 0xd0000 vector exintr #device fe0 at isa? port 0x300 net irq ? vector feintr #device ix0 at isa? port 0x300 net irq 10 iomem 0xd0000 iosiz 32768 vector ixintr #device le0 at isa? port 0x300 net irq 5 iomem 0xd0000 vector le_intr #device lnc0 at isa? port 0x280 net irq 10 drq 0 vector lncintr #device ze0 at isa? port 0x300 net irq 5 iomem 0xd8000 vector zeintr #device zp0 at isa? port 0x300 net irq 10 iomem 0xd8000 vector zpintr # # for the SoundBlaster 16 # controller snd0 device sb0 at isa? port 0x220 irq 7 conflicts drq 1 vector sbintr device sbxvi0 at isa? drq 5 device sbmidi0 at isa? port 0x330 pseudo-device loop pseudo-device ether pseudo-device log #pseudo-device sl 1 # ijppp uses tun instead of ppp device pseudo-device ppp 1 #pseudo-device tun 1 pseudo-device pty 24 #pseudo-device gzip # Exec gzipped a.out's # KTRACE enables the system-call tracing facility ktrace(2). # This adds 4 KB bloat to your kernel, and slightly increases # the costs of each syscall. #options KTRACE #kernel tracing Apr 7 08:15:13 compostella /kernel: Copyright (c) 1992-1996 FreeBSD Inc. Apr 7 08:15:13 compostella /kernel: Copyright (c) 1982, 1986, 1989, 1991, 1993 Apr 7 08:15:13 compostella /kernel: The Regents of the University of California. All rights reserved. Apr 7 08:15:13 compostella /kernel: Apr 7 08:15:13 compostella /kernel: FreeBSD 2.2.1-RELEASE #0: Sat Apr 5 23:55:03 EST 1997 Apr 7 08:15:13 compostella /kernel: root@compostella.cybercom.net:/usr/src/sys/compile/COMPOSTELLA Apr 7 08:15:13 compostella /kernel: CPU: i486DX (486-class CPU) Apr 7 08:15:13 compostella /kernel: real memory = 67108864 (65536K bytes) Apr 7 08:15:13 compostella /kernel: avail memory = 62341120 (60880K bytes) Apr 7 08:15:13 compostella /kernel: Probing for devices on PCI bus 0: Apr 7 08:15:13 compostella /kernel: chip0 <Intel 82439> rev 3 on pci0:0 Apr 7 08:15:13 compostella /kernel: chip1 <Intel 82371SB PCI-ISA bridge> rev 1 on pci0:7:0 Apr 7 08:15:13 compostella /kernel: chip2 <Intel 82371SB IDE interface> rev 0 on pci0:7:1 Apr 7 08:15:13 compostella /kernel: vga0 <VGA-compatible display device> rev 1 int a irq 12 on pci0:17 Apr 7 08:15:14 compostella /kernel: de0 <Digital 21140 Fast Ethernet> rev 17 int a irq 10 on pci0:18 Apr 7 08:15:14 compostella /kernel: de0: ZNYX ZX34X 21140 [10-100Mb/s] pass 1.1 Apr 7 08:15:14 compostella /kernel: de0: address 00:c0:95:f8:17:ad Apr 7 08:15:14 compostella /kernel: de0: enabling 100baseTX port Apr 7 08:15:14 compostella /kernel: ahc0 <Adaptec 2940 Ultra SCSI host adapter> rev 0 int a irq 11 on pci0:19 Apr 7 08:15:14 compostella /kernel: ahc0: aic7880 Single Channel, SCSI Id=7, 16 SCBs Apr 7 08:15:14 compostella /kernel: ahc0 waiting for scsi devices to settle Apr 7 08:15:14 compostella /kernel: (ahc0:0:0): "IBM OEM 0663H12 s x" type 0 fixed SCSI 2 Apr 7 08:15:14 compostella /kernel: sd0(ahc0:0:0): Direct-Access 958MB (1962030 512 byte sectors) Apr 7 08:15:14 compostella /kernel: (ahc0:1:0): "SEAGATE ST3610N 9290" type 0 fixed SCSI 2 Apr 7 08:15:14 compostella /kernel: sd1(ahc0:1:0): Direct-Access 510MB (1046206 512 byte sectors) Apr 7 08:15:14 compostella /kernel: Probing for devices on the ISA bus: Apr 7 08:15:14 compostella /kernel: vt0 at 0x60-0x6f irq 1 on motherboard Apr 7 08:15:14 compostella /kernel: vt0: generic, 80 col, color, 8 scr, mf2-kbd, [R3.20-b24] Apr 7 08:15:14 compostella /kernel: sio0 at 0x3f8-0x3ff irq 4 on isa Apr 7 08:15:14 compostella /kernel: sio0: type 16550A Apr 7 08:15:14 compostella /kernel: sio1 at 0x2f8-0x2ff irq 3 on isa Apr 7 08:15:14 compostella /kernel: sio1: type 16550A Apr 7 08:15:15 compostella /kernel: lpt0 at 0x378-0x37f irq 7 on isa Apr 7 08:15:15 compostella /kernel: lpt0: Interrupt-driven port Apr 7 08:15:15 compostella /kernel: lp0: TCP/IP capable interface Apr 7 08:15:15 compostella /kernel: fdc0 at 0x3f0-0x3f7 irq 6 drq 2 on isa Apr 7 08:15:15 compostella /kernel: fdc0: NEC 72065B Apr 7 08:15:15 compostella /kernel: fd0: 1.44MB 3.5in Apr 7 08:15:15 compostella /kernel: npx0 on motherboard Apr 7 08:15:15 compostella /kernel: npx0: INT 16 interface Apr 7 08:15:15 compostella /kernel: sb0 not found at 0x220 Apr 7 08:15:15 compostella /kernel: sbxvi0 not found Apr 7 08:15:15 compostella /kernel: sbmidi0 not found at 0x330 Apr 7 08:15:15 compostella /kernel: IP packet filtering initialized, divert enabled, logging limited to 100 packets/entry Apr 7 08:15:15 compostella named[80]: starting. named 4.9.4-P1 Tue Mar 25 12:43:20 GMT 1997 jkh@time.cdrom.com:/usr/obj/usr/src/usr.sbin/named Apr 7 08:15:15 compostella named[81]: Ready to answer queries. Apr 7 08:15:17 compostella lpd[129]: restarted Apr 7 08:15:22 compostella pppd[177]: pppd 2.2.0 started by root, uid 0 Apr 7 08:15:56 compostella pppd[177]: Connect: ppp0 <--> /dev/cuaa1 Apr 7 08:15:59 compostella pppd[177]: local IP address 206.28.134.45 Apr 7 08:15:59 compostella pppd[177]: remote IP address 206.28.134.16 Apr 7 08:16:15 compostella ntpdate[185]: step time server 192.31.216.30 offset 1.160724