netbsd-help: Re: syslog filling up with sysmon messages

Subject: Re: syslog filling up with sysmon messages
To: None <bouyer@antioche.lip6.fr, newhouse@rockhead.com>
From: Paul Newhouse <newhouse@rockhead.com>
List: netbsd-help
Date: 10/11/2000 12:58:53

On Wed, 11 Oct 2000 20:24:31 +0200
   Manuel Bouyer <bouyer@antioche.lip6.fr> asks:

>	On Tue, Oct 10, 2000 at 10:27:18PM -0700, Paul Newhouse wrote:
>	> Platform i386
>	> 
>	> I'm running:
>	> 
>	> NetBSD bigbox 1.4ZD NetBSD 1.4ZD (BIGBOX) #3: Thu Jun 22 17:34:38 PDT 2000     \
>	>     newhouse@pimin:/usr/s
>	> rc/sys/arch/i386/compile/BIGBOX i386
>	> 
>	> recently I started getting my syslog filled up with:        
>	> 
>	> Oct 10 22:10:30 bigbox ipmon[121]: 22:10:30.514814             tlp1 @0:12 p \
>	>      <work>.com,789 -> rockhead.com,22 PR tcp len 20 27648 -AP IN
>	> 
>	> It's a short packet and I have an IPF rule that says log them.
>	> 
>	> The link is a pppd, tunneled through ssh, VPN to a Solaris 2.7 machine running 
>	> McKerras (sp?) pppd and ssh.  I didn't use to see these before and now the link 
>	> seems really mmm ... jumpy, whereas it was pretty smooth before.  I'm pretty 
>	> sure I haven't changed anything on either system in quite awhile.
>
>	What's the MTU of both interfaces ?

Problem connection (1460):
  home (client) side:
    kdebug 1 mru 1460 nopersist local nocrtscts nodeflate novjccomp \
	ipcp-accept-local ipcp-accept-remote netmask 255.255.255.255 linkname WORK ipparam VIDSL

  work (server) side (Solaris 2.7):
	mru 1460 nodetach nopersist proxyarp vj-max-slots 16 deflate 15,15 \
	lcp-echo-failure 100 lcp-echo-interval 10 local nocrtscts \
	172.31.255.5:172.31.255.6 netmask 255.255.255.255 ipparam WORK

YUCK!! I didn't realize each side had deviated so much!?!? hmmmm??

I'm remembering that 1500, vj & deflate wouldn't work for this connection, I had to turn 
them off or the connection wouldn't stay up very long.

This next connection has always been very stable.

Working connection (1500):
  home (server) side:
    nodetach lcp-echo-failure 30 lcp-echo-interval 15 nopersist noauth \
	172.31.255.2:172.31.255.1 vj-max-slots 16 deflate 15,15 local nocrtscts \
	netmask 255.255.255.252 mtu 1500 domain wan.vpn linkname ALAN ipparam CABLEVPN

  remote (client) side (NetBSD, but on occasion FreeBSD and Linux):
    nodetach lcp-echo-failure 30 lcp-echo-interval 5 nopersist noauth \
	172.31.255.1:172.31.255.2 vj-max-slots 16 deflate 15,15 local nocrtscts \
	netmask 255.255.255.252 mtu 1500 domain wan.vpn ipparam DSLVPN

Paul

P.S. - Both connections die a mysterious stagnation death over @home.

 
:ex
:vi
:q