HPE Community
Operating System - HP-UX
1838378 Members
4460 Online
110125 Solutions
New Discussion

Re: ipfilter hangs

 
Randy Mikesell
Occasional Contributor

‎02-21-2003 08:43 AM

‎02-21-2003 08:43 AM

ipfilter hangs

Whenever I start ipfilter, it works fine for a minute or two and then hangs. The system is still running and I can access it through the console, but the network no longer responds.

ipfstat still shows packets being passed.

netstat shows an increase in incomming and outgoing packets, but there is no response to the terminal.

When I turn off ipfilter, a minute or two later everything works (even the commands that I typed and got no response on).

Contents of my ipf.conf file:

pass in from any to any
pass out from any to any
block in log proto icmp from any to any

I have tried many variations and the results have always been the same.

Any suggestions?

Randy
0 Kudos
Reply
1 REPLY 1
Ron Kinner
Honored Contributor

‎02-21-2003 08:52 AM

‎02-21-2003 08:52 AM

Re: ipfilter hangs

Does it still lock if you drop the last line? If not and you are running 11.0 you need to allow echo replies from the gateway or turn off dead gateway detection with ndd. The default time without contact to the gateway before declaring it dead is about 3 minutes and it should come back in about the same time or less.

Ron
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.