please Help

[Umar]

Dear Members!

I have FreeBSD 7.1 with squid proxy running. PF is configured.

Last few days i am facing some problems. Browsing is stuck time by time on
clients machine. 

I tried to ping my local network from my FreeBSD server there i found the
issue.

here is the output of ping.

[root at proxyServer ~]# ping 10.11.0.3
PING 10.11.0.3 (10.11.0.3): 56 data bytes
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
64 bytes from 10.11.0.3: icmp_seq=3 ttl=64 time=0.111 ms
64 bytes from 10.11.0.3: icmp_seq=4 ttl=64 time=0.147 ms
64 bytes from 10.11.0.3: icmp_seq=5 ttl=64 time=0.099 ms

[root at proxyServer ~]# ping 10.11.0.5
PING 10.11.0.5 (10.11.0.5): 56 data bytes
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
ping: sendto: Operation not permitted
64 bytes from 10.11.0.5: icmp_seq=3 ttl=64 time=0.111 ms
64 bytes from 10.11.0.5: icmp_seq=4 ttl=64 time=0.147 ms
64 bytes from 10.11.0.5: icmp_seq=5 ttl=64 time=0.099 ms

On DNS queury
[root at proxyServer~]# nslookup www.yahoo.com
;; connection timed out; no servers could be reached

[root at proxyServer~]# nslookup www.yahoo.com
Server:         10.11.0.9
Address:        10.11.0.9#53

Non-authoritative answer:
www.yahoo.com   canonical name = www.wa1.b.yahoo.com.
www.wa1.b.yahoo.com     canonical name = www-real.wa1.b.yahoo.com.
Name:   www-real.wa1.b.yahoo.com
Address: 87.248.113.14

As you can see some time its getting response and some times not. If I stop
(PF) then its working fine.

Is there any traffic load issue or PF issue? or any kernel tunning required
for heavy traffic.

Please help

Regards,

Umar
-- 
View this message in context: http://www.nabble.com/please-Help-tp24625659p24625659.html
Sent from the freebsd-pf mailing list archive at Nabble.com.