Project

General

Profile

Actions
Copy link

Bug #2901

closed

Traffic shaper error results in blocked traffic

Added by David Gessel over 11 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Traffic Shaper (ALTQ)
Target version:
2.1
Start date:
03/23/2013
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1
Affected Architecture:

Description

I set up the traffic shaper using the wizard, it worked fine for a few hours (4) then at some point started throwing:

php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:

to the message box. Turning off/deleting the shaper rules restored network connectivity and stopped the errors.

The errors just before and after then are a bit cryptic to me.

I've attached the traffic shaper config section.

Mar 23 10:50:56     kernel: pid 10476 (snort), uid 0: exited on signal 11
Mar 23 10:50:55     sshlockout[22062]: sshlockout/webConfigurator v3.0 starting up
Mar 23 10:50:55     login: login on ttyv0 as root
Mar 23 10:50:50     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:50     SnortStartup[12280]: Snort START For snort rules(30698_em1)...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:46     php: : The command '/usr/local/etc/rc.d/snort.sh stop' returned exit code '1', the output was ''
Mar 23 10:50:44     SnortStartup[4620]: Snort STOP For snort rules(30698_em1)...
Mar 23 10:50:43     php: : Checking for and disabling any rules dependent upon disabled preprocessors for WAN...
Mar 23 10:50:43     php: : Seems preprocessor/decoder rules are missing, enabling autogeneration of them
Mar 23 10:50:33     check_reload_status: Reloading filter
Mar 23 10:50:32     check_reload_status: Syncing firewall
Mar 23 10:50:31     php: : Starting HAVP
Mar 23 10:50:30     php: : Antivirus: Group 'havp' was added.
Mar 23 10:50:30     squid[84422]: Squid Parent: child process 84629 started
Mar 23 10:50:28     php: : The command '/usr/local/etc/rc.d/squid.sh stop' returned exit code '1', the output was ''
Mar 23 10:50:27     squid[72438]: Squid Parent: child process 72676 exited with status 0
Mar 23 10:50:26     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:23     php: : Not calling package sync code for dependency squidreverse of squid3 because some include files are missing.
Mar 23 10:50:22     check_reload_status: Reloading filter
Mar 23 10:50:22     squid[72438]: Squid Parent: child process 72676 started
Mar 23 10:50:21     php: : Starting Squid
Mar 23 10:50:18     kernel: em1: promiscuous mode enabled
Mar 23 10:50:16     php: : The command '/usr/local/etc/rc.d/darkstat.sh stop' returned exit code '1', the output was 'No matching processes were found'
Mar 23 10:50:15     php: : Restarting/Starting all packages.
Mar 23 10:50:14     syslogd: kernel boot file is /boot/kernel/kernel
Mar 23 10:50:14     syslogd: exiting on signal 15
Mar 23 10:50:13     php: : Creating rrd update script
Mar 23 10:50:10     check_reload_status: Restarting ipsec tunnels
Mar 23 10:50:08     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:08     php: : SQUID is installed but not started. Not installing "filter" rules.
Mar 23 10:50:06     php: : SQUID is installed but not started. Not installing "pfearly" rules.
Mar 23 10:50:06     php: : SQUID is installed but not started. Not installing "nat" rules.
Mar 23 10:50:06     check_reload_status: Updating all dyndns
Mar 23 10:50:04     php: : ROUTING: setting default route to 109.224.57.145
Mar 23 10:50:03     kernel: em0: link state changed to UP
Mar 23 10:50:03     check_reload_status: Linkup starting em0
Mar 23 10:50:01     kernel: em1: link state changed to UP

Files

shaperrules.xml (7.86 KB) shaperrules.xml Shaper Rules in effect when error occured David Gessel, 03/23/2013 07:22 AM
Actions
Copy link
 #1

Updated by Renato Botelho over 11 years ago

  • Status changed from New to Feedback

In the attached xml, shaper section is empty, and there is the place where queues are defined. Could you please double check if the attached config is correct?

Actions
Copy link
 #2

Updated by Chris Buechler over 11 years ago

  • Status changed from Feedback to Closed

no shaper config there, no response, no other such reports of problems.

Actions
Copy link

Also available in: Atom PDF