Project

General

Profile

Actions
Copy link

Bug #2901

closed

Traffic shaper error results in blocked traffic

Added by David Gessel over 11 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Traffic Shaper (ALTQ)
Target version:
2.1
Start date:
03/23/2013
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1
Affected Architecture:

Description

I set up the traffic shaper using the wizard, it worked fine for a few hours (4) then at some point started throwing:

php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:

to the message box. Turning off/deleting the shaper rules restored network connectivity and stopped the errors.

The errors just before and after then are a bit cryptic to me.

I've attached the traffic shaper config section.

Mar 23 10:50:56     kernel: pid 10476 (snort), uid 0: exited on signal 11
Mar 23 10:50:55     sshlockout[22062]: sshlockout/webConfigurator v3.0 starting up
Mar 23 10:50:55     login: login on ttyv0 as root
Mar 23 10:50:50     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:50     SnortStartup[12280]: Snort START For snort rules(30698_em1)...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:48     snort[10258]: Non ip() parameter passed with white list, skipping...
Mar 23 10:50:46     php: : The command '/usr/local/etc/rc.d/snort.sh stop' returned exit code '1', the output was ''
Mar 23 10:50:44     SnortStartup[4620]: Snort STOP For snort rules(30698_em1)...
Mar 23 10:50:43     php: : Checking for and disabling any rules dependent upon disabled preprocessors for WAN...
Mar 23 10:50:43     php: : Seems preprocessor/decoder rules are missing, enabling autogeneration of them
Mar 23 10:50:33     check_reload_status: Reloading filter
Mar 23 10:50:32     check_reload_status: Syncing firewall
Mar 23 10:50:31     php: : Starting HAVP
Mar 23 10:50:30     php: : Antivirus: Group 'havp' was added.
Mar 23 10:50:30     squid[84422]: Squid Parent: child process 84629 started
Mar 23 10:50:28     php: : The command '/usr/local/etc/rc.d/squid.sh stop' returned exit code '1', the output was ''
Mar 23 10:50:27     squid[72438]: Squid Parent: child process 72676 exited with status 0
Mar 23 10:50:26     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:23     php: : Not calling package sync code for dependency squidreverse of squid3 because some include files are missing.
Mar 23 10:50:22     check_reload_status: Reloading filter
Mar 23 10:50:22     squid[72438]: Squid Parent: child process 72676 started
Mar 23 10:50:21     php: : Starting Squid
Mar 23 10:50:18     kernel: em1: promiscuous mode enabled
Mar 23 10:50:16     php: : The command '/usr/local/etc/rc.d/darkstat.sh stop' returned exit code '1', the output was 'No matching processes were found'
Mar 23 10:50:15     php: : Restarting/Starting all packages.
Mar 23 10:50:14     syslogd: kernel boot file is /boot/kernel/kernel
Mar 23 10:50:14     syslogd: exiting on signal 15
Mar 23 10:50:13     php: : Creating rrd update script
Mar 23 10:50:10     check_reload_status: Restarting ipsec tunnels
Mar 23 10:50:08     php: : New alert found: There were error(s) loading the rules: pfctl: DIOCGIFSPEED: Invalid argument - The line in question reads [0]:
Mar 23 10:50:08     php: : SQUID is installed but not started. Not installing "filter" rules.
Mar 23 10:50:06     php: : SQUID is installed but not started. Not installing "pfearly" rules.
Mar 23 10:50:06     php: : SQUID is installed but not started. Not installing "nat" rules.
Mar 23 10:50:06     check_reload_status: Updating all dyndns
Mar 23 10:50:04     php: : ROUTING: setting default route to 109.224.57.145
Mar 23 10:50:03     kernel: em0: link state changed to UP
Mar 23 10:50:03     check_reload_status: Linkup starting em0
Mar 23 10:50:01     kernel: em1: link state changed to UP

Files

shaperrules.xml (7.86 KB) shaperrules.xml Shaper Rules in effect when error occured David Gessel, 03/23/2013 07:22 AM
Actions
Copy link

Also available in: Atom PDF