On Friday 12 Mar 2004 11:41 am, Matt Parker wrote:
When I had my ADSL link installed, I went straight for the router (supplied by my upstream ISP - Zen Internet - they give you a choice) because it was a straight ethernet connection, rather than anything requiring drivers ;-)
As to your problem with lost connections, I had exactly the same problem and traced it to the router's DHCP software with the lease running out and not being re-generated. I assigned a static IP to my firewall to connect to the router's 10.0.0.x subnet and now all is good, with my internal network running on 192.168.x.x behind the firewall.
Many thanks but I'm a bit lost now. I am very able with most things but networking is a language I don't think I'll ever understand!
Someone told me that I should enable the DMZ function in the router setup with an unused IP address (10.0.0.4). I did initially but disabled this last night and since then it's been a lot more stable only going off once tonight after I installed some software with the Mandrake package manager.
However, I think the real problem is something deeper. Whatever this means but I think the arp cache is overflowing as my log file /var/log/messages is chock full of 'Neighbour Table Overflow' messages as below;
Mar 12 22:20:39 localhost kernel: NET: 33118 messages suppressed. Mar 12 22:20:39 localhost kernel: Neighbour table overflow. Mar 12 22:20:44 localhost kernel: NET: 32743 messages suppressed. Mar 12 22:20:44 localhost kernel: Neighbour table overflow.
(Note my ethernet card - eth0 - uses a 'tulip' chipset)
and dmesg also produces the above and messages as follows;
Shorewall:newnotsyn:DROP:IN=eth0 OUT= MAC=00:0b:2b:0b:dd:8a:00:09:f3:01:be:57:08:00 SRC=66.102.9.99 DST=10.0.0.10 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=21749 PROTO=TCP SPT=80 DPT=33354 WINDOW=9300 RES=0x00 RST URGP=0
which some web forums would suggest I am being hacked by a clever hacker who is pretending to be Google??
Oh well it's reasonably stable now so I think I'll just be thankful for that and keep my fngers crossed. Thanks for the help though.
Brgds,
Martin