[Debian-ports-devel] [lfilipoz at debian.org: scheduled downtime for Debian services at UBC (2016-01-09T16:00Z/20:00Z)]
    Aurelien Jarno 
    aurelien at aurel32.net
       
    Sun Jan 10 18:59:12 UTC 2016
    
    
  
On 2016-01-10 19:47, John Paul Adrian Glaubitz wrote:
> On 01/10/2016 07:40 PM, Luca Filipozzi wrote:
> > I don't have access to leda.debian.net to see its stats.
> 
> On leda:
> 
> glaubitz at leda:~$ /sbin/ifconfig
> eth0      Link encap:Ethernet  HWaddr 00:16:36:40:38:81
>           inet addr:206.12.19.127  Bcast:206.12.19.255  Mask:255.255.255.0
>           inet6 addr: 2607:f8f0:610:4000:6564:a62:ce0c:137f/64 Scope:Global
>           inet6 addr: 2607:f8f0:610:4000:216:36ff:fe40:3881/64 Scope:Global
>           inet6 addr: fe80::216:36ff:fe40:3881/64 Scope:Link
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:12762496 errors:0 dropped:2 overruns:0 frame:0
>           TX packets:6610572 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000
>           RX bytes:7673552338 (7.1 GiB)  TX bytes:57905994151 (53.9 GiB)
> 
> lo        Link encap:Local Loopback
>           inet addr:127.0.0.1  Mask:255.0.0.0
>           inet6 addr: ::1/128 Scope:Host
>           UP LOOPBACK RUNNING  MTU:16436  Metric:1
>           RX packets:352432 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:352432 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:0
>           RX bytes:3426825958 (3.1 GiB)  TX bytes:3426825958 (3.1 GiB)
> 
> glaubitz at leda:~$
> 
> What I now just saw is that leda's dmesg is full with messages from the
> firewall which mention several buildds:
> 
> glaubitz at leda:~$ dmesg | head -n 5
> D=7053 DF PROTO=TCP SPT=39714 DPT=59310 WINDOW=115 RES=0x00 ACK URGP=0
> [111805.263298] IN=eth0 OUT=
> MAC=00:16:36:40:38:81:00:1e:f6:46:2c:00:08:00 SRC=193.6.62.26
> DST=206.12.19.127 LEN=1500 TOS=0x00 PREC=0x00 TTL=46 ID=61343 DF
> PROTO=TCP SPT=59406 DPT=27465 WINDOW=115 RES=0x00 ACK URGP=0
> [111805.704812] IN=eth0 OUT=
> MAC=00:16:36:40:38:81:00:1e:f6:46:2c:00:08:00 SRC=160.45.34.35
> DST=206.12.19.127 LEN=1500 TOS=0x00 PREC=0x00 TTL=47 ID=34149 DF
> PROTO=TCP SPT=58107 DPT=41581 WINDOW=229 RES=0x00 ACK URGP=0
> [111805.706369] IN=eth0 OUT=
> MAC=00:16:36:40:38:81:00:1e:f6:46:2c:00:08:00 SRC=160.45.34.35
> DST=206.12.19.127 LEN=1500 TOS=0x00 PREC=0x00 TTL=47 ID=34150 DF
> PROTO=TCP SPT=58107 DPT=41581 WINDOW=229 RES=0x00 ACK URGP=0
> [111805.841638] IN=eth0 OUT=
> MAC=00:16:36:40:38:81:00:1e:f6:46:2c:00:08:00 SRC=193.6.62.26
> DST=206.12.19.127 LEN=1500 TOS=0x00 PREC=0x00 TTL=46 ID=11282 DF
> PROTO=TCP SPT=47607 DPT=13292 WINDOW=115 RES=0x00 ACK URGP=0
> glaubitz at leda:~$
It looks like a conntrack issue. That said I don't understand why. The
module is correctly loaded, and the firewall rules haven't been changed
for years. We have seen a few reboots since the issue has first been
reported.
Aurelien
-- 
Aurelien Jarno                          GPG: 4096R/1DDD8C9B
aurelien at aurel32.net                 http://www.aurel32.net
    
    
More information about the Debian-ports-devel
mailing list