Çàëèïàåò ðîóòåð

[MAV]

íå ìîãó ïîíÿò â ÷åì äåëî.. ïåðèîäè÷åñêè ðîóòåð ÇÀËÈÏÀÅÒ
èíåò íå õîäèò , web èíòåðôåéñ íå àãðóæàåòñÿ... ïîòîì ðàçëèïàåò è âïåðåä
êîå êàê çàõîäèò òåëíåòîì
êàêèå ëîãè ïîñìîòðåòü? ìîæåò åãî dos ÿò?

Code:

  PID  Uid     VmSize Stat Command
    1 avmishin    692 S   /sbin/init
    2 avmishin        SW  [keventd]
    3 avmishin        RWN [ksoftirqd_CPU0]
    4 avmishin        SW  [kswapd]
    5 avmishin        SW  [bdflush]
    6 avmishin        SW  [kupdated]
    7 avmishin        SW  [mtdblockd]
   57 avmishin    332 S   telnetd
   63 avmishin    540 S   nas /tmp/nas.lan.conf /tmp/nas.lan.pid lan
   68 avmishin    368 S   klogd
   69 nobody      472 S   [dnsmasq]
   70 avmishin    400 S   syslogd -m 0 -O /tmp/syslog.log -S -l 7
   71 avmishin        SW  [khubd]
   79 avmishin    276 S   lpd
   81 avmishin    260 S   p9100d -f /dev/usb/lp0 0
   84 avmishin    344 S   waveservermain
   93 avmishin    332 S   /usr/sbin/igmpproxy
   97 avmishin    432 S   udhcpc -i vlan1 -p /var/run/udhcpc0.pid -s /tmp/udhcp
   98 avmishin    748 S   pppd file /tmp/ppp/options.wan0
  100 avmishin    320 S   infosvr br0
  101 avmishin    452 S   watchdog
  103 avmishin    460 S   sh -c /usr/sbin/pptp as.rt.user.ru --sync --nobuffer
  105 avmishin    352 S   ntp
  106 avmishin    432 S   pptp: GRE-to-PPP gateway on /dev/ptm--nobuffer --nola
  113 avmishin    440 S   pptp: call manager for 10.0.1.254   --nobuffer --nola
  132 avmishin    376 S   httpd vlan1
  133 avmishin    556 S   -sh
  136 avmishin    404 R   ps

åùå ïðèøåò â ëîãàõ
Nov 10 12:24:26 pppd[98]: Protocol-Reject for unsupported protocol 0x6ecd

[Protei]

Òî÷íî òàêàÿ æå ïðîáëåìà, íå ìîãó ïîíÿòü â ÷åì äåëî! Ñåãîäíÿ ïåðåñòàë ðàáîòàòü WL500gx. Íàñòðîéêè îò ïðîâàéäåðà ïîëó÷àþ àâòîìàòè÷åñêè, ñîåäèíåíèå ÷åðåç PPPOE, ÷åðåç êîìï âñå ðàáîòàåò, ñîåäèíåíèå óñòàíàâëèâàåòñÿ. Ðîóòåð ðàáîòàåò íîðìàëüíî äî òîãî ìîìåíòà ïîêà íå âîòêíóòü â WAN êàáåëü îò ïðîâà. Ïîñëå ýòîãî èíòåðôåéñ âèñíåò, ïî ïèíãó òîëüêî ïðîöåíòîâ 10 äîõîäèò, ñîåäèíèòñÿ íå ìîãó. Êàê òîëüêî âûäåðãèâàåøü ïðîâîä, îïÿòü âñå çàìå÷àòåëüíî ðàáîòàåò. Ïðîøèâêà 1.9.2.7-8, ïðîáîâàë îòêàòûâàòüñÿ îáðàòíî íà 1.9.2.7-7g, íå ïîìîãëî.  ÷åì ìîæåò áûòü äåëî, êàê ïðîäèàãíîñòèðîâàòü?

MAV
Ó òåáÿ íå Æóêíåò ñëó÷àéíî?

[Protei]

Óæå ïåðåïðîáîâàë âñå âîçìîæíûå íàñòðîéêè, íè÷åãî íå ïîìîãàåò. Íå ðàáîòàåò äàæå íè â ðåæèìå Router, íè â ðåæèìå Access Point. Ïî ïèíãó 90% ïîòåðü. Ñóìåë êîå-êàê ïîäðóáèòñÿ ÷åðåç telnet, òàê ïî top ïåðâîå ìåñòî, ïðèìåðíî 85% ïðîöåññîðà, ïîïåðåìåííî çàíèìàþò ïðîöåññû ksoftirqd_cpuo è httpd. Íà êîìïüþòåðå âñå ïðåêðàñíî ðàáîòàåò, â ÷åì ìîæåò áûòü äåëî? Íóæíà ïîìîùü!

[Lt_Flash]

Óæå ïåðåïðîáîâàë âñå âîçìîæíûå íàñòðîéêè, íè÷åãî íå ïîìîãàåò. Íå ðàáîòàåò äàæå íè â ðåæèìå Router, íè â ðåæèìå Access Point. Ïî ïèíãó 90% ïîòåðü. Ñóìåë êîå-êàê ïîäðóáèòñÿ ÷åðåç telnet, òàê ïî top ïåðâîå ìåñòî, ïðèìåðíî 85% ïðîöåññîðà, ïîïåðåìåííî çàíèìàþò ïðîöåññû ksoftirqd_cpuo è httpd. Íà êîìïüþòåðå âñå ïðåêðàñíî ðàáîòàåò, â ÷åì ìîæåò áûòü äåëî? Íóæíà ïîìîùü!

Âåá-ñåðâåð çàíèìàåò 100% öïó ââèäó òîãî, ÷òî åãî äðþ÷àò èç èíåòà èëè ñåòè ëîêàëüíîé, âîò ðîóòåð è ïðîïàäàåò, íå óñïåâàåò îòâå÷àòü íà ïèíãè. Ñîôòèðêä - ýòî äåìîí îáðàáîò÷èê ïðåðûâàíèé, õòòïä - äåìîí âåá-ñåðâåðà, îòñþäà âûâîä - äîñÿò òàêè èëè âèðóñ äðþ÷èò. Ñìîòðèòå ëîãè âåá-ñåðâåðà. Åñëè íå âåäóòñÿ - ðåêîìåíäóþ íà âðåìÿ îòëàäêè âñå æ âêëþ÷èòü.

[Protei]

Çàâèñàåò äàæå áåç ïîäêëþ÷åíèÿ ïî PPPOE, òî åñòü ìãíîâåííî ïîñëå òîãî êàê êàáåëü âîòêíóòü â WAN. È òàê æå ñðàçó íà÷èíàåò ðàáîòàòü, êàê òîëüêî êàáåëü âûäåðíóòü. À âåá-èíòåðôåéñå ãàëî÷êà ñòîèò îò DOS àòàêè è ñàì èíòåðôåéñ âî âíåøêó íå ñìîòðèò. Êàê åãî ìîæíî äîñèòü? Ëîãè ïîïðîáóþ âêëþ÷èòü, ñïàñèáî!

[MAV]

. Ñìîòðèòå ëîãè âåá-ñåðâåðà. Åñëè íå âåäóòñÿ - ðåêîìåíäóþ íà âðåìÿ îòëàäêè âñå æ âêëþ÷èòü.

êàê ëîãè âêëþ÷èòü?

[Reyter]

Óæå ïåðåïðîáîâàë âñå âîçìîæíûå íàñòðîéêè, íè÷åãî íå ïîìîãàåò.

Ïîïðîáóéòå â íàñòðîéêàõ WAN âáèòü ÷òî-íèáóäü òèïà:
IP- 192.168.255.254
MASK - 255.255.255.254

Ñêîðåå âñåãî ó âàñ íà WAN-ñåãìåíòå åñòü DHCP-ñåðâåð, êîòîðûé âûäàåò man-èíòåðôåéñó àäðåñ, ñ êîòîðûì ðàáîòàòü íåâîçìîæíî. À èìåííî - àäðåñ èç òîé æå ñåòè, ÷òî è íà LAN-ñåãìåíòå.

[Lt_Flash]

êàê ëîãè âêëþ÷èòü?

http://httpd.apache.org/docs/2.0/logs.html

[Mam(O)n]

Lt_Flash, òîò httpd, íà êîòîðûé óïàëî ïîäîçðåíèå ê àïà÷ó íèêîèì áîêîì íå îòíîñèòñÿ. Ýòî àñóñîâñêîå ïîäåëèå è ïî âñåìó âèäàòü äîâîëüíî êðèâîå. Íà íåãî äàæå íàòðàâèëè watchdog(ñòîðîæåâîãî ï¸ñèêà), êîòîðûé ïîäíèìàåò åãî â ñëó÷àå ïàäåíèÿ. Ó êîãî òàêèå ïðîáëåìû, ïîïðîáóéòå ñäåëàòü:

Code:

killall watchdog
killall httpd

Ýòî ïîìîæåò ëîêàëèçîâàòü ïðîáëåìó. Òî åñòü, åñëè ïðîáëåìà óéä¸ò, òî íàäî áóäåò êîïàòü â ñòîðîíó àñóñîâñêîãî httpd.

çû. Êñòàòè ïîñëå killall watchdog ïîãàñíåò ëàìïà pwr

[Alexx_B]

èìåþ ïîõîæó ïðîáëåìó...

Code:

    3 alexx_b  RWN        0     1 60.8  0.0 ksoftirqd_CPU0
 2833 alexx_b  S        480   106  6.3  1.5 dropbear
   68 alexx_b  R        192     1  3.0  0.6 syslogd
   69 alexx_b  S        204     1  2.4  0.6 klogd
 2839 alexx_b  R        444  2834  1.5  1.4 top
 2819 alexx_b  S        380     1  1.3  1.2 upnp
 2342 alexx_b  S       1200   115  0.0  3.9 smbd
  117 alexx_b  S        872     1  0.0  2.8 nmbd
  115 alexx_b  S        628     1  0.0  2.0 smbd
  118 alexx_b  S        572   117  0.0  1.9 nmbd
 2834 alexx_b  S        492  2833  0.0  1.6 sh
  147 alexx_b  S        360     1  0.0  1.1 stupid-ftpd
   89 alexx_b  S        284     1  0.0  0.9 watchdog
 2740 alexx_b  S        268     1  0.0  0.8 httpd
  106 alexx_b  S        260     1  0.0  0.8 dropbear
  110 alexx_b  S        260     1  0.0  0.8 udhcpc
   70 nobody   S        244     1  0.0  0.8 dnsmasq
    1 alexx_b  S        244     0  0.0  0.8 init
   92 alexx_b  S        196    89  0.0  0.6 ntp
  143 alexx_b  SW         0     1  0.0  0.0 usb-storage-0
    7 alexx_b  SW         0     1  0.0  0.0 mtdblockd
    4 alexx_b  SW         0     1  0.0  0.0 kswapd
    6 alexx_b  SW         0     1  0.0  0.0 kupdated
    5 alexx_b  SW         0     1  0.0  0.0 bdflush
   75 alexx_b  SW         0     1  0.0  0.0 khubd
  144 alexx_b  SW         0     1  0.0  0.0 scsi_eh_0
    2 alexx_b  SW         0     1  0.0  0.0 keventd

âïí ó ìåíÿ íåòó (ðåñïåêò ïðîâàéäåðó, óäàëîñü óãîâîðèòü îòêëþ÷èòü), IP ïðÿìîé.
×òî ïîñîâåòóåòå? âåá-ñåðâåð íèêòî íå òðîãàåò âðîäå êàê, ãðóçèòñÿ ëèøü îäèí ksoftirqd_CPU0

filter_rules:

Code:

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:MACS - [0:0]
:SECURITY - [0:0]
:logaccept - [0:0]
:logdrop - [0:0]
-A SECURITY -p tcp --syn -m limit --limit 1/s -j RETURN
-A SECURITY -p tcp --tcp-flags SYN,ACK,FIN,RST RST -m limit --limit 1/s -j RETURN
-A SECURITY -p udp -m limit --limit 5/s -j RETURN
-A SECURITY -p icmp -m limit --limit 5/s -j RETURN
-A SECURITY -j logdrop
-A INPUT -m state --state INVALID -j logdrop
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -i lo -m state --state NEW -j ACCEPT
-A INPUT -i br0 -m state --state NEW -j ACCEPT
-A INPUT -i vlan1 -m state --state NEW -j SECURITY
-A INPUT -p udp --sport 67 --dport 68 -j ACCEPT
-A INPUT -p tcp -m tcp -d 10.100.1.1 --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -j logdrop
-A FORWARD -i br0 -o br0 -j ACCEPT
-A FORWARD -m state --state INVALID -j logdrop
-A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
-A FORWARD -o vlan1 ! -i br0 -j logdrop
-A FORWARD ! -i br0 -m state --state NEW -j SECURITY
-A FORWARD -m conntrack --ctstate DNAT -j ACCEPT
-A logaccept -m state --state NEW -j LOG --log-prefix "ACCEPT " --log-tcp-sequence --log-tcp-options --log-ip-options
-A logaccept -j ACCEPT
-A logdrop -m state --state NEW -j LOG --log-prefix "DROP " --log-tcp-sequence --log-tcp-options --log-ip-options
-A logdrop -j DROP
COMMIT

åñëè ýòî àòàêà, òî êàê õîòÿ áû óçíàòü, îòêóäà?

íó è âîîáùå - ÷òî äåëàòü? ïîìîãèòå ÷àéíèêó

[Oleg]

Ïîäîçðåâàþ, ÷òî ó Âàñ â ñåòè ìóëüòèêàñò õîäèò. À ñâèò÷è ó ïðîâàéäåðà òóïûå. Âîò è ñûïèòñÿ Âàì âñ¸ ïîäðÿä...

[Alexx_B]

Ïîäîçðåâàþ, ÷òî ó Âàñ â ñåòè ìóëüòèêàñò õîäèò. À ñâèò÷è ó ïðîâàéäåðà òóïûå. Âîò è ñûïèòñÿ Âàì âñ¸ ïîäðÿä...

ìóëüòèêàñòà íåòó. ïî êðàéíåé ìåðå ñàì àäìèí îòñóòñòâèå IPTV îáúÿñíåÿåò èìåííî òåì, ÷òî ñâè÷è òóïûå, à ìóëüòèêàñò îí íå õî÷åò ââîäèòü

åñòü êàêèå-òî èäåè, êàê çàùèòèòüñÿ îò ýòîãî?
òåì áîëåå ÷òî âîçíèêàåò ýòî ïåðèîäè÷åñêè...

[Oleg]

Ñíà÷àëà íóæíî âûÿñíèòü, â ÷¸ì äåëî. Ïîïðîáóéòå â ìîìåíò, êîãäà ksoftirqd æð¸ò ìíîãî âðåìåíè è ýòî íå ñâÿçàíî ñ òåì, ÷òî Âû ÷òî-òî êà÷àåòå, âûïîëíèòü

tcpdump -i vlan1 -n

÷òîáû âûÿñíèòü, ÷òî çà òðàôèê èä¸ò ñî ñòîðîíû WAN. Âåðíåå ïðåîáëàäàþùèå ïàêåòû.

[Alexx_B]

âðîäå áû íàøåë êîðåíü ïðîáëåìû
âêëþ÷èë ëîã DROP ïàêåòîâ
îáíàðóæèë êó÷ó ñòðîê

Code:

Nov 17 14:44:38 kernel: DROP IN=vlan1 OUT= MAC=01:00:5e:00:00:01:00:80:48:3d:11:30:08:00:45:c0:00:1c SRC=192.168.8.33 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=3189 PROTO=2

(192.168.8.0/24 - ìîÿ ïîäñåòü, 224.0.0.1 - êàê ÿ ïîíèìàþ, ìóëüòèêàñò)
òàêèõ çàïèñåé - áîëüøå ïîëóñîòíè çà ñåêóíäó

îòîñëàë àäìèíó ñåòè, ïóñòü ðàçáèðàåòñÿ