подвисание L2TP WAN



  • Есть  pfsense 2.0 в котором wan настроен на L2TP. На другом конце D-Link 804. Все работает хорошо и быстро, но иногда (в основном при большой загрузке канала) происходит следующее (здесь не повезло сразу):

    
    Nov 29 12:13:36 pfSense ppp: Multi-link PPP daemon for FreeBSD
    Nov 29 12:13:36 pfSense ppp:  
    Nov 29 12:13:36 pfSense ppp: process 2716 started, version 5.5 (root@FreeBSD_8.0_pfSense_2.0-snaps.pfsense.org 12:11 21-Nov-2010)
    Nov 29 12:13:36 pfSense ppp: web: web is not running
    Nov 29 12:13:36 pfSense ppp: [opt1] Bundle: Interface ng0 created
    Nov 29 12:13:36 pfSense ppp: option "windowing" unknown
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] Link: OPEN event
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: Open event
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: state change Initial --> Starting
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: LayerStart
    Nov 29 12:13:36 pfSense ppp: L2TP: Initiating control connection 0x286f1d08 192.168.0.111 0 <-> xx.xx.xx.xx 1701
    Nov 29 12:13:36 pfSense ppp: L2TP: Control connection 0x286f1d08 192.168.0.111 40049 <-> xx.xx.xx.xx 1701 connected
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] L2TP: Incoming call #3170000 via control connection 0x286f1d08 initiated
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] L2TP: Call #3170000 connected
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] Link: UP event
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: Up event
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: state change Starting --> Req-Sent
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: SendConfigReq #1
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   ACFCOMP
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   PROTOCOMP
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MRU 1500
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MAGICNUM 07afba58
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: rec'd Configure Reject #1 (Req-Sent)
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   PROTOCOMP
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: SendConfigReq #2
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   ACFCOMP
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MRU 1500
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MAGICNUM 07afba58
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: rec'd Configure Ack #2 (Req-Sent)
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   ACFCOMP
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MRU 1500
    Nov 29 12:13:36 pfSense ppp: [opt1_link0]   MAGICNUM 07afba58
    Nov 29 12:13:36 pfSense ppp: [opt1_link0] LCP: state change Req-Sent --> Ack-Rcvd
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: rec'd Configure Request #1 (Ack-Rcvd)
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   MRU 1500
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   AUTHPROTO CHAP MSOFTv2
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   MAGICNUM b80aaf10
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   ACFCOMP
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: SendConfigAck #1
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   MRU 1500
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   AUTHPROTO CHAP MSOFTv2
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   MAGICNUM b80aaf10
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   ACFCOMP
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: state change Ack-Rcvd --> Opened
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: auth: peer wants CHAP, I want nothing
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: LayerUp
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] CHAP: rec'd CHALLENGE #1 len: 28
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   Name: "My Host"
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] CHAP: Using authname "xxx"
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] CHAP: sending RESPONSE #1 len: 57
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] CHAP: rec'd SUCCESS #1 len: 63
    Nov 29 12:13:37 pfSense ppp: [opt1_link0]   MESG: S=8BBA4103C4A4F4E24590E9C44B178168426F0B2D M=Access granted
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] LCP: authorization successful
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] Link: Matched action 'bundle "opt1" ""'
    Nov 29 12:13:37 pfSense ppp: [opt1_link0] Link: Join bundle "opt1"
    Nov 29 12:13:37 pfSense ppp: [opt1] Bundle: Status update: up 1 link, total bandwidth 64000 bps
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: Open event
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: state change Initial --> Starting
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: LayerStart
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: Open event
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: state change Initial --> Starting
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: LayerStart
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: Up event
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: state change Starting --> Req-Sent
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: SendConfigReq #1
    Nov 29 12:13:37 pfSense ppp: [opt1]   IPADDR 0.0.0.0
    Nov 29 12:13:37 pfSense ppp: [opt1]   PRIDNS 0.0.0.0
    Nov 29 12:13:37 pfSense ppp: [opt1]   SECDNS 0.0.0.0
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: Up event
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: state change Starting --> Req-Sent
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: SendConfigReq #1
    Nov 29 12:13:37 pfSense ppp: [opt1]   MPPC
    Nov 29 12:13:37 pfSense ppp: [opt1]     0x00000040:MPPE(128 bits)
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: rec'd Configure Nak #1 (Req-Sent)
    Nov 29 12:13:37 pfSense ppp: [opt1]   IPADDR 192.168.10.14
    Nov 29 12:13:37 pfSense ppp: [opt1]     192.168.10.14 is OK
    Nov 29 12:13:37 pfSense ppp: [opt1]   PRIDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1]   SECDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: SendConfigReq #2
    Nov 29 12:13:37 pfSense ppp: [opt1]   IPADDR 192.168.10.14
    Nov 29 12:13:37 pfSense ppp: [opt1]   PRIDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1]   SECDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: rec'd Configure Ack #1 (Req-Sent)
    Nov 29 12:13:37 pfSense ppp: [opt1]   MPPC
    Nov 29 12:13:37 pfSense ppp: [opt1]     0x00000040:MPPE(128 bits)
    Nov 29 12:13:37 pfSense ppp: [opt1] CCP: state change Req-Sent --> Ack-Rcvd
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: rec'd Configure Ack #2 (Req-Sent)
    Nov 29 12:13:37 pfSense ppp: [opt1]   IPADDR 192.168.10.14
    Nov 29 12:13:37 pfSense ppp: [opt1]   PRIDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1]   SECDNS xx.xx.xx.xx
    Nov 29 12:13:37 pfSense ppp: [opt1] IPCP: state change Req-Sent --> Ack-Rcvd
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: rec'd Configure Request #1 (Ack-Rcvd)
    Nov 29 12:13:38 pfSense ppp: [opt1]   MPPC
    Nov 29 12:13:38 pfSense ppp: [opt1]     0x00000040:MPPE(128 bits)
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: SendConfigAck #1
    Nov 29 12:13:38 pfSense ppp: [opt1]   MPPC
    Nov 29 12:13:38 pfSense ppp: [opt1]     0x00000040:MPPE(128 bits)
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: state change Ack-Rcvd --> Opened
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: LayerUp
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: Compress using: mppc (MPPE(128 bits))
    Nov 29 12:13:38 pfSense ppp: [opt1] CCP: Decompress using: mppc (MPPE(128 bits))
    Nov 29 12:13:38 pfSense ppp: [opt1] IPCP: rec'd Configure Request #1 (Ack-Rcvd)
    Nov 29 12:13:38 pfSense ppp: [opt1]   IPADDR 192.168.10.1
    Nov 29 12:13:38 pfSense ppp: [opt1]     192.168.10.1 is OK
    Nov 29 12:13:38 pfSense ppp: [opt1] IPCP: SendConfigAck #1
    Nov 29 12:13:38 pfSense ppp: [opt1]   IPADDR 192.168.10.1
    Nov 29 12:13:38 pfSense ppp: [opt1] IPCP: state change Ack-Rcvd --> Opened
    Nov 29 12:13:38 pfSense ppp: [opt1] IPCP: LayerUp
    Nov 29 12:13:38 pfSense ppp: [opt1]   192.168.10.14 -> 192.168.10.1
    Nov 29 12:13:39 pfSense ppp: [opt1] IFACE: Up event
    Nov 29 12:16:09 pfSense ppp: [opt1] rec'd unexpected protocol 0x008d, rejecting
    Nov 29 12:16:09 pfSense ppp: [opt1] rec'd unexpected protocol 0x6a2f, rejecting
    Nov 29 12:16:11 pfSense ppp: [opt1] rec'd unexpected protocol 0x0061, rejecting
    Nov 29 12:16:12 pfSense ppp: [opt1] rec'd unexpected protocol ICOMPD, rejecting
    Nov 29 12:16:14 pfSense ppp: [opt1] rec'd unexpected protocol 0x000f, rejecting
    Nov 29 12:16:15 pfSense ppp: [opt1] rec'd unexpected protocol 0x00ed, rejecting
    Nov 29 12:16:16 pfSense ppp: [opt1] rec'd unexpected protocol MP, rejecting
    Nov 29 12:16:16 pfSense ppp: [opt1] rec'd unexpected protocol 0x00ab, rejecting
    Nov 29 12:16:17 pfSense ppp: [opt1] rec'd unexpected protocol 0x94f1, rejecting
    Nov 29 12:16:18 pfSense ppp: [opt1] rec'd unexpected protocol AppleTalk EDDP, rejecting
    Nov 29 12:16:19 pfSense ppp: [opt1] rec'd unexpected protocol 0x0007, rejecting
    Nov 29 12:16:20 pfSense ppp: [opt1] rec'd unexpected protocol 0x0085, rejecting
    Nov 29 12:16:22 pfSense ppp: [opt1] rec'd unexpected protocol reserved, rejecting
    Nov 29 12:16:23 pfSense ppp: [opt1] rec'd unexpected protocol COMPD
    Nov 29 12:16:26 pfSense ppp: [opt1] rec'd unexpected protocol 0x0015, rejecting
    Nov 29 12:16:26 pfSense ppp: [opt1] rec'd unexpected protocol 0x008f, rejecting
    Nov 29 12:16:27 pfSense ppp: [opt1] rec'd unexpected protocol 0x00ad, rejecting
    Nov 29 12:16:28 pfSense ppp: [opt1] rec'd unexpected protocol 0x001b, rejecting
    Nov 29 12:16:29 pfSense ppp: [opt1] rec'd unexpected protocol 0x00df, rejecting
    Nov 29 12:16:30 pfSense ppp: [opt1] rec'd unexpected protocol 0x0007, rejecting
    Nov 29 12:16:31 pfSense ppp: [opt1] rec'd unexpected protocol 0x00b1, rejecting
    Nov 29 12:16:31 pfSense ppp: [opt1] rec'd unexpected protocol 0x0007, rejecting
    Nov 29 12:16:34 pfSense ppp: [opt1] rec'd unexpected protocol Banyan Vines, rejecting
    Nov 29 12:16:36 pfSense ppp: [opt1] rec'd unexpected protocol 0x0011, rejecting
    Nov 29 12:16:38 pfSense ppp: [opt1] rec'd unexpected protocol 0x00e5, rejecting
    Nov 29 12:16:39 pfSense ppp: [opt1] rec'd unexpected protocol IP6 Header Compression, rejecting
    Nov 29 12:16:40 pfSense ppp: [opt1] rec'd unexpected protocol 0x0019, rejecting
    Nov 29 12:16:41 pfSense ppp: [opt1] rec'd unexpected protocol 0x0069, rejecting
    Nov 29 12:16:42 pfSense ppp: [opt1] rec'd unexpected protocol 0x005d, rejecting
    Nov 29 12:16:43 pfSense ppp: [opt1] rec'd unexpected protocol 0x0089, rejecting
    Nov 29 12:16:45 pfSense ppp: [opt1] rec'd unexpected protocol 0x4213, rejecting
    Nov 29 12:16:49 pfSense ppp: [opt1] rec'd unexpected protocol 0x00f9, rejecting
    
    

    В таком состоянии будет висеть до тех пор пока вручную не разорвать связь.
    При этом, виндовые клиенты работают сутками с этим узлом под любой нагрузкой.
    mpd.conf такой:

    
    startup:
    	# configure the console
    	set console close
    	# configure the web server
    	set web close
    
    default:
    l2tpclient:
    	create bundle static opt1
    	set iface name l2tp0
    	set iface disable on-demand
    	set iface idle 0
    	set iface enable tcpmssfix
    	set iface up-script /usr/local/sbin/ppp-linkup
    	set iface down-script /usr/local/sbin/ppp-linkdown
    	set ipcp ranges 0.0.0.0/0 0.0.0.0/0
    	set ipcp no vjcomp
    	set ipcp enable req-pri-dns
    	set ipcp enable req-sec-dns
    	#log -bund -ccp -chat -iface -ipcp -lcp -link
    
    	set bundle enable compression
    	set ccp yes mppc
    	set mppc yes e128
    	set mppc yes compress
    
    	create link static opt1_link0 l2tp
    	set link action bundle opt1
    	set link disable multilink
    	set link keep-alive 10 60
    	set link max-redial 0
    	set link disable chap pap
    	set link accept chap pap eap
    	set link disable incoming
    	set link mtu 1400
    	set auth authname "xxx"
    	set auth password xxxxx
    	set l2tp self 192.168.0.111
    	set l2tp peer xx.xx.xx.xx
    	set l2tp disable windowing
    	open
    
    

    где копать - ума не приложу, помогите советом


Log in to reply