Our traffic appears be reflected back into our interface…
-
We run pfSense virtualized under KVM. On the linux side, the virtio veth interfaces connect to Linux bridges. Wed of last week, without restarting or changing any rules, we started seeing really strange behavior in our RRD graphs… it's almost like our traffic is getting reflected back into the interface. At the same point in time, our users started complaining about poor VOIP quality. Example graph attached.
I don't know where to even start to get to the bottom of this. We've restarted all the hardware with no luck. We're seeing dropped monitoring ICMP pings on the gateways now as well. Any pointers much appreciated!
EDIT, interface config on the Linux side:
auto lan0
iface lan0 inet static
address 192.168.127.240
netmask 255.255.255.0
gateway 192.168.127.254
post-up ip route add 192.168.125.0/24 via 192.168.127.125 dev lan0
post-up ip route add 192.168.124.0/24 via 192.168.127.124 dev lan0
post-up ip route add 192.168.123.0/24 via 192.168.127.123 dev lan0
post-up ip route add 192.168.122.0/24 via 192.168.127.122 dev lan0
post-up ip route add 192.168.121.0/24 via 192.168.127.121 dev lan0
post-up ip route add 192.168.114.0/23 via 192.168.127.114 dev lan0
post-up ip route add 192.168.112.0/23 via 192.168.127.112 dev lan0
dns-nameservers 192.168.127.129
bridge_ports bond0
bridge_fd 0
bridge_maxwait 0
bridge_stp offauto wan0
iface wan0 inet manual
bridge_ports eth0
bridge_fd 0
bridge_maxwait 0auto wan1
iface wan1 inet manual
bridge_ports eth1
bridge_fd 0
bridge_maxwait 0auto sync0
iface sync0 inet manual
bridge_ports eth3
bridge_fd 0
bridge_maxwait 0 -
Edit: the pfsense forum board is giving me a 500 when I try to attach a picture:
