Netfilter
現状、ラズパイルーターのNetfilterは、たったこれだけ。

uptime 9days

-----FILTER-----

Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
4845K 1888M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
44645 3000K ACCEPT all -- br0 * 192.168.1.0/24 192.168.1.254
302 137K ACCEPT udp -- br0 * 0.0.0.0/0 0.0.0.0/0 udp spts:67:68 dpts:67:68
17 5248 ACCEPT udp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:500
5 700 ACCEPT udp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:4500
417 21184 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 flags:0x17/0x02 state NEW
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
76000 6607K LOGGING all -- * * 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
9 456 DROP tcp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 tcp dpts:137:139
101 7878 DROP udp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139
30 1520 DROP tcp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
0 0 DROP udp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 udp dpt:445
6 264 DROP tcp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 tcp dpt:111
0 0 DROP udp -- br0 ppp0 0.0.0.0/0 0.0.0.0/0 udp dpt:111
8600K 2282M ACCEPT all -- br0 ppp0 192.168.1.0/24 0.0.0.0/0
31M 43G ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
10442 601K ACCEPT tcp -- ppp0 br0 0.0.0.0/0 192.168.1.1 tcp dpt:80
194 10840 ACCEPT tcp -- ppp0 br0 0.0.0.0/0 192.168.1.1 tcp dpt:25
21 1060 ACCEPT tcp -- ppp0 br0 0.0.0.0/0 192.168.1.1 tcp dpt:587
316 16412 ACCEPT tcp -- ppp0 br0 0.0.0.0/0 192.168.1.1 tcp dpt:995
4105 223K ACCEPT tcp -- ppp0 br0 0.0.0.0/0 192.168.1.1 tcp dpt:22

Chain OUTPUT (policy ACCEPT 345K packets, 205M bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0

Chain LOGGING (1 references)
pkts bytes target prot opt in out source destination
76000 6607K DROP all -- * * 0.0.0.0/0 0.0.0.0/0


-----NAT-----

Chain PREROUTING (policy ACCEPT 11786 packets, 2210K bytes)
pkts bytes target prot opt in out source destination
10799 622K DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 to:192.168.1.1:80
194 10840 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 to:192.168.1.1:25
21 1060 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 to:192.168.1.1:587
316 16412 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 to:192.168.1.1:995
4106 223K DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:192.168.1.1:22

Chain POSTROUTING (policy ACCEPT 3649 packets, 237K bytes)
pkts bytes target prot opt in out source destination
59881 15M MASQUERADE all -- * ppp0 192.168.1.0/24 0.0.0.0/0


-----MANGLE-----

Chain FORWARD (policy ACCEPT 6015K packets, 6769M bytes)
pkts bytes target prot opt in out source destination
3773 211K TCPMSS tcp -- * ppp0 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 tcpmss match 1400:65495 TCPMSS clamp to PMTU


| Raspberry Pi | 18:03 | comments (x) | trackback (x) |
リンクダウンの原因
どうやら、CTC側の設備不良でメンテしたみたいだ。


障害日時:2018年7月30日(月) 10:00

影響:インターネット・光電話がご利用いただけない状態となっております。
お客さまには大変ご迷惑をおかけいたしておりますが、復旧までいましばらくお待ち頂きますようお願いいたします。

原因:設備不良

http://www.commufa.jp/trouble/201807304337.html



| 日記 | 11:17 | comments (x) | trackback (x) |
長時間のリンクダウン
午前中に約20分間もリンクダウン。

こんな長時間はコミュファを12年使っていて初めて。
何事か!?


Jul 30 10:28:35 gw pppd[900]: No response to 3 echo-requests
Jul 30 10:28:35 gw pppd[900]: Serial link appears to be disconnected.
Jul 30 10:28:35 gw pppd[900]: Connect time 11479.7 minutes.
Jul 30 10:28:35 gw pppd[900]: Sent 493323321 bytes, received 3540379650 bytes.
Jul 30 10:28:41 gw pppd[900]: Connection terminated.
Jul 30 10:28:41 gw pppd[900]: Modem hangup
Jul 30 10:29:46 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:30:51 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:31:56 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:33:02 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:34:07 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:35:12 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:36:17 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:37:22 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:38:27 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:39:32 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:40:38 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:41:43 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:42:48 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:43:53 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:44:58 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:46:03 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:47:08 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:48:13 gw pppd[900]: Timeout waiting for PADO packets
Jul 30 10:48:44 gw pppd[900]: PPP session is 29895
Jul 30 10:48:44 gw pppd[900]: Connected to 0e:ba:01:02:00:63 via interface eth0
Jul 30 10:48:44 gw pppd[900]: Using interface ppp0
Jul 30 10:48:44 gw pppd[900]: Connect: ppp0 <--> eth0
Jul 30 10:48:44 gw pppd[900]: CHAP authentication succeeded
Jul 30 10:48:44 gw pppd[900]: CHAP authentication succeeded
Jul 30 10:48:44 gw pppd[900]: peer from calling number 0E:BA:01:02:00:63 authorized
Jul 30 10:48:44 gw pppd[900]: local IP address 182.169.9.191
Jul 30 10:48:44 gw pppd[900]: remote IP address 220.211.95.56
Jul 30 10:48:44 gw pppd[900]: primary DNS address 202.238.95.9
Jul 30 10:48:44 gw pppd[900]: secondary DNS address 202.238.95.22



| 日記 | 11:05 | comments (x) | trackback (x) |
行楽日和
再び養老で養老。

今日は行楽日和か凄い混雑。

台風なんて何のその(笑)




| 週末の風景 | 13:39 | comments (x) | trackback (x) |
養老で養老
関ヶ原の史跡をかすめ、
今日は終了。




| 週末の風景 | 13:40 | comments (x) | trackback (x) |

  
CALENDAR
S M T W T F S
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31     
<<   07 - 2018   >>
PROFILE
OTHERS
ARCHIVES