Having a problem with Astaro Security Linux version 3.209. Machines on the network will suddenly not be able to access the internet. Pinging the firewall from a machine on the network will fail, and a traceroute from a machine on the network to an internet site gives:
dlh:~$ traceroute some.spot.com
traceroute to somespot.com (123.123.123.123), 30 hops max, 40 byte packets
1 my.machine.com (1.1.1.1) 2992.7 ms !H 2999.62 ms !H 2999.93 ms !H
This, to me, indicates that the workstation cannot contact the firewall (which is configured as the gateway for all clients).
If I go to the firewall and ping the workstation, that workstation can then ping the firewall and access the internet. A traceroute will give either:
dlh:~$ traceroute some.spot.com
traceroute to somespot.com (123.123.123.123), 30 hops max, 40 byte packets
1 * * *
2 2.2.2.2 (2.2.2.2) 1001.41 ms 1.195 ms 1.185 ms
3 3.3.3.3 (3.3.3.3) 3.535 ms 9.372 ms 3.212 ms
...
7 123.123.123.123 (123.123.123.123) 32.809 ms 21.754 ms 16.451 ms
OR
dlh:~$ traceroute some.spot.com
traceroute to somespot.com (123.123.123.123), 30 hops max, 40 byte packets
1 1.1.1.2 (1.1.1.2) 3.020 ms 4.301 ms 3.020 ms
2 2.2.2.2 (2.2.2.2) 1001.41 ms 1.195 ms 1.185 ms
3 3.3.3.3 (3.3.3.3) 3.535 ms 9.372 ms 3.212 ms
...
7 123.123.123.123 (123.123.123.123) 32.809 ms 21.754 ms 16.451 ms
I'm getting a lot of Neighbour Table Overflow messages in the Kernel log. I was wondering if this is related, since (I think) the Neigbour Table and the ARP table are either the same or related. We have a class B IP address, and have about 600+ workstations w/IP addresses on the network.
Thank you for any help you can provide, and if you need more information, I'll be more than willing to provide it.
This thread was automatically locked due to age.
Sophos Central customers have reported issues preventing successful installation, live terminal and device list access issues in the EU-CENTRAL-1 region For more info refer to KBA-000041338 for the latest updates.
Quote