Дополнение : запускаю rtorrent с дефолтными настройками, и смотрю tcpdump.
rtorrent
Код: Выделить всё
(11:42:46) Could not read resource file: ~/.rtorrent.rc
[Throttle off/off KB] [Rate 0.0/ 0.0 KB] [Port: 6886] [U 0/0] [D 0/0] [H 0/3
rtorrent слушает по всем интерфейсам порт 6886
netstat -f inet -nat | grep 6886
запускаю загрузку торрента (например ubuntu).
tcpdump -ni pppoe1
Код: Выделить всё
11:45:28.950726 46.146.232.XXX.6886 > 82.149.101.196.52980: . ack 120696 win 250 <nop,nop,timestamp 2345641191 1791786> [tos 0x8]
11:45:28.968719 46.146.232.XXX.6886 > 2.230.145.7.9480: . ack 3440 win 245 <nop,nop,timestamp 1641821338 358803> [tos 0x8]
11:45:28.982560 46.146.232.XXX.6886 > 2.230.145.7.9480: . ack 4868 win 267 <nop,nop,timestamp 1641821338 358803> [tos 0x8]
11:45:28.987651 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 465796 win 509 <nop,nop,timestamp 2985472704 3509342895> [tos 0x8]
11:45:28.987733 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 465796 win 552 <nop,nop,timestamp 2985472704 3509342895> [tos 0x8]
11:45:28.998118 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 468556 win 530 <nop,nop,timestamp 2985472704 3509342901> [tos 0x8]
11:45:28.998179 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 469936 win 552 <nop,nop,timestamp 2985472704 3509342901> [tos 0x8]
11:45:28.999104 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 472696 win 530 <nop,nop,timestamp 2985472704 3509342901> [tos 0x8]
11:45:28.999160 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 474076 win 552 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:28.999621 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 476836 win 509 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:28.999670 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 476836 win 552 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:28.999779 46.146.232.XXX.6886 > 78.43.41.12.44453: P 1516:1610(94) ack 476836 win 552 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.000115 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 479596 win 509 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.000181 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 480976 win 552 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.002636 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 483736 win 509 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.002701 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 483736 win 552 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.008825 46.146.232.XXX.6886 > 82.149.101.196.52980: P 491:535(44) ack 122124 win 267 <nop,nop,timestamp 2345641191 1791811> [tos 0x8]
11:45:29.011629 46.146.232.XXX.6886 > 2.230.145.7.9480: . ack 7724 win 245 <nop,nop,timestamp 1641821338 358803> [tos 0x8]
11:45:29.023068 46.146.232.XXX.6886 > 2.230.145.7.9480: . ack 9152 win 267 <nop,nop,timestamp 1641821338 358803> [tos 0x8]
11:45:29.028493 46.146.232.XXX.6886 > 5.94.192.45.46608: P 188:572(384) ack 69 win 267 <nop,nop,timestamp 3665927213 600817> [tos 0x8]
11:45:29.032316 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 486496 win 530 <nop,nop,timestamp 2985472704 3509342906> [tos 0x8]
11:45:29.037634 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 488712 win 517 <nop,nop,timestamp 2985472704 3509342945> [tos 0x8]
11:45:29.048669 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 490092 win 552 <nop,nop,timestamp 2985472704 3509342956> [tos 0x8]
11:45:29.049094 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 492852 win 509 <nop,nop,timestamp 2985472704 3509342956> [tos 0x8]
11:45:29.049144 46.146.232.XXX.6886 > 78.43.41.12.44453: . ack 492852 win 552 <nop,nop,timestamp 2985472704 3509342956> [tos 0x8]
В tcpdump на интерфейсе pppoe1 исходящий ip-адрес с интерфейса pppoe0..pf как будто не работает.
Правила pf (
обратите внимание на правила @6 и @7)
pfctl -vvvvvvvvvsr
Код: Выделить всё
@0 match in all scrub (no-df)
[ Evaluations: 3 Packets: 6 Bytes: 406 States: 3 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@1 match on pppoe0 all scrub (max-mss 1440)
[ Evaluations: 3 Packets: 6 Bytes: 406 States: 3 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@2 match on pppoe1 all scrub (max-mss 1440)
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@3 match out on em2 from <lan:2> to any nat-to (em2:1) round-robin
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@4 match out on pppoe0 inet from <lan:2> to any nat-to (pppoe0:1) round-robin
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@5 match out on pppoe1 inet from <lan:2> to any nat-to (pppoe1:1) round-robin
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@6 match out on pppoe0 inet from 178.47.140.XXX to any nat-to (pppoe0:1) round-robin
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@7 match out on pppoe1 inet from 46.146.232.XXX to any nat-to (pppoe1:1) round-robin
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@8 match out on pppoe0 inet from 192.168.10.254 to any nat-to (pppoe0:1) round-robin static-port
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@9 match out on pppoe1 inet from 192.168.10.254 to any nat-to (pppoe1:1) round-robin static-port
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@10 match in on pppoe0 inet proto tcp from any to 46.146.232.XXX port = 443 rdr-to (pppoe0:1) port 22 round-robin
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@11 match in on pppoe1 inet proto tcp from any to 178.47.140.XXX port = 443 rdr-to (pppoe1:1) port 22 round-robin
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@12 match in on pppoe0 inet proto udp from any to 46.146.232.XXX port = 5060 rdr-to 192.168.10.254
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@13 match in on pppoe0 inet proto udp from any to 46.146.232.XXX port 10000:20000 rdr-to 192.168.10.254
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@14 match in on pppoe1 inet proto udp from any to 178.47.140.XXX port = 5060 rdr-to 192.168.10.254
[ Evaluations: 3 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@15 match in on pppoe1 inet proto udp from any to 178.47.140.XXX port 10000:20000 rdr-to 192.168.10.254
[ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 94697 State Creations: 0 ]
@16 pass all flags S/SA
[ Evaluations: 3 Packets: 6 Bytes: 406 States: 3 ]
[ Inserted: uid 0 pid 94697 State Creations: 3 ]