Logo GNT
Actualités Tests & Guides Bons Plans
Twitter iPhone pliant OnePlus 11 PS5 Disney+ Orange Livebox Windows 11
Entraide Mac OS Autres OS Mac OS X auto-reboot??

auto-reboot??

26 réponses
Avatar
listes2
Bonjour,

Mon Mac fraichement de retour de SAV, avec un Lion installé de frais me
fait la surprise ce matin de redémarrer tout seul...

Il était gentiment occupé à télécharger des documents lorsque j'entends
depuis la pièce voisine le son de redémarrage.
Pas de message d'alerte à la réouverture de session, mais j'ignore s'il
y a eu quelque chose avant, vu que je n'étais pas devant.

L'un de vous a-t-il une idée de cause?

ci-après un extrait du system.log, si ça peut aider quelqu'un...

Les messages avant sont d'au moins 10 ' avant le reboot, et après sont à
priori des messages de boot normaux, mais je peux l'ajouter si besoin...

Nov 4 10:48:31 iMac-de-Olivier-Goldberg
[0x0-0xb00b].com.apple.iTunes[236]: ATHostConnectionDestroy
0x7f98d7e12070
Nov 4 10:48:38 iMac-de-Olivier-Goldberg com.apple.usbmuxd[56]:
_SendDetachNotification (thread 0x7fff7855f960): sending detach for
device
7c:c5:37:ce:9d:2b@fe80::7ec5:37ff:fece:9d2b._apple-mobdev._tcp.local.:
_BrowseReplyReceivedCallback got bonjour removal.
Nov 4 10:48:38 iMac-de-Olivier-Goldberg iTunes[236]: _AMDDeviceDetached
(thread 0x10d369000): Device 'AMDevice 0x7f98d6c00510 {UDID =
620256d024c9a54c25cfd735a94b9139fc3386e0, device ID = 92,
FullServiceName =
7c:c5:37:ce:9d:2b@fe80::7ec5:37ff:fece:9d2b._apple-mobdev._tcp.local.}'
detached.
Nov 4 10:59:23 localhost bootlog[0]: BOOT_TIME 1320400763 0
Nov 4 10:59:44 localhost fseventsd[16]: event logs in /.fseventsd out
of sync with volume. destroying old logs. (270887 20 270959)
Nov 4 10:59:45 localhost fseventsd[16]: implementation_register_rpc:
implementation_added_client() => 22
Nov 4 10:59:25 localhost com.apple.launchd[1]: *** launchd[1] has
started up. ***
Nov 4 10:59:35 localhost com.apple.launchd[1]
(com.parallels.desktop.launchdaemon): Unknown key for boolean:
HopefullyExitsFirst
Nov 4 10:59:45 localhost com.apple.UserEventAgent-System[11]:
2011-11-04 10:59 UserEventAgent[11] (CarbonCore.framework)
FSEventStreamStart: register_with_server: ERROR: f2d_register_rpc() =>
(null) (-21)
Nov 4 10:59:45 localhost UserEventAgent[11]: starting
CaptiveNetworkSupport as SystemEventAgent built May 25 2011 12:27:35
Nov 4 10:59:45 localhost UserEventAgent[11]:
CaptiveNetworkSupport:CaptiveSCCopyWiFiDevices:388 WiFi Device Name ==
NULL
Nov 4 10:59:45 localhost UserEventAgent[11]: CertsKeychainMonitor:
configuring
Nov 4 10:59:46 localhost mDNSResponder[12]: mDNSResponder
mDNSResponder-320.10 (Aug 2 2011 19:56:51) starting OSXVers 11
Nov 4 10:59:48 localhost com.apple.kextd[10]: Can't load
/System/Library/Extensions/KensingtonMouseDriver.kext - no code for
running kernel's architecture.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Load
com.kensington.mouseworks.iokit.KensingtonMouseDriver failed; removing
personalities from kernel.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Can't load
/System/Library/Extensions/KensingtonMouseDriver.kext/Contents/PlugIns/K
MWUSBHIDMouse.kext - no code for running kernel's architecture.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Load
com.kensington.mouseworks.driver.KMWUSBHIDMouse failed; removing
personalities from kernel.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Can't load
/System/Library/Extensions/KensingtonMouseDriver.kext - no code for
running kernel's architecture.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Load
com.kensington.mouseworks.iokit.KensingtonMouseDriver failed; removing
personalities from kernel.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Can't load
/System/Library/Extensions/KensingtonMouseDriver.kext/Contents/PlugIns/K
ensingtonMouseDriverX1.kext - no code for running kernel's architecture.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Load
com.kensington.mouseworks.iokit.KensingtonMouseDriverX1 failed; removing
personalities from kernel.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Can't load
/System/Library/Extensions/KensingtonMouseDriver.kext/Contents/PlugIns/U
SBMouseX1.kext - no code for running kernel's architecture.
Nov 4 10:59:48 localhost com.apple.kextd[10]: Load
com.kensington.mouseworks.driver.USBMouseX1 failed; removing
personalities from kernel.
Nov 4 10:59:48 localhost UserEventAgent[11]:
CaptiveNetworkSupport:CaptiveSCCopyWiFiDevices:388 WiFi Device Name ==
NULL
Nov 4 10:59:52: --- last message repeated 1 time ---
Nov 4 10:59:49 localhost configd[15]: ioctl(SIOCGIFCAP) failed: Device
not configured
Nov 4 10:59:52: --- last message repeated 1 time ---
Nov 4 10:59:49 iMac-de-Olivier-Goldberg configd[15]: setting hostname
to "iMac-de-Olivier-Goldberg.local"
Nov 4 10:59:49 iMac-de-Olivier-Goldberg UserEventAgent[11]:
CaptiveNetworkSupport:CaptiveSCCopyWiFiDevices:388 WiFi Device Name ==
NULL
Nov 4 10:59:49 iMac-de-Olivier-Goldberg configd[15]: network
configuration changed.
Nov 4 10:59:50 iMac-de-Olivier-Goldberg UserEventAgent[11]:
CaptiveNetworkSupport:CreateInterfaceWatchList:2788 WiFi Devices Found.
:)
Nov 4 10:59:50 iMac-de-Olivier-Goldberg UserEventAgent[11]:
CaptiveNetworkSupport:CaptivePublishState:1211 en1 - PreProbe
Nov 4 10:59:55: --- last message repeated 1 time ---
Nov 4 10:59:55 iMac-de-Olivier-Goldberg systemkeychain[30]: done file:
/var/run/systemkeychaincheck.done
Nov 4 10:59:55 iMac-de-Olivier-Goldberg mDNSResponder[12]: D2D_IPC:
Loaded
Nov 4 10:59:55 iMac-de-Olivier-Goldberg mDNSResponder[12]:
D2DInitialize succeeded
Nov 4 10:59:55 iMac-de-Olivier-Goldberg mDNSResponder[12]: Adding
registration domain 12718350.members.btmm.icloud.com.
Nov 4 10:59:55 iMac-de-Olivier-Goldberg awacsd[48]: Starting awacsd
connectivity-47 (Jul 7 2011 20:52:38)
Nov 4 10:59:55 iMac-de-Olivier-Goldberg awacsd[48]: Connecting AWACS
client: 12718350.p03.members.btmm.icloud.com.
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.ucupdate.plist[56]:
ucupdate: Checked 1 update, no match found.
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.pfctl[64]: No ALTQ
support in kernel
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.pfctl[64]: ALTQ
related functions disabled
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.launchd[1]
(com.18james.anacron[89]): posix_spawn("/usr/local/sbin/anacron", ...):
No such file or directory
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.launchd[1]
(com.18james.anacron[89]): Exited with code: 1
Nov 4 10:59:56 iMac-de-Olivier-Goldberg com.apple.usbmuxd[55]:
usbmuxd-263 on Aug 23 2011 at 00:44:06, running 64 bit
Nov 4 10:59:56 iMac-de-Olivier-Goldberg Parallels[103]: Loading kernel
extension prl_hypervisor.kext
Nov 4 10:59:58 iMac-de-Olivier-Goldberg UserEventAgent[11]:
ServermgrdRegistration cannot load config data
Nov 4 11:00:00 iMac-de-Olivier-Goldberg com.apple.kextd[10]: Can't open
CFBundle for /Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hypervisor.kext.
Nov 4 11:00:07: --- last message repeated 1 time ---
Nov 4 11:00:00 iMac-de-Olivier-Goldberg com.apple.kextd[10]: Error:
Kext /Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hypervisor.kext - not found/unable to
create.
Nov 4 11:00:00 iMac-de-Olivier-Goldberg Parallels[110]: Failed to load
kernel extension prl_hypervisor.kext
Nov 4 11:00:01 iMac-de-Olivier-Goldberg fseventsd[16]:
implementation_register_rpc: implementation_added_client() => 22
Nov 4 11:00:01 iMac-de-Olivier-Goldberg
com.apple.xpchelper.00000000-0000-0000-0000-000000000000[37]: 2011-11-04
11:00 xpchelper[37] (CarbonCore.framework) FSEventStreamStart:
register_with_server: ERROR: f2d_register_rpc() => (null) (-21)
Nov 4 11:00:01 iMac-de-Olivier-Goldberg airportd[36]:
_processDLILEvent: en1 attached (down)
Nov 4 11:00:01 iMac-de-Olivier-Goldberg configd[15]: network
configuration changed.
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
Starting /usr/local/bin/beidcrld
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
Running fnStartup
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
/Library/StartupItems/beidcrld/beidcrld: line 27:
/usr/local/bin/beidcrld: No such file or directory
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
Starting SideTrack
Nov 4 11:00:02 iMac-de-Olivier-Goldberg SystemStarter[58]: Start the BE
eID CRL deamon (116) did not complete successfully
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
Starting Virtual PC OS Services
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.kextd[10]: Can't load
/Library/Extensions/VirtualPCOSServices.kext - no code for running
kernel's architecture.
Nov 4 11:00:02 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
/Library/Extensions/VirtualPCOSServices.kext failed to load -
(libkern/kext) requested architecture/executable not found; check the
system/kernel logs for errors or try kextutil(8).
Nov 4 11:00:02 iMac-de-Olivier-Goldberg SystemStarter[58]: Operating
System enhancements for Virtual PC (121) did not complete successfully
Nov 4 11:00:02 iMac-de-Olivier-Goldberg Parallels[135]:
/Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hypervisor.kext failed to load -
(libkern/kext) not found; check the system/kernel logs for errors or try
kextutil(8).
Nov 4 11:00:05 iMac-de-Olivier-Goldberg Parallels[139]: Loading kernel
extension prl_hid_hook.kext
Nov 4 11:00:06 iMac-de-Olivier-Goldberg mds[66]: (Normal) FMW: FMW 0 0
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
ERROR,Time,342093606.949,Function,"void
CLDaemonCore::startRun()",locationd was started after an unclean
shutdown
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
STACK,Time,342093606.949,1 locationd
0x00000001009e9254 locationd + 176724
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
STACK,Time,342093606.949,2 locationd
0x00000001009ea1c6 locationd + 180678
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
STACK,Time,342093606.949,3 locationd
0x0000000100a1b32c locationd + 381740
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
STACK,Time,342093606.949,4 locationd
0x00000001009bffd8 locationd + 8152
Nov 4 11:00:06 iMac-de-Olivier-Goldberg com.apple.locationd[69]:
STACK,Time,342093606.949,5 ???
0x0000000000000001 0x0 + 1
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.kextd[10]: Can't open
CFBundle for /Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hid_hook.kext.
Nov 4 11:00:12: --- last message repeated 1 time ---
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.kextd[10]: Error:
Kext /Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hid_hook.kext - not found/unable to
create.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg Parallels[145]: Failed to load
kernel extension prl_hid_hook.kext
Nov 4 11:00:08 iMac-de-Olivier-Goldberg integod[131]: Launch of
"/Library/Intego/integod" failed: the PowerPC architecture is no longer
supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg TabletDriverRelauncher[130]:
Launch of "/Library/StartupItems/Tablet/TabletDriverRelauncher" failed:
the PowerPC architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg sidetrackd[133]: Launch of
"/Library/StartupItems/SideTrack/sidetrackd" failed: the PowerPC
architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg integod[129]: Launch of
"/Library/Intego/integod" failed: the PowerPC architecture is no longer
supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg fnStartupd[126]: Launch of
"/Library/StartupItems/fnStartup/fnStartupd" failed: the PowerPC
architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
2011-11-04 11:00:08.390 RosettaNonGrata[133:11f03] Launch of
"/Library/StartupItems/SideTrack/sidetrackd" failed: the PowerPC
architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
2011-11-04 11:00:08.390 RosettaNonGrata[130:11f03] Launch of
"/Library/StartupItems/Tablet/TabletDriverRelauncher" failed: the
PowerPC architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
2011-11-04 11:00:08.390 RosettaNonGrata[126:11f03] Launch of
"/Library/StartupItems/fnStartup/fnStartupd" failed: the PowerPC
architecture is no longer supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
2011-11-04 11:00:08.391 RosettaNonGrata[131:11f03] Launch of
"/Library/Intego/integod" failed: the PowerPC architecture is no longer
supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]:
2011-11-04 11:00:08.391 RosettaNonGrata[129:11f03] Launch of
"/Library/Intego/integod" failed: the PowerPC architecture is no longer
supported.
Nov 4 11:00:08 iMac-de-Olivier-Goldberg com.apple.SystemStarter[58]: -S
Nov 4 11:00:08 iMac-de-Olivier-Goldberg SystemStarter[58]: Configuring
fn Key (117) did not complete successfully
Nov 4 11:00:08 iMac-de-Olivier-Goldberg SystemStarter[58]: Tablet
Driver (120) did not complete successfully
Nov 4 11:00:11 iMac-de-Olivier-Goldberg fseventsd[16]:
implementation_register_rpc: implementation_added_client() => 22
Nov 4 11:00:11 iMac-de-Olivier-Goldberg
com.apple.UserEventAgent-System[11]: 2011-11-04 11:00 UserEventAgent[11]
(CarbonCore.framework) FSEventStreamStart: register_with_server: ERROR:
f2d_register_rpc() => (null) (-21)
Nov 4 11:00:11 iMac-de-Olivier-Goldberg com.apple.usbmuxd[55]:
_SendAttachNotification (thread 0x7fff7855f960): sending attach for
device
a4:67:06:9e:35:71@fe80::a667:6ff:fe9e:3571._apple-mobdev._tcp.local.:
_GetAddrInfoReplyReceivedCallback matched.
Nov 4 11:00:11 iMac-de-Olivier-Goldberg com.apple.usbmuxd[55]:
MuxNetworkInitiateConnect Client 0x1003158e0-usbmuxd/NULL requesting
attach to b79fbec48a80f90c9f86d1f7f798296adf74aad4:62078 failed, could
not begin background connection attempt: -1
Nov 4 11:00:11 iMac-de-Olivier-Goldberg com.apple.usbmuxd[55]:
HandleUSBMuxConnect Client 0x1003158e0-usbmuxd/NULL
MuxNetworkInitiateConnect failed
Nov 4 11:00:11 iMac-de-Olivier-Goldberg usbmuxd[55]: AMDeviceConnect
(thread 0x100781000): Could not connect to lockdown port (62078) on
device 1 - b79fbec48a80f90c9f86d1f7f798296adf74aad4: 0xe800006b.
Nov 4 11:00:11 iMac-de-Olivier-Goldberg usbmuxd[55]:
_AMDevicePreflightWorker (thread 0x100781000): Pair worker could not
connect to lockdownd on device 1: 0xe800006b.
Nov 4 11:00:11 iMac-de-Olivier-Goldberg com.apple.usbmuxd[55]:
HandleDeviceAttachHelperCallback preflighting failed for WiFi device
0x1-192.168.1.4:0: 0xe800006b. Ignoring device.
Nov 4 11:00:11 iMac-de-Olivier-Goldberg Parallels[147]:
/Library/Parallels/Parallels
Service.app/Contents/Kexts/prl_hid_hook.kext failed to load -
(libkern/kext) not found; check the system/kernel logs for errors or try
kextutil(8).
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]: The
following StartupItems failed to start properly:
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]:
/Library/StartupItems/beidcrld
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]: - execution
of Startup script failed
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]:
/Library/StartupItems/VirtualPCOSServices
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]: - execution
of Startup script failed
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]:
/Library/StartupItems/fnStartup
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]: - execution
of Startup script failed
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]:
/Library/StartupItems/Tablet
Nov 4 11:00:11 iMac-de-Olivier-Goldberg SystemStarter[58]: - execution
of Startup script failed
Nov 4 11:00:13 iMac-de-Olivier-Goldberg Parallels[152]: Loading kernel
extension prl_usb_connect.kext


--
Olivier Goldberg
Pour le courrier personnel, écrire à: olivier (at) ogoldberg (point) net
Devenir Mobile Viking? Contactez-moi!
Signaler un problème avec ce contenu

10 réponses

Supprimer
Cette action est irreversible, confirmez la suppression du commentaire ?
Signaler le commentaire

Veuillez sélectionner un problème

Nudité
Violence
Harcèlement
Fraude
Vente illégale
Discours haineux
Terrorisme
Autre
1 2 3
Avatar
Julien Salort
patpro ~ Patrick Proniewski writes:

tu peux lancer ça dans ton terminal pour voir ?

$ sudo pfctl -s all

(la commande demande au firewall pf d'afficher toutes les info à son
sujet)



Voici ce que ça donne chez moi (OS X Lion 10.7.2)

% sudo pfctl -s all
Password:
No ALTQ support in kernel
ALTQ related functions disabled
TRANSLATION RULES:
nat-anchor "com.apple/*" all
rdr-anchor "com.apple/*" all

FILTER RULES:
anchor "com.apple/*" all

INFO:
Status: Disabled Debug: Urgent

State Table Total Rate
current entries 0
searches 0 0.0/s
inserts 0 0.0/s
removals 0 0.0/s
Counters
match 0 0.0/s
bad-offset 0 0.0/s
fragment 0 0.0/s
short 0 0.0/s
normalize 0 0.0/s
memory 0 0.0/s
bad-timestamp 0 0.0/s
congestion 0 0.0/s
ip-option 0 0.0/s
proto-cksum 0 0.0/s
state-mismatch 0 0.0/s
state-insert 0 0.0/s
state-limit 0 0.0/s
src-limit 0 0.0/s
synproxy 0 0.0/s

TIMEOUTS:
tcp.first 120s
tcp.opening 30s
tcp.established 86400s
tcp.closing 900s
tcp.finwait 45s
tcp.closed 90s
tcp.tsdiff 30s
udp.first 60s
udp.single 30s
udp.multiple 60s
icmp.first 20s
icmp.error 10s
grev1.first 120s
grev1.initiating 30s
grev1.estblished 1800s
esp.first 120s
esp.estblished 900s
other.first 60s
other.single 30s
other.multiple 60s
frag 30s
interval 10s
adaptive.start 6000 states
adaptive.end 12000 states
src.track 0s

LIMITS:
states hard limit 10000
app-states hard limit 10000
src-nodes hard limit 10000
frags hard limit 5000
tables hard limit 1000
table-entries hard limit 200000

OS FINGERPRINTS:
696 fingerprints loaded

--
R: Parce que ça renverse bêtement l'ordre naturel de lecture !
Q: Mais pourquoi citer en fin d'article est-il si effroyable ?
R: Citer en fin d'article.
Q: Quelle est la chose la plus désagréable sur les groupes de new s ?
Avatar
patpro ~ Patrick Proniewski
In article ,
Julien Salort wrote:

Merci !

Et ça me donen l'impression qu'ils l'ont un peu bricolé :
app-states hard limit 10000



cette ligne là, je l'avais jamais vue.

patpro

--
Je cherche à changer d'air -> http://www.patpro.net/cv
Avatar
Matt
On Ven 04 novembre 2011, 14:23,
patpro ~ Patrick Proniewski wrote:

je pense que vous mélangez :)



Non non, c'est bien le cas sur Mac OS X 10.5 et 10.6

Si tu parles de Lion, là je m'en fous complètement que ce soit pf(8) qui
remplace (ou pas) ipfw(8) et/ou le firewall à la sauce Apple
« Application Layer Firewall ».

--
echo '' |
tr '[a-z]' '[n-za-m]'
Avatar
listes2
patpro ~ Patrick Proniewski wrote:

$ sudo pfctl -s all



iMac-de-Olivier-Goldberg:~ olivier$ sudo pfctl -s all
Password:
No ALTQ support in kernel
ALTQ related functions disabled
TRANSLATION RULES:
nat-anchor "com.apple/*" all
rdr-anchor "com.apple/*" all

FILTER RULES:
anchor "com.apple/*" all

INFO:
Status: Disabled Debug: Urgent

State Table Total Rate
current entries 0
searches 0 0.0/s
inserts 0 0.0/s
removals 0 0.0/s
Counters
match 0 0.0/s
bad-offset 0 0.0/s
fragment 0 0.0/s
short 0 0.0/s
normalize 0 0.0/s
memory 0 0.0/s
bad-timestamp 0 0.0/s
congestion 0 0.0/s
ip-option 0 0.0/s
proto-cksum 0 0.0/s
state-mismatch 0 0.0/s
state-insert 0 0.0/s
state-limit 0 0.0/s
src-limit 0 0.0/s
synproxy 0 0.0/s

TIMEOUTS:
tcp.first 120s
tcp.opening 30s
tcp.established 86400s
tcp.closing 900s
tcp.finwait 45s
tcp.closed 90s
tcp.tsdiff 30s
udp.first 60s
udp.single 30s
udp.multiple 60s
icmp.first 20s
icmp.error 10s
grev1.first 120s
grev1.initiating 30s
grev1.estblished 1800s
esp.first 120s
esp.estblished 900s
other.first 60s
other.single 30s
other.multiple 60s
frag 30s
interval 10s
adaptive.start 6000 states
adaptive.end 12000 states
src.track 0s

LIMITS:
states hard limit 10000
app-states hard limit 10000
src-nodes hard limit 10000
frags hard limit 5000
tables hard limit 1000
table-entries hard limit 200000

OS FINGERPRINTS:
696 fingerprints loaded
iMac-de-Olivier-Goldberg:~ olivier$

Le Firewall est activé dans les préférences système.

--
Olivier Goldberg
Pour le courrier personnel, écrire à: olivier (at) ogoldberg (point) net
Devenir Mobile Viking? Contactez-moi!
Avatar
listes2
patpro ~ Patrick Proniewski wrote:

Par ailleurs, je n'ai jamais pris pour acquis que le truc dans les pref
système était un firewall, que ce soit ipfw derrière ou le machin
applicatif. J'ai toujours édité mes fichiers de conf ipfw à la main.



Faut dire que l'interface des préférences système est d'une indigence
rare...

--
Olivier Goldberg
Pour le courrier personnel, écrire à: olivier (at) ogoldberg (point) net
Devenir Mobile Viking? Contactez-moi!
Avatar
patpro ~ patrick proniewski
In article <1ka80mq.dyzihb8op1umN%,
(Olivier Goldberg) wrote:

patpro ~ Patrick Proniewski wrote:

> $ sudo pfctl -s all

iMac-de-Olivier-Goldberg:~ olivier$ sudo pfctl -s all
Password:
No ALTQ support in kernel
ALTQ related functions disabled
TRANSLATION RULES:
nat-anchor "com.apple/*" all
rdr-anchor "com.apple/*" all

FILTER RULES:
anchor "com.apple/*" all


../..

Le Firewall est activé dans les préférences système.



les NAT/RDR anchors me font penser qu'Apple utilise pf comme il
utilisait ipfw par le passé : pour gérer le partage de connexion
internet. Que se passe-t-il au niveau de la sortie de pfctl -s all si tu
partages ta connexion internet sur une autre interface réseau ?

patpro

--
A vendre : KVM IP 16 ports APC
http://patpro.net/blog/index.php/2008/01/12/133
Avatar
patpro ~ patrick proniewski
Ha et puis en fouillant un peu sur le site d'Apple à propos de pf, je
suis tombé sur ça :

/System/Library/Frameworks/SystemConfiguration.framework/Versions/A/Resou
rces/get-mobility-info

en 10.7 il dump aussi les infos de pf, en 10.6 il se contente de ipfw.

patpro

--
A vendre : KVM IP 16 ports APC
http://patpro.net/blog/index.php/2008/01/12/133
Avatar
patpro ~ patrick proniewski
In article ,
patpro ~ patrick proniewski wrote:

Ha et puis en fouillant un peu sur le site d'Apple à propos de pf, je
suis tombé sur ça :

/System/Library/Frameworks/SystemConfiguration.framework/Versions/A/Resou
rces/get-mobility-info

en 10.7 il dump aussi les infos de pf, en 10.6 il se contente de ipfw.



et je continu mon monologue :)
vu ce que je trouve sur le site Apple, il semble bien que ipfw est
deprecated dans Mac OS X 10.7, et qu'il faut lui préférer pf.
pf est aussi utilisé par défaut pour gérer le partage de connexion
internet.

patpro

--
A vendre : KVM IP 16 ports APC
http://patpro.net/blog/index.php/2008/01/12/133
Avatar
listes2
patpro ~ patrick proniewski wrote:

Que se passe-t-il au niveau de la sortie de pfctl -s all si tu
partages ta connexion internet sur une autre interface réseau ?



Connexion reçue par WiFi partagée vers Ethernet : (mais pas de client
connecté)

iMac-de-Olivier-Goldberg:~ olivier$ sudo pfctl -s all
Password:
No ALTQ support in kernel
ALTQ related functions disabled
TRANSLATION RULES:
nat-anchor "com.apple/*" all
rdr-anchor "com.apple/*" all

FILTER RULES:
anchor "com.apple/*" all

STATES:
ALL tcp 192.168.1.5:49172 <- 80.119.13.116:15406
ESTABLISHED:CLOSING
ALL tcp 192.168.1.5:49166 <- 89.93.24.38:24378
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:64432 <- 2.5.189.19:64614
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:33352 <- 88.187.64.140:59688
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:33352 -> 82.231.129.212:49679
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:33352 <- 88.163.162.140:2625
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:33352 <- 90.51.156.134:50002
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:62235 <- 88.165.253.134:46622
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:65085 <- 92.133.74.94:26067
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 84.115.144.181:47891
MULTIPLE:MULTIPLE
ALL tcp 192.168.1.5:61727 <- 99.22.207.156:27791
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 212.83.94.73:57636 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 90.206.252.226:18539
MULTIPLE:MULTIPLE
ALL tcp 192.168.1.5:49170 -> 86.204.163.244:20311 SYN_SENT:CLOSED
ALL udp 192.168.1.5:33352 <- 75.64.18.236:36214 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 81.165.102.115:32905
MULTIPLE:MULTIPLE
ALL tcp 192.168.1.5:62022 <- 196.201.66.253:20012
SYN_SENT:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 197.200.33.243:23026
MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 94.2.40.90:64013 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 31.151.18.128:25248 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 80.200.24.239:54025 MULTIPLE:MULTIPLE
ALL udp 192.168.2.1:5351 -> 224.0.0.1:5350 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:33352 <- 109.254.20.80:15869 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 107.9.210.141:24537 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 90.231.139.93:23947 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 89.173.95.243:50926 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 80.5.46.177:12593 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 -> 89.217.78.103:17576 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:58275 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL udp 192.168.1.5:49909 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:59513 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:56246 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:65339 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:51050 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL igmp 192.168.2.1 -> 224.0.0.22 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:33352 <- 95.26.69.121:53716 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 93.0.186.193:4556 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 80.25.15.56:50000 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 109.145.80.74:39430 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:5353 -> 224.0.0.251:5353 SINGLE:NO_TRAFFIC
ALL udp fe80::da30:62ff:fe55:1f2c[5353] -> ff02::fb[5353]
SINGLE:NO_TRAFFIC
ALL udp 224.0.0.251:5353 <- 192.168.1.5:5353 NO_TRAFFIC:SINGLE
ALL udp ff02::fb[5353] <- fe80::da30:62ff:fe55:1f2c[5353]
NO_TRAFFIC:SINGLE
ALL udp 192.168.2.1:5353 -> 224.0.0.251:5353 SINGLE:NO_TRAFFIC
ALL udp 224.0.0.251:5353 <- 192.168.2.1:5353 NO_TRAFFIC:SINGLE
ALL tcp 192.168.1.5:49173 -> 17.158.10.42:443 TIME_WAIT:TIME_WAIT
ALL udp 192.168.1.5:63705 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:62331 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:54996 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:56187 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:58544 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:33352 <- 94.172.120.113:31513
MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 66.248.172.1:54967 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 186.32.114.174:25491 SINGLE:MULTIPLE
ALL tcp 192.168.1.5:58320 <- 192.168.1.4:54553
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:65324 -> 90.2.153.148:40469
ESTABLISHED:ESTABLISHED
ALL udp 224.0.0.251:5353 <- 192.168.1.4:5353 NO_TRAFFIC:SINGLE
ALL udp ff02::fb[5353] <- fe80::a667:6ff:fe9e:3571[5353]
NO_TRAFFIC:SINGLE
ALL udp 192.168.1.5:33352 <- 90.219.125.172:54656
MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 99.108.98.65:17210 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 68.11.203.151:25193 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 68.234.219.212:14210 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 92.24.243.30:10112 MULTIPLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 92.19.112.230:15360 SINGLE:MULTIPLE
ALL udp 192.168.1.5:63866 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL tcp 192.168.1.5:49174 -> 17.158.10.36:443
FIN_WAIT_2:FIN_WAIT_2
ALL udp 192.168.1.5:33352 -> 78.12.240.210:52667 MULTIPLE:SINGLE
ALL udp 192.168.1.5:33352 <- 126.116.65.143:18100 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 94.174.38.34:46514 SINGLE:MULTIPLE
ALL tcp 192.168.1.5:33352 -> 109.11.34.160:61697 SYN_SENT:CLOSED
ALL tcp 192.168.1.5:33352 <- 190.19.208.66:60883
SYN_SENT:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 91.142.99.170:1054 SINGLE:MULTIPLE
ALL tcp 192.168.1.5:49175 -> 17.158.10.36:443
ESTABLISHED:ESTABLISHED
ALL udp 192.168.2.1:631 -> 192.168.2.255:631 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:631 -> 192.168.1.255:631 SINGLE:NO_TRAFFIC
ALL udp 192.168.2.255:631 <- 192.168.2.1:631 NO_TRAFFIC:SINGLE
ALL udp 192.168.1.255:631 <- 192.168.1.5:631 NO_TRAFFIC:SINGLE
ALL udp 192.168.1.5:58349 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL udp 192.168.1.5:60471 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL udp 192.168.1.5:52107 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL udp 192.168.1.5:61309 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL tcp 192.168.1.5:49407 -> 164.15.128.18:993
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:61304 -> 209.85.229.108:993
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:53201 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:56190 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL tcp 192.168.1.5:49405 -> 164.15.128.18:993
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:49176 -> 209.85.143.109:587
TIME_WAIT:TIME_WAIT
ALL tcp 192.168.1.5:49177 -> 213.186.33.20:465 TIME_WAIT:TIME_WAIT
ALL tcp 192.168.1.5:49404 -> 164.15.128.18:993
ESTABLISHED:ESTABLISHED
ALL tcp 192.168.1.5:60922 -> 209.85.143.108:993
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 24.63.233.2:64835 NO_TRAFFIC:SINGLE
ALL tcp 192.168.1.5:54500 -> 209.85.143.109:993
TIME_WAIT:TIME_WAIT
ALL tcp 192.168.1.5:60920 -> 209.85.143.108:993
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 85.96.113.227:32603 SINGLE:MULTIPLE
ALL udp 192.168.1.5:64448 -> 192.168.1.1:53 MULTIPLE:SINGLE
ALL tcp 192.168.1.5:49178 -> 209.85.143.109:993
ESTABLISHED:ESTABLISHED
ALL udp 192.168.1.5:33352 <- 82.58.88.203:12391 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 24.47.116.42:52525 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 109.132.235.174:48708 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 -> 82.59.192.20:25951 MULTIPLE:SINGLE
ALL udp 192.168.1.5:52495 -> 192.168.1.1:53 SINGLE:NO_TRAFFIC
ALL udp 192.168.1.5:33352 <- 68.107.109.27:13404 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 80.5.138.90:58649 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 <- 98.21.209.137:27627 SINGLE:MULTIPLE
ALL udp 192.168.1.5:33352 -> 88.123.52.71:65075 MULTIPLE:SINGLE

INFO:
Status: Enabled for 0 days 00:00:08 Debug: Urgent

State Table Total Rate
current entries 105
searches 2664 333.0/s
inserts 105 13.1/s
removals 0 0.0/s
Counters
match 105 13.1/s
bad-offset 0 0.0/s
fragment 0 0.0/s
short 0 0.0/s
normalize 0 0.0/s
memory 0 0.0/s
bad-timestamp 0 0.0/s
congestion 0 0.0/s
ip-option 2 0.2/s
proto-cksum 0 0.0/s
state-mismatch 49 6.1/s
state-insert 0 0.0/s
state-limit 0 0.0/s
src-limit 0 0.0/s
synproxy 0 0.0/s

TIMEOUTS:
tcp.first 120s
tcp.opening 30s
tcp.established 86400s
tcp.closing 900s
tcp.finwait 45s
tcp.closed 90s
tcp.tsdiff 60s
udp.first 60s
udp.single 30s
udp.multiple 120s
icmp.first 20s
icmp.error 10s
grev1.first 120s
grev1.initiating 30s
grev1.estblished 1800s
esp.first 120s
esp.estblished 900s
other.first 60s
other.single 30s
other.multiple 120s
frag 30s
interval 10s
adaptive.start 6000 states
adaptive.end 12000 states
src.track 0s

LIMITS:
states hard limit 10000
app-states hard limit 10000
src-nodes hard limit 10000
frags hard limit 5000
tables hard limit 1000
table-entries hard limit 200000

--
Olivier Goldberg
Pour le courrier personnel, écrire à: olivier (at) ogoldberg (point) net
Devenir Mobile Viking? Contactez-moi!
Avatar
patpro ~ patrick proniewski
In article <1ka8gix.1ujvn7awz2th0N%,
(Olivier Goldberg) wrote:

Connexion reçue par WiFi partagée vers Ethernet : (mais pas de client
connecté)

TRANSLATION RULES:
nat-anchor "com.apple/*" all
rdr-anchor "com.apple/*" all

FILTER RULES:
anchor "com.apple/*" all



c'est marrant, je n'avais pas réalisé que les règles incluses dans les
anchors ne s'affichaient pas dans le listing

INFO:
Status: Enabled for 0 days 00:00:08 Debug: Urgent



ce qui confirme que pf, comme anciennement ipfw, gère le partage de
connexion internet.

patpro

--
A vendre : KVM IP 16 ports APC
http://patpro.net/blog/index.php/2008/01/12/133
1 2 3