Problems with masquerading

From: Mindaugas Riauba (minde@tdd.lt)
Date: Fri Mar 10 2000 - 04:48:50 EST

Next message: Florin Andrei: "scheduler reccomandation"
Previous message: Tim Fletcher: "Re: memory tester and BP6 problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

  There is some problem while trying to connect to
https://www.firstunion.com/servlet/FirstLine Browser just keeps trying to
retrieve
data. Direct connection is ok. Connecting through iproute or freebsd based
NATs
are ok too.
  Machine is quite standard RedHat 6.1 installation with 2.2.12-20 kernel
and
only one ipchains rule to masq everything. input/output policies are allow,
forward - deny. Everything else works normal.
  Browser is Internet Explorer but Netscape behaves the same.
  tcpdump of session below.

Mindaugas

Kernel filter, protocol ALL, datagram packet socket
tcpdump: listening on all devices
15:09:41.117017 eth0 < 192.168.0.10.1098 > dmzjax.firstunion.com.https: F
1823012:1823012(0) ack 4217858633 win 2144 (DF)
15:09:41.117017 ppp0 > vytaras.tdd.lt.63132 > dmzjax.firstunion.com.https: F
1823012:1823012(0) ack 4217858633 win 2144 (DF)
15:09:41.127017 eth0 < 192.168.0.10.1099 > dmzjax.firstunion.com.https: S
2247989:2247989(0) win 2144 <mss 1460,nop,nop,sackOK> (DF)
15:09:41.127017 ppp0 > vytaras.tdd.lt.63140 > dmzjax.firstunion.com.https: S
2247989:2247989(0) win 2144 <mss 1460,nop,nop,sackOK> (DF)
15:09:41.487017 ppp0 < dmzjax.firstunion.com.https > vytaras.tdd.lt.63132: .
1461:1461(0) ack 1 win 8760 (DF)
15:09:41.497017 eth0 > dmzjax.firstunion.com.https > 192.168.0.10.1098: .
1461:1461(0) ack 1 win 8760 (DF)
15:09:41.687017 ppp0 < dmzjax.firstunion.com.https > vytaras.tdd.lt.63140: S
930020726:930020726(0) ack 2247990 win 8760 <mss 1460> (DF)
15:09:41.697017 eth0 > dmzjax.firstunion.com.https > 192.168.0.10.1099: S
930020726:930020726(0) ack 2247990 win 8760 <mss 1460> (DF)
15:09:41.697017 eth0 < 192.168.0.10.1099 > dmzjax.firstunion.com.https: .
1:1(0) ack 1 win 2144 (DF)
15:09:41.697017 ppp0 > vytaras.tdd.lt.63140 > dmzjax.firstunion.com.https: .
1:1(0) ack 1 win 2144 (DF)
15:09:41.697017 eth0 < 192.168.0.10.1099 > dmzjax.firstunion.com.https: P
1:70(69) ack 1 win 2144 (DF)
15:09:41.697017 ppp0 > vytaras.tdd.lt.63140 > dmzjax.firstunion.com.https: P
1:70(69) ack 1 win 2144 (DF)
15:09:42.667017 ppp0 < dmzjax.firstunion.com.https > vytaras.tdd.lt.63140: .
1:1(0) ack 70 win 8760 (DF)
15:09:42.677017 eth0 > dmzjax.firstunion.com.https > 192.168.0.10.1099: .
1:1(0) ack 70 win 8760 (DF)

14 packets received by filter

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Florin Andrei: "scheduler reccomandation"
Previous message: Tim Fletcher: "Re: memory tester and BP6 problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Mar 15 2000 - 21:00:17 EST