"Kevin P. Fleming" wrote:
> The machine runs fine, and other nodes on the local network (i.e. using the
> ethernet interface) can communicate with it just fine. I can also bring up
> the ppp link, and communicate with everything on the corporate WAN without
> trouble. I can communicate _through_ this machine from nodes on the local
> network to the corporate WAN just fine. But...
>
> What I _cannnot_ do is initiate a connection from a node on the other side
> of the ppp link (the corporate side) to this machine. There are at least
> three daemon processes on this system I've tried to connect to: xinetd (for
> telnet), bind and exim. None of these are using tcp_wrappers. The symptoms
> are that the TCP SYN packet (to open the connection) arrives at the ppp0
> interface (verified by using tcpdump on the ppp0 interface), but then is not
> delivered to the waiting process on its open socket.
Hi Kevin,
You seem to know what you're doing there, but it would still help if you
could provide some details of your routing configuration and servers,
e.g. output of ifconfig, route -n, and netstat -anot, iptables -L
(provided that the company security policy allows you to share this
info, of course :-). Are you doing NAT between the local net and the
corporate WAN or are you sharing a subnet? Are you sure that it's the
SYN getting lost rather than the SYN-ACK from the server? Even though
your machine is forwarding fine it might still be a routing problem of
some kind.
Cheers,
MikaL
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Jan 07 2002 - 21:00:28 EST