netdev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Potential issue with IP network stack

from [Andi Kleen] [Permanent Link][Original]
To: tom burkart <tom@xxxxxxxxxx>
Subject: Re: Potential issue with IP network stack
From: Andi Kleen <ak@xxxxxxx>
Date: Fri, 8 Mar 2002 09:23:26 +0100
Cc: netdev@xxxxxxxxxxx
In-reply-to: <Pine.LNX.4.44.0203081101500.608-100000@home.aussec.com>
References: <Pine.LNX.4.44.0203081101500.608-100000@home.aussec.com>
Sender: owner-netdev@xxxxxxxxxxx
User-agent: Mutt/1.3.22.1i 
> Problem the Linux server in (1) and (2) will not connect properly to
> certain mail servers (usually telcos).  Also "telnet mailhost5.wcom.com.hk
> 25" does not work (it says: "Connecting to <ip address of the machine>",
> but doesn't - tcpdump reveals that it sends packets but does not receive
> any).  The funny part is that in (1) it works properly from both, the
> CISCO router AND from the internal network.  With (2) it works properly
> from the internal network.
> (3) and (4) work fine under all circumstances.

The other side is likely pmtu blackholed and blocking all ICMPs 
(misconfigured firewall) 
Set a mss of 1440 on the default route and flush the routing cache
afterwards
(ip route replace default .... advmss 1440 ; ip route flush) 

Another possibility is ECN, make sure it is turned off. Would be again
a broken firewall on the other side. echo 0 > /proc/sys/net/ipv4/tcp_ecn

-Andi

P.S.: netdev is for network code development. your question would have been
more appropiate on linux-net.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: raw sockets, IP_HDRINCL, and fragmentation, Andi Kleen
Next by Date:  Re: addrconf.c - possible bug, Petr Baudis
Previous by Thread:  Potential issue with IP network stack, tom burkart
Next by Thread:  Re: addrconf.c - possible bug, Petr Baudis
Indexes:  [Date] [Thread] [Top] [All Lists]