Re: [gentoo-user] strange network problem
At 2010-09-10,Walter Dnes waltd...@waltdnes.org wrote: On Tue, Sep 07, 2010 at 09:51:48PM +0800, ?? wrote Thinks everyone: DNS woks well for me. i can ping www.google.com. Just can't access it in web-browsers without rebooting system.Sometimes I thought mybe it's the problem of Power.But now i doubt about it! Because even while I am watching videos online( about half an our) it happens. Here is the wireshark capture result:I don't know why there are so manay RTS. I had a problem authenticating with the wifi domain at the local library when I first tried it. It turns out that the local library intercepts the first http:// attempt and sends you to a page win the 10.0.0.0/8 block. My iptables configuration was copied from my desktop, which had no reason to expect traffic from that area. So it blocked 10.0.0.0/8 it, which prevented me from signing in. Your situation sounds like you have a half-hour lease on an IP address, and something goes wrong when the lease is renewed, or attempted to be renewed. A couple of suggestions... - heavy-handed solution... can you set up dhcpcd to get you a longer lease than 30 minutes on your IP address? - check your iptables rulesets and logs. Do you have any iptables rules that generate RST's at your end? If you get desparate, try running for 45 minutes with iptables turned off - what does your netbook's /etc/resolv.conf look like... 1) before going online 2) after going online successfully 3) after a half-hour -- Walter Dnes waltd...@waltdnes.org Thinks First , There is no iptables severing no my box; Second : The /etc/resolve.conf keeps the same all the times; I tried to restart network , eth0 , dhcpd, NetworkManager but nothing helps,The same thing happens whilel using static IP address. I've attached Wiresharp data ,Hope someone can help. googlecap Description: Binary data
Re: Re: [gentoo-user] strange network problem
2010/9/10 路 xaoru2...@163.com: At 2010-09-10,路 xaoru2...@163.com wrote: At 2010-09-10,Walter Dnes waltd...@waltdnes.org wrote: On Tue, Sep 07, 2010 at 09:51:48PM +0800, ?? wrote Thinks everyone: DNS woks well for me. i can ping www.google.com. Just can't access it in web-browsers without rebooting system.Sometimes I thought mybe it's the problem of Power.But now i doubt about it! Because even while I am watching videos online( about half an our) it happens. Here is the wireshark capture result:I don't know why there are so manay RTS. I had a problem authenticating with the wifi domain at the local library when I first tried it. It turns out that the local library intercepts the first http:// attempt and sends you to a page win the 10.0.0.0/8 block. My iptables configuration was copied from my desktop, which had no reason to expect traffic from that area. So it blocked 10.0.0.0/8 it, which prevented me from signing in. Your situation sounds like you have a half-hour lease on an IP address, and something goes wrong when the lease is renewed, or attempted to be renewed. A couple of suggestions... - heavy-handed solution... can you set up dhcpcd to get you a longer lease than 30 minutes on your IP address? - check your iptables rulesets and logs. Do you have any iptables rules that generate RST's at your end? If you get desparate, try running for 45 minutes with iptables turned off - what does your netbook's /etc/resolv.conf look like... 1) before going online 2) after going online successfully 3) after a half-hour -- Walter Dnes waltd...@waltdnes.org Thinks First , There is no iptables severing no my box; Second : The /etc/resolve.conf keeps the same all the times; I tried to restart network , eth0 , dhcpd, NetworkManager but nothing helps,The same thing happens whilel using static IP address. I've attached Wiresharp data ,Hope someone can help. Sorry.previous attachment is bad! 您想拥有和网易免费邮箱一样强大的软件吗? 您想拥有和网易免费邮箱一样强大的软件吗? I DO NOT recommend you use the mail service provided by 163.com See the advertisement under your mail and signature ? 建议你加邮件列表还是用GMAIL吧 -- @ghosTM55 Mechanism, not policy
Re: [gentoo-user] strange network problem
On Tue, Sep 07, 2010 at 09:51:48PM +0800, ?? wrote Thinks everyone: DNS woks well for me. i can ping www.google.com. Just can't access it in web-browsers without rebooting system.Sometimes I thought mybe it's the problem of Power.But now i doubt about it! Because even while I am watching videos online( about half an our) it happens. Here is the wireshark capture result:I don't know why there are so manay RTS. I had a problem authenticating with the wifi domain at the local library when I first tried it. It turns out that the local library intercepts the first http:// attempt and sends you to a page win the 10.0.0.0/8 block. My iptables configuration was copied from my desktop, which had no reason to expect traffic from that area. So it blocked 10.0.0.0/8 it, which prevented me from signing in. Your situation sounds like you have a half-hour lease on an IP address, and something goes wrong when the lease is renewed, or attempted to be renewed. A couple of suggestions... - heavy-handed solution... can you set up dhcpcd to get you a longer lease than 30 minutes on your IP address? - check your iptables rulesets and logs. Do you have any iptables rules that generate RST's at your end? If you get desparate, try running for 45 minutes with iptables turned off - what does your netbook's /etc/resolv.conf look like... 1) before going online 2) after going online successfully 3) after a half-hour -- Walter Dnes waltd...@waltdnes.org
Re: [gentoo-user] strange network problem
2010/9/7 路 xaoru2...@163.com: Hi ,everybody I've met a strang network problem.My gentoo Netbook can't access google and some other web sites after lying idle about more than half an hour's. But it can acesses other sites normally ,And can pinging ervery sites including google very well! The Only thing i can do is rebooting the system,and Network resume aftre that. I've googled a lot,and found nothing to solve this problem. :-( It borthered me a lot.Please help me! You should run wireshark and see what is happening when you are trying to access google. Best regards, Maciej Grela
Re: [gentoo-user] strange network problem
On Tuesday 07 September 2010 08:28:32 Maciej Grela wrote: 2010/9/7 路 xaoru2...@163.com: Hi ,everybody I've met a strang network problem.My gentoo Netbook can't access google and some other web sites after lying idle about more than half an hour's. But it can acesses other sites normally ,And can pinging ervery sites including google very well! The Only thing i can do is rebooting the system,and Network resume aftre that. I've googled a lot,and found nothing to solve this problem. :-( It borthered me a lot.Please help me! You should run wireshark and see what is happening when you are trying to access google. If you can ping, but not resolve domain names then it could have something to do with the DNS servers that you or your ISP are using. -- Regards, Mick signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] strange network problem
Apparently, though unproven, at 12:40 on Tuesday 07 September 2010, Mick did opine thusly: On Tuesday 07 September 2010 08:28:32 Maciej Grela wrote: 2010/9/7 路 xaoru2...@163.com: Hi ,everybody I've met a strang network problem.My gentoo Netbook can't access google and some other web sites after lying idle about more than half an hour's. But it can acesses other sites normally ,And can pinging ervery sites including google very well! The Only thing i can do is rebooting the system,and Network resume aftre that. I've googled a lot,and found nothing to solve this problem. :-( It borthered me a lot.Please help me! You should run wireshark and see what is happening when you are trying to access google. If you can ping, but not resolve domain names then it could have something to do with the DNS servers that you or your ISP are using. If he can ping www.google.com then his domain resolution must be working fine. -- alan dot mckinnon at gmail dot com
Re: [gentoo-user] strange network problem
At 2010-09-07,Alan McKinnon alan.mckin...@gmail.com wrote: Apparently, though unproven, at 12:40 on Tuesday 07 September 2010, Mick did opine thusly: On Tuesday 07 September 2010 08:28:32 Maciej Grela wrote: 2010/9/7 路 xaoru2...@163.com: Hi ,everybody I've met a strang network problem.My gentoo Netbook can't access google and some other web sites after lying idle about more than half an hour's. But it can acesses other sites normally ,And can pinging ervery sites including google very well! The Only thing i can do is rebooting the system,and Network resume aftre that. I've googled a lot,and found nothing to solve this problem. :-( It borthered me a lot.Please help me! You should run wireshark and see what is happening when you are trying to access google. If you can ping, but not resolve domain names then it could have something to do with the DNS servers that you or your ISP are using. If he can ping www.google.com then his domain resolution must be working fine. -- alan dot mckinnon at gmail dot com Thinks everyone: DNS woks well for me. i can ping www.google.com. Just can't access it in web-browsers without rebooting system.Sometimes I thought mybe it's the problem of Power.But now i doubt about it! Because even while I am watching videos online( about half an our) it happens. Here is the wireshark capture result:I don't know why there are so manay RTS. Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=1581039706 TSER=40437152 WS=6 32,14.006920,192.168.1.102,64.233.181.113,TCP,57028 http [SYN] Seq=0 Win=5840 Len=0 MSS=1460 TSV=40490336 TSER=0 WS=6 33,15.045762,64.233.181.113,192.168.1.102,TCP,http 57028 [SYN, ACK] Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=3738233147 TSER=40437152 WS=6 34,15.045788,192.168.1.102,64.233.181.113,TCP,57028 http [RST] Seq=1 Win=0 Len=0 35,15.063001,64.233.181.113,192.168.1.102,TCP,http 57028 [SYN, ACK] Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=3738233315 TSER=40437152 WS=6 36,15.063027,192.168.1.102,64.233.181.113,TCP,57028 http [RST] Seq=1 Win=0 Len=0 wireshark.csv Description: Binary data
Re: [gentoo-user] strange network problem
On 7 sept. 2010, at 15:51, 路 wrote: Thinks everyone: DNS woks well for me. i can ping www.google.com. Just can't access it in web-browsers without rebooting system.Sometimes I thought mybe it's the problem of Power.But now i doubt about it! Because even while I am watching videos online( about half an our) it happens. Here is the wireshark capture result:I don't know why there are so manay RTS. Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=1581039706 TSER=40437152 WS=6 32,14.006920,192.168.1.102,64.233.181.113,TCP,57028 http [SYN] Seq=0 Win=5840 Len=0 MSS=1460 TSV=40490336 TSER=0 WS=6 33,15.045762,64.233.181.113,192.168.1.102,TCP,http 57028 [SYN, ACK] Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=3738233147 TSER=40437152 WS=6 34,15.045788,192.168.1.102,64.233.181.113,TCP,57028 http [RST] Seq=1 Win=0 Len=0 35,15.063001,64.233.181.113,192.168.1.102,TCP,http 57028 [SYN, ACK] Seq=0 Ack=1 Win=5672 Len=0 MSS=1430 TSV=3738233315 TSER=40437152 WS=6 36,15.063027,192.168.1.102,64.233.181.113,TCP,57028 http [RST] Seq=1 Win=0 Len=0 Since you are the one sending RESETs instead of ACKs, I'd use hping (hping -S -p 80 64.233.181.113) and check if the box also sends RESETs instead of ACKs using CLI, or with bash+nc : ( echo GET / HTTP/1.0 ; echo ; echo host:www.google.com ; echo ) | nc 64.233.181.113 80 If you can actually read google sources using that, your browser is to blame, or a plugin ? - Florian. / For security reasons, all text in this mail is double-rot13 encrypted. /
Re: [gentoo-user] strange network problem
Since you are the one sending RESETs instead of ACKs, I'd use hping (hping -S -p 80 64.233.181.113) and check if the box also sends RESETs instead of ACKs using CLI, or with bash+nc : ( echo GET / HTTP/1.0 ; echo ; echo host:www.google.com ; echo ) | nc 64.233.181.113 80 If you can actually read google sources using that, your browser is to blame, or a plugin ? I agree with Florian - the problem is clearly your end. You should be sending ACK after the SYN/ACK from google, not an RST. I would have through that the OS would perform the TCP setup tho, not the browser itself. Checking with different software is worthwhile to verify whether that is true or not. You could also try 'lynx www.google.com' instead of the echo/nc thing. Also if you want us to look at the capture, send it in pcap (binary) format so we can see all the detail.
