/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
On 05-Oct-2001 Johnny Vstberg wrote:
> OK I have this funny problem, not 100% sure if it really is IP_MASQ that
> is spooking around.
> Any way, here is the deal: After a while my Linux box is unable to get
> anywhere, note...going out to the internet, IN works fine. I cannot use
> lynx, telnet anywhere or use BitchX or FTP. It just says its trying to
> connect to the IP. Sometimes I get this to work by restarting for
> example my CS server like 40 times. But it stops working after a while.
> The funny thing is that, I cannot use lynx on my linuxbox but my masq'd
> client can use telnet, ftp, irc and so on without any trouble.
>
> Anyone else experienced this? Any recomended methods of troubleshooting?
>
> Sincerely
> Johnny
I noticed the same problem. Sometimes all traffic goes to zero. I browse
through a proxy at the gateway (for caching reasones) but I can switch to
direct
internet connection and I can then browse again but only the masq'd box can
do.
At the gateway I cannot use links/lynx (doesn't get any connection) but I'm
able
to ping/traceroute.
Because the internal net doesn't has any problem, I think the forwarding of
the packets is okay, but for some circumstances (unknown for me) the gateway
cannot connect.
But after some time (even without rebooting or disconnecting) everything goes
to
normal again. The last time I had this problem I switched to direct
connection
in Mozilla and after 1 hour (or so) I tried to use the proxy at my gateway
and
it works again!
The gateway is a 2.2.29 box, the masq'd box is a 2.4.9
Except this problem everything like masquerading/forwarding works okay.
I attached the output of ipchains -nvL.
Another problem:
In the attached output:
...
Chain input (policy REJECT: 39 packets, 2396 bytes):
...
Why there are 39 packets rejected, while no packet get rejected by any
reject-rule (including the last which should cover any other packets):
...
0 0 REJECT all ----l- 0xFF 0x00 *
0.0.0.0/0 0.0.0.0/0 n/a
...
Any comments welcome.
Regards,
Ralf Hoffmann
############################################################
Homepage: http://www.boomerangsworld.de
E-Mail: Ralf Hoffmann <[EMAIL PROTECTED]>
english or german
ICQ: 78645784
Date: 05.Oct 2001 -- Time: 19:56:01 CEST
[demime 0.97b removed an attachment of type application/octet-stream which had a name
of ipchain-log; SizeOnDisk=2149]
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
