[rlug] Re: Problema ciudata cu Qmail!

Thu, 26 Jun 2003 03:52:17 -0700 

uite ce zice tcpdump in momentu in care dau mail de un client(cu outlook
express si setarile de retea de felu urmator-pe WinXP:
ip1:192.168.10.24
ip2: 194.176.183.46
gw:194.176.183.41
dns: 192.168.10.100(care e si squid si gateway pt ip-urile din calsa asta)
SCUZE daca e cam mare PASTEu' asta de la tcpdump...dar credeti-ma ca tre sa
o rezolv azi....:(((

tcpdump -i eth1 "host 192.168.10.24 and not port ssh"
tcpdump: listening on eth1
13:39:10.305929 192.168.10.24.2652 > castor.local.itg.smtp: S
1600886305:1600886
305(0) win 64240 <mss 1460,nop,nop,sackOK> (DF)
13:39:10.306173 castor.local.itg.smtp > 192.168.10.24.2652: S
2389360441:2389360
441(0) ack 1600886306 win 5840 <mss 1460,nop,nop,sackOK> (DF)
13:39:10.306350 192.168.10.24.2652 > castor.local.itg.smtp: . ack 1 win
64240 (D
F)
13:39:18.639081 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:39:18.639325 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:18.639172 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:39:18.639714 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:19.138366 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:39:19.138587 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:19.138606 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:39:19.138810 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:43.639549 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:39:43.639779 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:43.639635 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:39:43.639988 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:44.140097 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:39:44.140327 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:39:44.140183 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:39:44.140535 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:01.699690 192.168.10.24.1088 > castor.local.itg.domain:  98+ A?
www.google
.com. (32)
13:40:02.267922 castor.local.itg.domain > 192.168.10.24.1088:  98 1/0/0 A
216.23
9.53.99 (48) (DF)
13:40:03.317017 castor.local.itg.domain > 192.168.10.24.1088:  95 ServFail
0/0/0
 (34) (DF)
13:40:08.642693 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:40:08.642950 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:08.642874 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:40:08.643161 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:09.142279 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:40:09.142526 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:09.142367 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:40:09.142734 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:09.387053 castor.local.itg.domain > 192.168.10.24.1088:  95 ServFail
0/0/0
 (34) (DF)
13:40:09.399342 castor.local.itg.smtp > 192.168.10.24.2652: P 1:29(28) ack 1
win
 5840 (DF)
13:40:09.399892 192.168.10.24.2652 > castor.local.itg.smtp: P 1:15(14) ack
29 wi
n 64212 (DF)
13:40:09.400232 castor.local.itg.smtp > 192.168.10.24.2652: . ack 15 win
5840 (D
F)
13:40:09.400627 castor.local.itg.smtp > 192.168.10.24.2652: P 29:51(22) ack
15 w
in 5840 (DF)
13:40:09.406552 192.168.10.24.2652 > castor.local.itg.smtp: P 15:53(38) ack
51 w
in 64190 (DF)
13:40:09.406855 castor.local.itg.smtp > 192.168.10.24.2652: P 51:59(8) ack
53 wi
n 5840 (DF)
13:40:09.407477 192.168.10.24.2652 > castor.local.itg.smtp: P 53:85(32) ack
59 w
in 64182 (DF)
13:40:09.407976 castor.local.itg.smtp > 192.168.10.24.2652: P 59:67(8) ack
85 wi
n 5840 (DF)
13:40:09.409811 192.168.10.24.2652 > castor.local.itg.smtp: P 85:91(6) ack
67 wi
n 64174 (DF)
13:40:09.412539 castor.local.itg.smtp > 192.168.10.24.2652: P 67:81(14) ack
91 w
in 5840 (DF)
13:40:09.413477 192.168.10.24.2652 > castor.local.itg.smtp: P 91:1299(1208)
ack
81 win 64160 (DF)
13:40:09.446751 castor.local.itg.smtp > 192.168.10.24.2652: . ack 1299 win
8456
(DF)
13:40:09.446982 192.168.10.24.2652 > castor.local.itg.smtp: P 1299:1304(5)
ack 8
1 win 64160 (DF)
13:40:09.447781 castor.local.itg.smtp > 192.168.10.24.2652: . ack 1304 win
8456
(DF)
13:40:09.458126 castor.local.itg.smtp > 192.168.10.24.2652: P 81:108(27) ack
130
4 win 8456 (DF)
13:40:09.459285 192.168.10.24.2652 > castor.local.itg.smtp: P 1304:1310(6)
ack 1
08 win 64133 (DF)
13:40:09.460165 castor.local.itg.smtp > 192.168.10.24.2652: P 108:130(22)
ack 13
10 win 8456 (DF)
13:40:09.460358 castor.local.itg.smtp > 192.168.10.24.2652: F 130:130(0) ack
131
0 win 8456 (DF)
13:40:09.460516 192.168.10.24.2652 > castor.local.itg.smtp: . ack 131 win
64111
(DF)
13:40:09.461189 192.168.10.24.2652 > castor.local.itg.smtp: F 1310:1310(0)
ack 1
31 win 64111 (DF)
13:40:09.461440 castor.local.itg.smtp > 192.168.10.24.2652: . ack 1311 win
8456
(DF)
13:40:33.644421 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:40:33.644650 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:33.644484 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:40:33.644858 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:34.145122 192.168.10.24.1041 > 194.176.183.41.1900: udp 132
13:40:34.145349 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
13:40:34.145248 192.168.10.24.1041 > 194.176.183.41.1900: udp 133
13:40:34.145556 194.176.183.41 > 192.168.10.24: icmp: 194.176.183.41 udp
port 19
00 unreachable [tos 0xc0]
----- Original Message ----- 
From: "Patrascu Eugeniu" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: 26 June, 2003 12:52 PM
Subject: [rlug] Re: Problema ciudata cu Qmail!


>
> >  pai .....si cukm pot rezolva problema asta?!
> > defapt cum observ daca vrea reverse sau nnu??
> > si daca vrea cum fac sa il rezolve
>
> pui un tcpdump si vezi ce se intampla pe acolo cand dai sa trimiti un
> mail. ca rezolvare, iti faci un server de dns care sa rezolve ip-urile
> din reteua interna (si forward si reverse).
>
>
> > >
> -- 
> Patrascu Eugeniu <[EMAIL PROTECTED]>
> NoBug Consulting Romania
>
>
>

Raspunde prin e-mail lui