bugzilla-daemon@netfilter.org
2003-May-14 00:39 UTC
[Bug 47] conntrack breaks nfs, corrupted packets
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47 ------- Additional Comments From kaber@trash.net 2003-05-14 02:39 ------- I've captured some non-fragmented tcp packets which show this behaviour with 2.4.21-rc2. They look badly damaged. The destination ip doesn't match the mac but they come from valid connections. Setting interface mtu to 1486 helps which makes me think this is also related to ip_conntrack (although i've not tried without because i need to masquerade). 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 192.168.0.1.51420 > 192.168.0.223.56058: FRW 3723124278:3723124306(28) ack 2602302847 win 60390 urg 44527 <[bad opt]> (DF) [tos 0x12,ECT(0)] (ttl 64, id 11333, len 100, bad cksum 8cd4!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 172.183.247.57.1282 > 192.168.0.223.12899: P [bad tcp cksum be1d!] 176162560:176162584(24) ack 3969909265 win 52224 (DF) (ttl 118, id 18806, len 52, bad cksum 569d!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 192.168.0.1.3356 > 192.168.0.223.63539: udp 35372 (DF) (ttl 64, id 583, len 106, bad cksum b6d3!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.0.157.40.23320 > 192.168.0.223.53818: FRPW [bad tcp cksum 240a!] 2316506398:2316506402(4) win 48011 <[bad opt]> (DF) (ttl 118, id 45558, len 52, bad cksum 1be5!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 80.134.198.47.58609 > 192.168.0.223.11407: SFPE [bad hdr length] (ttl 117, id 2410, len 52, bad cksum 64e5!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.236.110.112.9272 > 192.168.0.223.28419: SPWE [bad tcp cksum b890!] 846439856:846439880(24) win 30252 urg 56760 (DF) (ttl 117, id 44535, len 52, bad cksum 4eb0!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.38170 > 192.168.0.223.54361: SFWE 2985761410:2985762802(1392) win 21463 urg 11395 <opt-160:dd8028,[bad opt]> (DF) [tos 0x2,ECT(0)] (ttl 57, id 13127, len 1452, bad cksum ed38!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.44760 > 192.168.0.223.23272: SFP [bad tcp cksum 2103!] 1779529114:1779529118(4) ack 3457408450 win 17576 <[bad opt]> (DF) (ttl 57, id 11973, len 52, bad cksum f734!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.13496 > 192.168.0.223.32768: SFR 4634:6062(1428) win 12755 [!RST+ \000\000\022\032\026\002BC\033\0071\3233e9\020\245\235\013c\310`\203\302\310F\032\024a`] (DF) [tos 0x2,ECT(0)] (ttl 57, id 12006, len 1452, bad cksum f199!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.228.88.2.18847 > 192.168.0.223.16454: SFRPW [bad tcp cksum 214f!] 621281275:621281303(28) ack 2959382016 win 28240 urg 49170 [RST I\237@F%\007\377\373\260d\226\000\010\277nP\003\273\300\022\006\200J\000<@\000b] (DF) (ttl 118, id 64278, len 48, bad cksum 170b!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.60325 > 192.168.0.223.21544: SRW [bad hdr length] (DF) (ttl 57, id 12009, len 52, bad cksum f710!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.0.157.40.12634 > 192.168.0.223.48011: SRP [bad hdr length] (DF) (ttl 118, id 51157, len 52, bad cksum 606!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 213.164.67.210.15620 > 192.168.0.223.30118: SFE 1813471689:1813471813(124) win 38522 urg 29523 (DF) [tos 0x10] (ttl 46, id 13841, len 164, bad cksum 3bfd!) 0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.15620 > 192.168.0.223.30118: SFE [bad tcp cksum 8162!] 1813471689:1813471701(12) win 38522 urg 29523 (DF) (ttl 57, id 12029, len 52, bad cksum f6fc!) ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
bugzilla-daemon@netfilter.org
2003-Jun-04 03:11 UTC
[Bug 47] conntrack breaks nfs, corrupted packets
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47 ------- Additional Comments From brad@brad-x.com 2003-06-04 05:11 ------- Same issue here, using 2.4.20. I assume given bug #48, the problem is more widespread than just NFS? Are there any patches ready for testing which fix the issues? ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
bugzilla-daemon@netfilter.org
2003-Jun-04 14:33 UTC
[Bug 47] conntrack breaks nfs, corrupted packets
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47 ------- Additional Comments From brad@brad-x.com 2003-06-04 16:33 ------- Patrick: Which kernel driver are you using for your RealTek cards? That might play a role in this. I'm using 8139too. ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
bugzilla-daemon@netfilter.org
2003-Jun-04 20:34 UTC
[Bug 47] conntrack breaks nfs, corrupted packets
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47 ------- Additional Comments From kaber@trash.net 2003-06-04 22:34 ------- also 8139too ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
bugzilla-daemon@netfilter.org
2003-Jun-04 21:34 UTC
[Bug 47] conntrack breaks nfs, corrupted packets
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47 ------- Additional Comments From kaber@trash.net 2003-06-04 23:34 ------- I talked to Daniel Glanzmann, he is also using 8139too. ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.