similar to: Problem with packet mangling over 2 links

Thanks for the tips, Tom. Here is the tcpdump -n output on the dmz computer - this gets repeated several times as the remote computer attempts to connect: 18:11:54.264580 66.113.134.243.55080 > 192.168.2.1.8082: S 3210481212:3210481212(0) win 5840 <mss 1460,sackOK,timestamp 65650966 0,nop,wscale 0> (DF) 18:11:54.264696 192.168.2.1.8082 > 66.113.134.243.55080: S

Hi Ravi, back to our client-cannot-reconnect-to-gluster-brick problem ... > Von: Ravishankar N [ravishankar at redhat.com] > Gesendet: Montag, 29. Mai 2017 06:34 > An: Markus Stockhausen; gluster-users at gluster.org > Betreff: Re: [Gluster-users] gluster heal entry reappears > > > On 05/28/2017 10:31 PM, Markus Stockhausen wrote: > > Hi, > > > > I'm

Thomas B. R?cker (il 30/07/2014 23:26) ha scritto: You could run "tcpdump -ni eth0 port 8000" and try to access the > icecast web interface. If you don't see any output, then traffic to port > 8000 is blocked externally. good point of view. Ok, let's try: root at mail2:/home/spaziouser# tcpdump -ni eth0 port 8000 tcpdump: verbose output suppressed, use -v or -vv

We are using Centos behind an F5 Bigip load balancer. The linux box is using bonding and tagged VLAN's Everything works fine except that when traffic is forwarded from the BigIP to the linux box on the VLAN where the web server is running the linux box returns the traffic on the wrong VLAN, It returns traffic on the lowest ordered VLAN. ie. here is a tcpdump on my load balancer showing

https://bugzilla.netfilter.org/show_bug.cgi?id=1097 Bug ID: 1097 Summary: TARPIT function does not work in ip6tables Product: netfilter/iptables Version: unspecified Hardware: x86_64 OS: Ubuntu Status: NEW Severity: normal Priority: P5 Component: ip6_tables (kernel) Assignee:

Last week, I started seeing very strange behavior in one of the networks that I manage. The office LAN uses a Linux firewall which masquerades their workstations over their DSL connection. There are probably ~75 workstations in the office LAN. Their mail server is in a collocated facility nearby. That server has an RFC1918 address; its router does SNAT to forward packets to the system. Both

Hello, I have an issue with multiple connections to the Internet. I tried following the steps described in [1] but things are not working properly. I would like the network setup as follows: ______ | |- ppp0 -- Dynamic IP (PPPoE on eth2) Internal---- eth0 | GW | |____|- eth1 -- Static IP -> Static''s GW From [1], the

On 27.06.2018 14:12, Rowland Penny via samba wrote: > Can I also point that if you can only connect by IP, then you probably > have a DNS issue. > > Rowland > I dont think so. root at kes-srv-007:/var/log/samba# getent hosts kes-srv-007.kes 192.168.30.19 kes-srv-007.kes root at kes-srv-007:/var/log/samba# smbclient -U 'KES\user' \\\\kes-srv-007.kes\\websrv Enter

Hello, I am running Shorewall 2.0.2f, on SuSE 9.2 distro, kernel 2.6.8-24.11-default My ip addr show output is as follows: 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0:

http://bugzilla.netfilter.org/show_bug.cgi?id=704 CZ <huangj at qualcomm.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | --- Comment #4 from CZ <huangj at qualcomm.com>

We have a Zenoss server in our main office monitoring (among many other things) an Apache server in a remote network, with a Tinc link between the two networks. The monitoring simply involves making an HTTP request to a URL once every 5 minutes and confirming that a response page comes back. Most of the requests to this particular web server succeed (and similar requests to other web servers

Hello, Stephen, thank you for input. Yes, these servers have the same firewall rules, and both of them have the same problem from time to time, most of time they are good. Actually, these servers are newly installed to be used as the Glusterfs storage server, so not much data flowing at this time. >From the sysctl output, I suppose it can't be a conntrack table overflow :

I have a gentoo 2.6.14 box with 4 nics, LAN/DMZ/PUB1/PUB2 LAN and DMZ have a 1918 /22 each, PUB1 and PUB2 have a /29 each of which 5 ips are assigned. Using the mangle table, I give all packets a mark (according to local policies) in the range 1-10. Using ip rule, i pass marks 1-5 through the pub1 route table, and marks 6-10 through the pub2 routing table. Using the nat table, I SNAT to one

Hi all, I'm pulling my hair out on this problem and wanted to throw it out there to see if anyone else had run across it. I recently restarted my server. There were some network config issues that caused the interfaces not to come back up, but my colo company got those resolved. However, after restart, my IMAPS server has stopped responding to outside requests. I can successfully access

Hello All. I have a strange problem on my router. I use a xl2tpd program to establish a connection to the INTERNET. After I start xl2tpd it's create a new ppp0 device with correct ip parameters, also it's add some routes to the routing table and all this routes are correct too. After connection with provider are establish the router exec some simple iptables+NAT commands to give an

Hi, I''m testing out Xen on FC4. I''m using bridging for networking, as well as iptables to firewall, configured with the standard Fedora ''system-config-security-level'' tool. However I have really strange problem with conntrack not seeming to catch outbound connections. This prevents outbound connections working from dom0. Connections from domU''s

I'm trying to get dovecot working with various clients on my new mailserver. I installed the base rc2 that comes with OpenBSD 4.0, then upgraded to rc14 when I ran into problems with TLS and Thunderbird. The server has no problems with Mail.app on my laptop, but any connection attempts from Thunderbird timeout after the TCP handshake. 13:53:41.074438 66.x.x.2.50483 >

Hi list, We have a network with some XP and some Windows 7 computer, we use samba 3.6.6 on debian 6.0.6 from debian-backports. It's a pdc with passdb backend = ldapsam. In our logs there are lots of: ARCServer slapd[1263]: SASL [conn=46778] Failure: realm changed: authentication aborted I found out that at that time this emerges the tcpdump says: 12:59:54.656399 IP client.49551 >

On Wed, 24 Apr 2019 at 06:01, likun <kun.li at ucarinc.com> wrote: > Hi?guys. > > There is a wierd problem with iptables recently, hopes somebody can help > me. > > I have installed Centos 7.2.1511 on a bare metal Dell server these days, > disabled firewalld and enabled iptables.services, and setup a group of very > simple rules, as the following: > > I believe

On a rather full customer web server, I am trying to track down whose web site script is trying to make outbound network connections when they should not be. In /etc/security/audit_control, I added to the flags line dir:/var/audit flags:lo,aa,-nt minfree:5 to log failed network connection. When I try an make an outbound connection to something that is blocked in pf, it seems to sometimes work.