Displaying 20 results from an estimated 300 matches similar to: "ssh ethernet tunnel jumbo frame udp is not work"
2009 Dec 30
4
[Bug 627] New: NATed TCP-connections fail arbitrarily
http://bugzilla.netfilter.org/show_bug.cgi?id=627
Summary: NATed TCP-connections fail arbitrarily
Product: netfilter/iptables
Version: linux-2.6.x
Platform: All
OS/Version: All
Status: NEW
Severity: blocker
Priority: P1
Component: ip_conntrack
AssignedTo: laforge at netfilter.org
2013 Feb 21
1
Problem with managesieve proxy
Hi folks,
I'm setting up a new dovecot email service and have a proxy server running in
front of it to facilitate migrating users from my very old UW-IMAP-based mail
server to the new one.
I have a mysql proxy table that directs inbound IMAP and LMTP connections to
the correct server, works great. Managesieve connections are not working
through the proxy using either with the sieverules
2012 Sep 26
7
Routing issue
Hello,
This is on Centos 6 and not something I think is wrong with Centos 6
but I am looking to see if anybody else has experienced this and
if there is solution. So thanks up front for indulging me.
Because Linux makes routing decisions before SNAT it is causing
problems when trying to use FTP with two upstream providers in
a load balanced setup.
Other than ftp, things seem to work OK. Below
2017 Jun 17
1
client reconnect fails (was gluster heal entry reappears)
Hi Ravi,
back to our client-cannot-reconnect-to-gluster-brick problem ...
> Von: Ravishankar N [ravishankar at redhat.com]
> Gesendet: Montag, 29. Mai 2017 06:34
> An: Markus Stockhausen; gluster-users at gluster.org
> Betreff: Re: [Gluster-users] gluster heal entry reappears
>
> > On 05/28/2017 10:31 PM, Markus Stockhausen wrote:
> > Hi,
> >
> > I'm
2015 Jul 08
0
using http from syslinux.efi
On Tue, Jul 7, 2015 at 10:12 AM, BALATON Zoltan via Syslinux
<syslinux at zytor.com> wrote:
> Hello,
>
> I'm trying to use http from syslinux.efi but it fails while trying to
> establish the connection to a FreeBSD http server. A packet capture shows:
>
> TCP healthd > http [SYN] Seq=0 Win=65535 Len=0 MSS=1460 WS=64 TSval=1094
> TSecr=0
> TCP http > healthd
2017 Oct 15
3
can only ssh unidirectional
Dear developer,
This issue may be not related to openssh but I am not sure. So post it here for some luck.
The issue is like this:(you can see more formatted description at (https://serverfault.com/questions/878504/can-only-ssh-unidirectional)
I have two centos 7.2 server. One machine ip is
10.104.196.18, another machine is 10.240.197.21. I can successfully ssh from 10.104.196.18 to
2017 Apr 25
3
Flooding Samba DC with random requests
Hi,
yesterday we experienced a heavy request flooding from multiple servers being a domain member against our Samba Sernet DCs.
All those servers are domain members and allow login using PAM (Samba+Winbind).
Running TCPDump we had like 400 Requests per 5 seconds like this:
tcpdump -i eth0 dst port 389
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0,
2014 Apr 22
1
35 second wait when cache expired
Hello,
I've got an issue with RHEL6 running smbd & winbindd version
3.6.9-168.el6_5. This is authenticating against a Windows 2008R2 domain
using the rid backend.
If I run any command that has to look up user info I get a 35 second delay,
after this initial delay it's fine until the cache time-out, then it
happens again.
This is making logins and most commands hang for 35 seconds
2016 Nov 21
2
Winbind traffic not encrypted
A problem here getting winbind traffic to be encrypted using Kerberos.
I have set up a test environment with a pair of servers (actually lxc
containers):
- samba server (ubuntu 16.04, stock samba 4.3.11)
- client machine (ubuntu 16.04) joined with "net ads join" and winbind
The client machine has the following in /etc/samba/smb.conf:
-------
[global]
#netbios name = client-ad
2014 Jul 31
2
can't use icecast2 in ubuntu 12.04
Thomas B. R?cker (il 30/07/2014 23:26) ha scritto:
You could run "tcpdump -ni eth0 port 8000" and try to access the
> icecast web interface. If you don't see any output, then traffic to port
> 8000 is blocked externally.
good point of view.
Ok, let's try:
root at mail2:/home/spaziouser# tcpdump -ni eth0 port 8000
tcpdump: verbose output suppressed, use -v or -vv
2011 Dec 01
0
Are squeeze Xen dom0 kernels subject to this the same IPv6 GSO problem?
Hi,
I have three squeeze servers running:
ii linux-image-2.6.32-5-xen-amd64 2.6.32-38 Linux 2.6.32 for 64-bit PCs, Xen dom0 support
ii xen-hypervisor-4.0-amd64 4.0.1-4 The Xen Hypervisor on AMD64
All three servers have Intel gigabit NICs, but one server uses the
e1000e driver and the other two use the igb driver.
They've been in production for around 6 months now
2011 Dec 13
0
Are Debian squeeze dom0 kernels subject to this same IPv6 GSO problem?
Hi,
I have three Debian squeeze servers running:
ii linux-image-2.6.32-5-xen-amd64 2.6.32-38 Linux 2.6.32 for 64-bit PCs, Xen dom0 support
ii xen-hypervisor-4.0-amd64 4.0.1-4 The Xen Hypervisor on AMD64
All three servers have Intel gigabit NICs, but one server uses the
e1000e driver and the other two use the igb driver.
They''ve been in production for around 6
2016 Nov 09
0
[Bug 1097] New: TARPIT function does not work in ip6tables
https://bugzilla.netfilter.org/show_bug.cgi?id=1097
Bug ID: 1097
Summary: TARPIT function does not work in ip6tables
Product: netfilter/iptables
Version: unspecified
Hardware: x86_64
OS: Ubuntu
Status: NEW
Severity: normal
Priority: P5
Component: ip6_tables (kernel)
Assignee:
2019 Apr 24
2
答复: Iptables blocks out going connetion some times
Hello, Stephen, thank you for input.
Yes, these servers have the same firewall rules, and both of them have the same problem from time to time, most of time they are good.
Actually, these servers are newly installed to be used as the Glusterfs storage server, so not much data flowing at this time.
>From the sysctl output, I suppose it can't be a conntrack table overflow :
2016 Jan 14
5
[Patch] TCP MD5SIG for OpenSSH
The intent of this option is similar to "tls-auth" in openvpn[1]: To
refuse to talk to anyone who doesn't know the shared secret.
You could compare this to port knocking, in that it solves a similar
problem.
This also prevents RST attacks from killing an existing connection,
even when attacker can sniff sequence numbers.
This feature doesn't work through NAT, since the source
2016 May 13
4
Bridge not forwarding multicast traffic to the tap interface
I have a Debian 8 64-bit machine set up as a server and apt-got the tinc
package. I configured tinc as a bridge and everything seems normal except
that the tunnel does not forward multicast traffic.
I used tcpdump to examine the br0, eth0 and tap interfaces. I could see
multicast packets on both br0 and eth0, but there is no such packet present
on the tap interface. I don't quite know why
2015 Sep 10
2
tinc generating invalid packet checksums?
We have a Zenoss server in our main office monitoring (among many other
things) an Apache server in a remote network, with a Tinc link between
the two networks. The monitoring simply involves making an HTTP request
to a URL once every 5 minutes and confirming that a response page comes
back.
Most of the requests to this particular web server succeed (and similar
requests to other web servers
2016 Nov 09
0
<-FIN <-RST ->FIN,ACK <-RST on SSL connection shutdown
Hello,
a typical connection close, tcpdump'ed on the server side, looks as follows:
21:44:01.168131 IP xxx.xxx.3.101.143 > xxx.xxx.3.96.35518: Flags [FP.], seq 3982457856:3982457959, ack 1570044906, win 243, options [nop,nop,TS val 138698279 ecr 159494908], length 103
21:44:01.172405 IP xxx.xxx.3.101.143 > xxx.xxx.3.96.35518: Flags [R], seq 3982457960, win 0, length 0
21:44:01.172442
2010 Nov 08
0
Windows server not responding to Samba requests
This is a strange problem and it is almost certainly a consequence of
faulty Windows server configuration but as it is not under my
jurisdiction I need a firm starting point before asking the Windows
admin to start digging for the problem.
The situation is, as far as I know, this: Win2003 AD with a backup
domain controller, and a Win2008 R2 file server. There are a large
number of users with
2013 Jan 06
2
audit events confusion
On a rather full customer web server, I am trying to track down whose
web site script is trying to make outbound network connections when they
should not be. In /etc/security/audit_control, I added to the flags line
dir:/var/audit
flags:lo,aa,-nt
minfree:5
to log failed network connection. When I try an make an outbound
connection to something that is blocked in pf, it seems to sometimes
work.