Hello, I have a xen server (xen-3.0-x86_32p hvm-3.0-x86_32 hvm-3.0-x86_32p / kernel 2.6.24-28-xen). I have some domUs, one of them is a fli4l router, the others are eisfair domUs (fileserver, webserver and mailserver). All of the domUs are connected via vif network interface with a bridge in dom0. There is a problem invoking following command in every domU: openssl s_client -connect pop.googlemail.com:995 -showcerts After some minutes the command stops with an ssl handshake error. In a tcpdump I can see, that after SSLv2 Client Hello only TCP retransmissions are sent by the domU. There is no answer from the server. The TCP handshake with the server is ok, the TCP finish too. If I call the same command in dom0, everything works, after SSLv2 Client Hello the server answers with SSLv2 Server Hello and so on. Finally the requested certificate is shown. I think there is no problem with the fli4l router because dom0 has unlimited access. The problem could be the vif network interfaces in my opinion. All of the domUs have access to the internet via port 80, e.g. get a file using wget. Can you tell me, what the problem is? Regards Christian _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Hello, I have a xen server (xen-3.0-x86_32p hvm-3.0-x86_32 hvm-3.0-x86_32p / kernel 2.6.24-28-xen). I have some domUs, one of them is a fli4l router, the others are eisfair domUs (fileserver, webserver and mailserver). All of the domUs are connected via vif network interface with a bridge in dom0. There is a problem invoking following command in every domU: openssl s_client -connect pop.googlemail.com:995 -showcerts After some minutes the command stops with an ssl handshake error. In a tcpdump I can see, that after SSLv2 Client Hello only TCP retransmissions are sent by the domU. There is no answer from the server. The TCP handshake with the server is ok, the TCP finish too. If I call the same command in dom0, everything works, after SSLv2 Client Hello the server answers with SSLv2 Server Hello and so on. Finally the requested certificate is shown. I think there is no problem with the fli4l router because dom0 has unlimited access. The problem could be the vif network interfaces in my opinion. All of the domUs have access to the internet via port 80, e.g. get a file using wget. Can you tell me, what the problem is? Regards Christian _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Hello, I have a xen server (xen-3.0-x86_32p hvm-3.0-x86_32 hvm-3.0-x86_32p / kernel 2.6.24-28-xen). I have some domUs, one of them is a fli4l router, the others are eisfair domUs (fileserver, webserver and mailserver). All of the domUs are connected via vif network interface with a bridge in dom0. There is a problem invoking following command in every domU: openssl s_client -connect pop.googlemail.com:995 -showcerts After some minutes the command stops with an ssl handshake error. In a tcpdump I can see, that after SSLv2 Client Hello only TCP retransmissions are sent by the domU. There is no answer from the server. The TCP handshake with the server is ok, the TCP finish too. If I call the same command in dom0, everything works, after SSLv2 Client Hello the server answers with SSLv2 Server Hello and so on. Finally the requested certificate is shown. I think there is no problem with the fli4l router because dom0 has unlimited access. The problem could be the vif network interfaces in my opinion. All of the domUs have access to the internet via port 80, e.g. get a file using wget. Can you tell me, what the problem is? Regards Christian _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users