Networking :: Packets Go Out One Tunnel / Come Back Another / Then Are Dropped

Dec 5, 2010

I've run into a of a routing issue pertaining to packets leaving a firewall, traversing and IPSec tunnel, hitting the target and then returning via a different tunnel, finally arriving back on the source firewall but on a different interface from where it started. Once the packet has returned to the firewall it is dropped I've been unable to discover the reason for the drop. Two sides to the system, Firewall A and Firewall B. Each firewall provides the default gateway to its respective side and offers a backup IPSec tunnel to the high capacity tunnel handled internally. The Layer 3 Switch uses OSPF and takes care of the bulk of the behind the scenes routing between the sides. In case of failure the Layer 3 switches direct traffic to use the Firewall tunnels to route traffic.

View 2 Replies


ADVERTISEMENT

Networking :: Dropped Packets But Only For TCP Connections?

Oct 1, 2010

One of our RHEL 5.3 servers has trouble about 30% of the time with TCP-based communications, but it does not seem to be firewall issues. From another computer on the same switch, you can SSH to the server sometimes and other times the SSH command will just hang. When it hangs, you can often just Ctrl+C and try it again and it works. Same with HTTP connections. You'll get part of a web page and then FireFox will just hang waiting for the rest and eventually time out. Same goes for communication initiated FROM the server. SSH'ing from the server to any outside server or connecting to any web site works sometimes, but most times not. iptables if off. No other firewalls are running. Tcpdump shows communication gets so far and then stops. It does not matter whether tou run tcpdump on that server or the client connecting to it. Either way you see the connection stops working. MEANWHILE, pinging with small or large packets works flawlessly. 10,000 packets, zero drops.

View 5 Replies View Related

Networking :: Dropped Packets On Firewall

Jan 11, 2010

I've recently installed Ubunter 9.10 Server Edition to use as a NAT firewall for the lab I run. I'm using iptables to do NAT forwarding and everything works great except that, occasionally, connections seem to break. Ssh connections close with "Connection reset by peer" and HTTP connections just stall out.I believe this has to do with the firewall's internal network interface occasionally dropping packets.

View 2 Replies View Related

Networking :: Netstat - Dropped Packets Under IP

Feb 13, 2009

I have question regarding netstat? When performing a "netstat -s" I receive the following information regarding dropped packets under IP:

IP:
93978695 total packets received
0 forwarded
0 incoming packets discarded
79472157 incoming packets delivered
65235033 requests sent out
29527 outgoing packets dropped

However if I run a "netstat -i" I have no dropped packets whatsoever: (apologies for the table format):
Kernel Interface table
Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Flg
bond0 1500 0 34326528 0 0 0 72755307 0 0 0 BMmRU
bond0:1 1500 0 - no statistics available - BMmRU
bond1 1500 0 28605491 0 0 0 20948952 0 0 0 BMmRU
eth0 1500 0 34199550 0 0 0 72755278 0 0 0 BMsRU
eth1 1500 0 126978 0 0 0 29 0 0 0 BMsRU
eth2 1500 0 97911 0 0 0 1 0 0 0 BMsRU
eth3 1500 0 28507580 0 0 0 20948951 0 0 0 BMsRU
lo 16436 0 34094225 0 0 0 34094225 0 0 0 LRU

View 5 Replies View Related

Ubuntu Networking :: Packets DROPPED By Firewall?

Mar 13, 2010

I am using ubuntu 9.10. Configuring my firewall using guarddog. I have setup a rule to allow traffic OUT on port 7078 UDP, and just because i'm having problems i added an IN rule.

# Create the filter chains
# Create chain to filter traffic going from 'Internet' to 'Local'
ipchains -N f0to1

[code]....

View 2 Replies View Related

Networking :: TCP Packets Seem To Be Dropped On Debian Squeeze W/NAT?

Apr 4, 2011

I'm running a Debian Squeeze 6.0.1a box that's connected to my ISP via an L2TP connection that's managed by OpenL2TPD. The box is configured to perform NAT from local clients (on eth0) to the internet (on ppp0).

However, I'm having an issue with TCP packets that are sent from the box itself to the internet (packets originally coming from the local clients get sent and received over the internet just fine)

I'm using this Python app to test this:

Code:
#!/usr/bin/env python
import socket, time
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.bind(('', 5003))
s.listen(1)
while 1:
conn, addr = s.accept()

[Code]...

View 3 Replies View Related

Fedora Networking :: Can Ping But Cannot Browse - Outgoing Packets Dropped

Oct 5, 2010

In my Fedora13 machine, while in mobile broadband, i can ping and skype outside, but cannot browse/yum etc. Few output that may be of relevence are here:

$ netstat -s
IP:
149468 total packets received
6 with invalid headers
16174 with invalid addresses
0 forwarded
0 incoming packets discarded
118821 incoming packets delivered
101331 requests sent out
124 outgoing packets dropped
866 dropped because of missing route .....

View 3 Replies View Related

Ubuntu Networking :: Ifconfig Showing Millions Of Dropped Packets?

Feb 28, 2010

with my other ethernet card problem solved, I suddenly run into this:

Code:
eth1
Link encap:Ethernet HWaddr 00:02:e3:16:37:4c
inet addr:10.0.2.1 Bcast:10.0.2.255 Mask:255.255.255.0
inet6 addr: fe80::202:e3ff:fe16:374c/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

[Code]...

This card was working perfectly fine up until....an hour ago and it started doing this. My iptables isn't blocking it somehow, because I didn't change anything. I tried reverting to an older kernel and that didn't help. It's not the network cable, it works fine in any other card. Also, the dropped packets seem to count down? It seems to go down by exactly one every time I run ifconfig, no matter the length of time in between running it.

View 3 Replies View Related

Networking :: See The Number Of Packets Dropped By Kernel Due To Insufficient Queue Size?

Sep 15, 2010

As is known, there is a queue lies between the kernel subsystem and the network driver for incoming data. And if data come when this queue has no space for it, the data got dropped by kernel. Is there some way to see how many packets are dropped due to this buff penury? I tried netstat -s but could not find something useful. On the other hand, I found this 12176 packets collapsed in receive queue due to low socket buffer from netstat -s. I think this is something related to the per-socket buffer, but not the incoming queue between the network driver and kernel. Is this right?

View 1 Replies View Related

Security :: Logging DROPPED And INVALID Packets

Oct 18, 2010

I am trying to figure out what command to use to show the number of DROPPED and INVALID packets that the firewall is handling.I'm going to put these commands into a log analyzer script which will run every 15 minutes with cron. The firewall is running and operating the way I want it to. I'm running CentOS 5.4.

View 2 Replies View Related

General :: Netem For Mac OS X To Emulate Network Latency And Dropped Packets?

Aug 9, 2010

I'm looking for an open source/free network emulator tool that I could use on Mac OS X, to simulate a slow network connection, limited bandwidth and other network characteristics such as dropped packets etc for both UDP/TCP connections (or even on the physical layer).

I'm looking for the simplest solution that would allow me to run TCP/UDP servers and have a few clients connect to them on localhost emulating various network connections. I'm mainly wondering if I can use something like Linux's netem on Mac OS X (or even better cross-platform Windows/Linux/Mac). Perhaps I can run VirtualBox and a Linux kernel running netem, has anyone had luck with that?[URL]...

View 2 Replies View Related

General :: Unexplained Log Cruft And Possible Dropped Packets On WPA2-Personal LAN

Sep 12, 2010

I've been receiving a LOT of log cruft ever since I installed my WUSB100V2 (using the rt2870sta community driver from the Linux kernel) and was wondering what it all meant.

Many times when these messages occur it is accompanied by slow network speeds and many DNS queries and outgoing SYNs being dropped. I have searched for documentation for these (error?) messages and have come up empty as far as what they mean or how I can stop them from occurring.

I reside on the opposite side of the building from my WAP. I have taken steps to improve the signal strength, but the signal quality hovers between 50% and 70%, sometimes dropping to 40% for unknown reasons.

My /var/log/messages:

Sep 12 05:04:40 necronomicon -- MARK --
Sep 12 05:29:48 necronomicon kernel: 0:3 LTL=0 , TL=0 L:4284
Sep 12 05:29:53 necronomicon kernel: 0:3 LTL=0 , TL=0 L:4104
Sep 12 05:30:06 necronomicon kernel: 0:3 LTL=0 , TL=0 L:4156

[code]....

View 1 Replies View Related

Fedora Security :: Logging Dropped Packets With System-config-firewall?

Sep 1, 2009

I switched over to Fedora a couple of days ago. I'm using the built-in firewall shipped with it but I can't find out how to enable logging of dropped packets. Among others I'd like to use psad that needs firewall logging. Is there an easy way to do this? I'm not an iptables "expert".

View 6 Replies View Related

Fedora Hardware :: Realtek RTL8111E - Dropped Packets In Windows7 / F15 Dual-boot?

Jul 6, 2011

my NIC drives me crazy and I need some help to gather all relevant informations to file a decent bug report. Maybe someone could guide me through this process.My mainboard is an AsRock Z68 Pro3

[URL]

I use a dual-boot setup with Windows7 installed in parallel to Fedora 15-x64. Whenever I had Windows in use and jjust reboot the system into Fedora, the NIC does not work as expected. Instead it goes in an endless "em1: link up" loop which results in very low bandwith or even complete network timeouts. This happens in Firefox as well as with yum or ping.

Quote:

Originally Posted by dmesg
[ 58.763294] r8169 0000:05:00.0: em1: link up
[ 59.686773] r8169 0000:05:00.0: em1: link up
[ 61.936454] r8169 0000:05:00.0: em1: link up

[code]....

If I directly cold boot into Fedora (after the power cord has been removed and the system got completely re-initialized) there are no problems at alll and I get a fast and stable network conection. This also happens with other linux distributions, for example SysRescCD.

View 1 Replies View Related

Networking :: Firewall - Allow Packets Coming From Internet After Authenticating And To By Pass Packets Generated From Internal LAN?

Feb 8, 2010

i have a linux server runnig oracle applications. i need to access this server from putty using ssh through internet. i did by registering my static ip with the dnydns.org and i am able to connect to the server. but now there is no security to authenticate any user as any one knowing the password can login to it.

i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously. so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?

View 8 Replies View Related

Programming :: Write A Program In C That Can Sniff Packets From Ethernet And Distinguish RTP Packets From Non-RTP Packets?

Aug 30, 2010

i need to write a program in c that can sniff packets from Ethernet and distinguish RTP packets from Non-RTP packets, i have no idea what should i do

View 9 Replies View Related

SUSE :: Sniffing With TCPDUMP Or Tshark - Get No Packets Back When Specify A Host To Watch

Nov 23, 2010

If I am sniffing with TCPDUMP or tshark, I have an issue. If I specify a host to watch, I get no packets back, but if I don't specify a host, I get all traffic, including the host traffic I was filtering for the first time. ?? IE: If I: tcpdump -vnnXs 1514 -i bond0 I see all traffic and traffic to x.x.x.x But if I: tcpdump -vnnXs 1514 -i bond0 host x.x.x.x I see no traffic.

View 1 Replies View Related

Networking :: Kernel - Forward Packets From Eth0 To Eth1 And Eth1-to Eth0 As Well As Get A Copy Of These Packets For Analysis

Sep 27, 2010

I have a hardware device with two ethernet ports, eth0 and eth1 running Centos 5. Basically my goal is to forward packets from eth0->eth1 and eth1->eth0 as well as get a copy of these packets for analysis. If I set IP routing to do the forwarding then I won't get a copy of the packets for analysis.

View 3 Replies View Related

Ubuntu Networking :: Wireless Keeps Getting Dropped

Oct 1, 2010

My wireless connection keeps getting dropped very frequently. I am on a Dell XPS m1530 and I will just be on the interent and it just disconnects from wireless and I have to connect back. It is super annoying. I am on the latest version of ubuntu.

View 4 Replies View Related

Ubuntu Networking :: Keep Getting Dropped From Network

Oct 11, 2010

my laptop running 10.10 and a dell. the college is witch i attend's unsecured wireless network keep disconnecting me from every on average 45 minutes to an hour ands will not re connect for about 10-15 minutes. it works fine anywhere else i go but here i get dropped.

View 1 Replies View Related

Ubuntu Networking :: Wireless Dropped Every 3-4 Minutes

Jul 11, 2010

I've been using my current laptop since Ubuntu Edgy Eft and, since then, I never had any problem with wireless ( Network controller: Intel Corporation PRO/Wireless 3945ABG [Golan] Network Connection (rev 02) ) Since I upgraded to Lucid, my connection is dropped approximately every 3-4 minutes for 10s. Network-manager doesn't show anything but it is well visible with the netspeed applet that shows a warning sign "No connection" instead of the speed.This is very annoying and frustrating. I recall having seen the same issue in an blog article where the author was talking about his upgrade to lucid. It was just one line and I didn't care a lot at the time and cannot find the article back.

Is there anyone having heard about a possible issue ? (I've upgraded from Karmic when Lucid was still in Beta, so it might be the cause).

View 1 Replies View Related

Ubuntu Networking :: Wireless N Dropped Connections

Jul 4, 2011

I'm working right now with ubuntu 11.04 on my asus ul30vt-x1, my wireless n network is working on a linksys e3000 router, my issue is basically with long file transfers. When the issue started i was reaching speeds of 100 Mbps through my wireless network even when I'm connected at 150 Mbps. However when at this speed, I don't know why, the connection is dropped after some minutes or even seconds. I made some testing on windows, I'm reaching 70 Mbps there and no problem at all with dropping the connection.

So my conclusion is that for some reason the linux driver, in my case, is not able to handle such speed of 100 Mbps. I know that a wireless network will have a throughput of aprox 60% the wireless speed. Right now im trying to apply traffic shapping to my transfers so i can get 70 to 80 Mbps, its being working so far.

View 1 Replies View Related

Networking :: Connections In Virtual Machine Getting Dropped?

Mar 17, 2011

I've forwarded incoming connections on port 25 to my virtual machine with the following commands:

sudo iptables -t nat -A PREROUTING -p tcp -i eth0 -d 10.1.1.3 --dport 25 -j DNAT --to 192.168.56.101:25

sudo iptables -A FORWARD -p tcp -i eth0 -d 192.168.56.101 --dport 25 -j ACCEPT

The strange thing is the connections coming through in the virtual machine seem to be getting dropped. A port scan from the internet says the port is closed, but it is not the case as I can see the connection coming through. As you've probably worked out, I am running a mail server. When I send myself test mail, the connections from the senders mail server also gets dropped.

View 1 Replies View Related

Fedora Networking :: Ssh Session To A Particular Server Keeps Getting Randomly Dropped

Jan 23, 2010

When I am running linux on my laptop, my ssh session to a particular server keeps getting randomly dropped. What should I do to troubleshoot the problem?

View 4 Replies View Related

Networking :: Capture A Dropped Or Rejected Firewall Packet?

Jul 3, 2011

I'm running ubuntu 11.04, and using firestarter for my firewall. Logging events, all good, but I'd like to be able to (tcp)dump the packets being dropped/rejected. Wireshark is great after the event, but can I hook iptables and tcpdump together somehow so the system logs the entire packet rather than the summary when it says "no"? I've had a quick look/google, but can't find anything. I'm sure somebody must have wanted to do this before - any pointers people?

PS - will keep looking and post the answer if I find one....

View 5 Replies View Related

Ubuntu Networking :: DHCP Clients Table In Router Is Dropped

May 23, 2011

when I change the hostname on my Ubuntu server, the DHCP clients table in my router is dropped.I'm running 32-bit Ubuntu Server 10.10. My router is a Linksys WRT54GL with firmware version 4.30.15. I'm changing the hostname by modifying /etc/hosts and /etc/hostname. I've also tried changing the hostname using the Linux hostname command in a terminal, but this does not seem to behave correctly according to the manpages (it does not actually change the hostname, or update either of the aforementioned files).

I've also tried using a different router - a Linksys BEFSR41 - but the DHCP table is still dropped when I change the hostname on my server (although this router is not all that different from my other one).

View 3 Replies View Related

Networking :: Wireless Is Flakey -- Dropped Connections, Poor Speed?

Jun 15, 2010

My wireless is flakey -- dropped connections, poor speed, etc. As diagnosis, I loaded the 'wavemon' utility so that I might watch the radio and signal and noise.Things will be good, then fall off, then get better, then go away entirely. Repeat continuously and randomly. For these experiments, my laptops -- more than one -- are on a table.The table is roughly 15-20 ft laterally from the access point. The access point is also 8 ft above the floor vs. 3 ft table height.(grin) While the signal "wobbles" everything else is mechanically stable and otherwise not moving.

View 11 Replies View Related

Ubuntu Networking :: Connecting To Router - Netgear DG834 - Connection Often Being Dropped

Jul 12, 2010

I have a Netgear DG834 ADSL router (v3) which I have used for a couple of years. Prior to that I had a v2 of the same router, but upgraded for the one that supports ADSL 2+ (here in the UK).

Recently I have been having problems with the connection often being dropped, and when I access 192.168.0.1 for the router admin page, when it is not working I get no IP address listed for that of the ISP's server, and sometimes as well the upstream and downstream speeds are listed as 0 kbps.

Usually this was resolved by rebooting the router.

However, for the last couple of days, when using Ubuntu 9.04, the page of the router at 192.168.0.1 will not load. I have tried numerous different browsers, and none of them will give the router admin page.

When I tried booting from a live CD of Fedora 13, the router admin page came up just fine, no problems (although still not getting a proper connection to the Internet).

I was going to try to use the older router I had, but so far, as I cannot access the router admin page in Ubuntu, I have not done so (not had the time, and now I am at work posting this).

So there must be a problem in Ubuntu that is preventing it showing the router's admin page. The Network connection details show that the router has given the PC an IP address of 192.168.0.6 and the DNS servers are listed, so I know that Ubuntu is talking to the router, but it is not allowing me to access its settings in any way.

View 1 Replies View Related

Ubuntu Networking :: Mobile Broadband Connects / But Won't Reconnect After Dropped Signal

Nov 8, 2010

I'm running a ZTE MF112 HSUPA USB stick (3 broadband dongle) for wireless broadband using network-manager.I can connect fine to mobile broadband, but every now and then, the signal drops and the connection is disconnected. When I try to reconnect it goes straight to network disconnected. It looks like it's not even trying to connect.Then when I right click on network manager, disable mobile broadband, then enable it again, works fine until the next disconnect.The point is, why do I have to keep disabling / enabling it? Pulling the dongle out works too. But there should be a workaround.

View 3 Replies View Related

Networking :: Can't Establish Tunnel For VPN Over SSH?

Jul 20, 2010

I'm trying to create a VPN through SSH but encounter the following:

Code:
[18:42:11]root@bronzhip:/home/casey# sudo ssh -w 0:0 97.**.***.221 -i VPN
channel 0: open failed: administratively prohibited: open failed

[code]....

View 6 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved