[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Linux-PC blocked/filtered in the network.

Petter Reinholdtsen skrev:

[Ole-Anders Andreassen]

One of the "really nice features" is that I can use WinXP from
virtualbox on my linux laptop, and with the virtual WinXP I do not
have problems accessing the Internet. Jan Roar has testet this from
another school, and the same happens there...


This seem to indicate that the problem is with the interaction between
the TCP stack on Linux and the firewall in question.

I tried to google for anything related, assuming the firewall is
firewall-1, but found nothing that seemed relevant.

Given that this problem do not seem to affect all Firewall-1 owners, I
suspect the problem must be in the configuration at your site.

I remember a similar problem affecting a school once, where the
transparent HTTP proxy were unable to handle unix line endings in HTTP
headers, and simply refused to let such normal Linux requests true.
Could it be similar?



This bug has been fixed in FW1 I think.



Does the problem only affect port 80, or is it any port?  Do you see
the same problem with 'tcptraceroute www.skolelinux.org ssh', for
example?



HTTP and FTP is blocked. HTTPS works, SSH works...


tjener:~# tcptraceroute www.skolelinux.org ssh
Selected device eth0, address 10.0.2.2, port 59463 for outgoing packets
Tracing the path to www.skolelinux.org (158.36.191.137) on TCP port 22 (ssh), 30 hops max
 1  10.0.2.1  0.557 ms  0.462 ms  0.450 ms
 2  10.63.152.1  1.181 ms  0.922 ms  0.896 ms
 3  10.202.63.1  5.764 ms  5.917 ms  5.803 ms
 4  10.200.193.17  3.673 ms  3.776 ms  5.957 ms
 5  85.221.22.129  4.070 ms  15.449 ms  8.336 ms
 6  85.221.22.1  5.936 ms  12.141 ms  10.848 ms
 7  195.204.200.102  5.765 ms  9.846 ms  5.973 ms
 8  195.204.200.101  5.570 ms  14.812 ms  8.235 ms
 9  195.204.183.16  24.311 ms  22.571 ms  17.326 ms
10  c10G-xe-4-3-0.br1.xa19.no.catchbone.net (193.75.9.21)  17.528 ms  15.719 ms  20.171 ms
11  te6-1-0.cr2.xa19.no.catchbone.net (193.75.1.49)  16.395 ms  16.949 ms  19.035 ms
12  te5-1-0.cr2.osls.no.catchbone.net (193.75.1.201)  18.246 ms  16.020 ms  17.180 ms
13  te4-1-0.br1.osls.no.catchbone.net (193.75.3.170)  15.788 ms  18.790 ms  15.875 ms
14  stolav-gw1.uninett.no (193.156.120.1)  18.410 ms  16.815 ms  23.202 ms
15  oslo-gw.uninett.no (128.39.255.85)  21.926 ms  39.066 ms  38.094 ms
16  uio-gw8.uio.no (128.39.65.18)  37.773 ms  25.601 ms  20.775 ms
17  mrom-gw2.uio.no (129.240.25.18)  25.925 ms  16.728 ms  17.318 ms
18  maintainer.skolelinux.no (158.36.191.137) [open]  19.139 ms  22.817 ms  25.255 ms


tjener:~# tcptraceroute www.skolelinux.org
Selected device eth0, address 10.0.2.2, port 39021 for outgoing packets
Tracing the path to www.skolelinux.org (158.36.191.137) on TCP port 80 (www), 30 hops max
 1  10.0.2.1  0.600 ms  0.584 ms  0.463 ms
 2  10.63.152.1  1.815 ms  1.180 ms  2.829 ms
 3  10.202.63.1  6.108 ms  9.127 ms  4.525 ms
 4  10.200.193.17  5.414 ms  5.449 ms  5.234 ms
 5  85.221.22.129  5.115 ms  5.433 ms  6.469 ms
 6  maintainer.skolelinux.no (158.36.191.137) [open]  6.783 ms  7.073 ms  5.773 ms
tjener:~#



OleA
Reply to: