Bug#305537: kernel-source-2.6.11: Reset to TCP connections
Package: kernel-source-2.6.11
Version: 2.6.11-3
Severity: normal
Hello.
I see that in last 2.6 kernels TCP connections are sometimes resetted:
it seems that in some situation (not yet known to me) a correct TCP
packet goes into "invalid state" and kernel sends back a tcp-reset and
closes connection.
It is very difficult to reproduce the situation, however now I find a
situation that happens regularly to me: on a kernel 2.6 that SNATs a
Windows XP machine that is ftp-ing (non-passive mode) to a Microsoft FTP
Server 3.0.
I log every packet and I see that in a random moment during file
transfer (of a 15 MB file) a packet passes in INPUT table insted (like
all others) FORWARD table.
The packet in INPUT table is classified as INVALID (I mean that it
matches a rule "-m state --state INVALID")... if I ignore those packets
("-m stat --state INVALID -j DROP") than that kind of trouble doesn't
happens.
Can it be a problem related to conntrack modules? A similar problem
seems to happens also in non-NATted connections.
Anything I can do to have a more debug of this situation?
Thank you, Leonardo Macchia.
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.11-gc
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages kernel-source-2.6.11 depends on:
ii binutils 2.15-5 The GNU assembler, linker and bina
ii bzip2 1.0.2-5 high-quality block-sorting file co
ii coreutils [fileutils] 5.2.1-2 The GNU core utilities
ii fileutils 5.2.1-2 The GNU file management utilities
-- no debconf information
Reply to: