Bug#305537: marked as done (kernel-source-2.6.11: Reset to TCP connections)
Your message dated Sun, 28 Aug 2005 11:07:03 +0200
with message-id <20050828090702.GA3728@sputnik.stro.at>
and subject line kernel-source-2.6.11: Reset to TCP connections
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 20 Apr 2005 16:11:54 +0000
>From leo@macchia.org Wed Apr 20 09:11:54 2005
Return-path: <leo@macchia.org>
Received: from napoleone.sssub.unibo.it [137.204.114.200]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DOHnu-0004P8-00; Wed, 20 Apr 2005 09:11:54 -0700
Received: from localhost (localhost.localdomain [127.0.0.1])
by napoleone.sssub.unibo.it (Postfix) with ESMTP id E98014C0A5
for <submit@bugs.debian.org>; Wed, 20 Apr 2005 18:11:48 +0200 (CEST)
Received: from napoleone.sssub.unibo.it ([127.0.0.1])
by localhost (napoleone [127.0.0.1]) (amavisd-new, port 10024)
with LMTP id 20728-01 for <submit@bugs.debian.org>;
Wed, 20 Apr 2005 18:11:48 +0200 (CEST)
Received: from giuliocesare.sssub.unibo.it (giuliocesare.sssub.unibo.it [137.204.114.222])
by napoleone.sssub.unibo.it (Postfix) with ESMTP id B1B754C0A4
for <submit@bugs.debian.org>; Wed, 20 Apr 2005 18:11:48 +0200 (CEST)
Received: by giuliocesare.sssub.unibo.it (Postfix, from userid 1001)
id 66133439B1; Wed, 20 Apr 2005 18:11:48 +0200 (CEST)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Leonardo Macchia <leo@macchia.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: kernel-source-2.6.11: Reset to TCP connections
X-Mailer: reportbug 3.8
Date: Wed, 20 Apr 2005 18:11:48 +0200
Message-Id: <20050420161148.66133439B1@giuliocesare.sssub.unibo.it>
X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at sssub.unibo.it
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Package: kernel-source-2.6.11
Version: 2.6.11-3
Severity: normal
Hello.
I see that in last 2.6 kernels TCP connections are sometimes resetted:
it seems that in some situation (not yet known to me) a correct TCP
packet goes into "invalid state" and kernel sends back a tcp-reset and
closes connection.
It is very difficult to reproduce the situation, however now I find a
situation that happens regularly to me: on a kernel 2.6 that SNATs a
Windows XP machine that is ftp-ing (non-passive mode) to a Microsoft FTP
Server 3.0.
I log every packet and I see that in a random moment during file
transfer (of a 15 MB file) a packet passes in INPUT table insted (like
all others) FORWARD table.
The packet in INPUT table is classified as INVALID (I mean that it
matches a rule "-m state --state INVALID")... if I ignore those packets
("-m stat --state INVALID -j DROP") than that kind of trouble doesn't
happens.
Can it be a problem related to conntrack modules? A similar problem
seems to happens also in non-NATted connections.
Anything I can do to have a more debug of this situation?
Thank you, Leonardo Macchia.
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.11-gc
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages kernel-source-2.6.11 depends on:
ii binutils 2.15-5 The GNU assembler, linker and bina
ii bzip2 1.0.2-5 high-quality block-sorting file co
ii coreutils [fileutils] 5.2.1-2 The GNU core utilities
ii fileutils 5.2.1-2 The GNU file management utilities
-- no debconf information
---------------------------------------
Received: (at 305537-done) by bugs.debian.org; 28 Aug 2005 09:06:46 +0000
>From max@stro.at Sun Aug 28 02:06:46 2005
Return-path: <max@stro.at>
Received: from baikonur.stro.at [213.239.196.228]
by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
id 1E9J7l-0003B8-00; Sun, 28 Aug 2005 02:06:45 -0700
Received: from sputnik (stallburg.stro.at [128.131.216.190])
by baikonur.stro.at (Postfix) with ESMTP id 5A95C5C011
for <305537-done@bugs.debian.org>; Sun, 28 Aug 2005 11:06:33 +0200 (CEST)
Received: from max by sputnik with local (Exim 4.52)
id 1E9J83-0001b5-1u
for 305537-done@bugs.debian.org; Sun, 28 Aug 2005 11:07:03 +0200
Date: Sun, 28 Aug 2005 11:07:03 +0200
From: Maximilian Attems <debian@sternwelten.at>
To: 305537-done@bugs.debian.org
Subject: Re: kernel-source-2.6.11: Reset to TCP connections
Message-ID: <20050828090702.GA3728@sputnik.stro.at>
References: <cL8rtzYFs7LM.XgDPLwZ1@mail.inwind.it> <20050827180358.GA9378@macchia.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20050827180358.GA9378@macchia.org>
User-Agent: Mutt/1.5.9i
X-Virus-Scanned: by Amavis (ClamAV) at stro.at
Delivered-To: 305537-done@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no
version=2.60-bugs.debian.org_2005_01_02
On Sat, 27 Aug 2005, Leonardo Macchia wrote:
> > can you reproduce it with linux image 2.6.12?
> > are you using iptables?
> > what's your lsmod output?
> > have you ip_nat_ftp loaded?
>
> It seems that with new 2.6.12 there are no (or at least few and not yet
> seen) problems.
> I'm using iptables and many ip_nat modules (ftp included).
> lsmod is in attach.
>
> Thank you, Leonardo.
ok thanks closing therefor.
(2.6.11 is no longer supported)
--
maks
Reply to: