Date: Sun, 26 Aug 2007 07:42:35 -0400 From: Bill Moran <wmoran@potentialtech.com> To: MIZ0 <mich.admin@mail.ru> Cc: freebsd-questions@freebsd.org Subject: Re: TCP packets don't flow from external hosts to WinVista clients behind Message-ID: <20070826074235.c1c06383.wmoran@potentialtech.com> In-Reply-To: <46D12F40.5060500@mail.ru> References: <46D12F40.5060500@mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
MIZ0 <mich.admin@mail.ru> wrote: > > > Could be TCP window scaling. See > > http://en.wikipedia.org/wiki/TCP_window_scale_option > > Or the plain old PMTUD problem described in > > > http://www.cisco.com/en/US/tech/tk870/tk877/tk880/technologies_tech_note09186a008011a218.shtml#backinfo > > > > =Adriaan= > > Nothing helps. > I've tried to change client's mtu, even shrinked packets with ng_tcpmss > - no effect. > I don't understand why freebsd machines from internal network can't > establish any TCP connection to external net too. Sounds to me like you need to carefully go over your network setup. Have you verified that the problem machines correctly have all the information they need: proper netmasks, routers, etc? Run tcpdump on both interfaces of the gateway and see if that provides any hint. I have a strong suspicion that you're looking in the wrong place -- otherwise you would have found the problem. Are there two DHCP servers on this network? Wouldn't be the first time I saw that problem mess with someone's head. With the information you've provided so far, we're guessing in the dark. I doubt that ipfw is the culprit, but it's going to take more information to be sure. > Can ipfw or netgraph detect client's OS type and allow only Windows XP ? =)) Potentially, but I can't see it doing that by accident. -- Bill Moran http://www.potentialtech.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070826074235.c1c06383.wmoran>