Date: Sun, 26 Aug 2007 03:22:47 +0200 From: J65nko <j65nko@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: TCP packets don't flow from external hosts to WinVista clients behind Message-ID: <19861fba0708251822v6a80725fq20b9b2d37c0c5b2d@mail.gmail.com> In-Reply-To: <E1IP4iN-000Gd1-00.mich-admin-mail-ru@f102.mail.ru> References: <E1IP4iN-000Gd1-00.mich-admin-mail-ru@f102.mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On 8/26/07, mich.admin@mail.ru <mich.admin@mail.ru> wrote: > Hello... > I've got a strange trouble... > FreeBSD 6.2 amd64 as nat-router: > rl0 85.249.249.249 -> ISP > fxp0 10.0.0.1 -> My Internal Net > natd/ng_nat > ipfw: allow all from any to any > > WinXP client machines work fine behind nat, but WinVista, FreeBSD (5.5/6.2) clients don't. > It's very strange but it's unable to establish any TCP internet connection from non WinXP host. ICMP and UDP packets flows normally. > For example, I can ping host ya.ru, get DNS-reply from internet servers, play games via UDP, but i can't view web pages, open shh session and just can't "telnet" to any port!!!! > Traffic from/to my net is not filtering by firewalls at all. I've tested it with natd ang ng_nat - there's no difference! I've tried to solve this problem during last week =( Unfortunately, i can't. Now i'm going to try using pf or ipfilter instead of ipfw or ever reinstall server OS and may be change freebsd architecture to i386. > > Any ideas ? Could be TCP window scaling. See http://en.wikipedia.org/wiki/TCP_window_scale_option Or the plain old PMTUD problem described in http://www.cisco.com/en/US/tech/tk870/tk877/tk880/technologies_tech_note09186a008011a218.shtml#backinfo =Adriaan=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19861fba0708251822v6a80725fq20b9b2d37c0c5b2d>