How to debug very strange packet delivery problem?

From: Kevin P. Fleming (kevin@labsysgrp.com)
Date: Thu Jan 03 2002 - 23:38:50 EST


I've got a machine that is just driving me nuts here... it's a RedHat 7.2
machine, upgraded to a 2.4.17 kernel (no kernel patches, just standard
kernel). The machine has an ethernet interface for it's local network, and a
ppp interface (using RedHat's pppd-2.4.1 RPM) to connect it to the corporate
WAN.

The machine runs fine, and other nodes on the local network (i.e. using the
ethernet interface) can communicate with it just fine. I can also bring up
the ppp link, and communicate with everything on the corporate WAN without
trouble. I can communicate _through_ this machine from nodes on the local
network to the corporate WAN just fine. But...

What I _cannnot_ do is initiate a connection from a node on the other side
of the ppp link (the corporate side) to this machine. There are at least
three daemon processes on this system I've tried to connect to: xinetd (for
telnet), bind and exim. None of these are using tcp_wrappers. The symptoms
are that the TCP SYN packet (to open the connection) arrives at the ppp0
interface (verified by using tcpdump on the ppp0 interface), but then is not
delivered to the waiting process on its open socket.

So far, I have done the following:

- reproduced the problem with iptables statically compiled, modular
compiiled and not included at all
- strace'd the daemon process(es) to see that they are stuck on a select()
(expected), and that the select() does not return when the packet arrives
- put in iptables rules to show when the packets get ACCEPTed (and they do,
the counters increase)
- watched the packets leave from the source machine with tcpdump on the
outbound interface, and the packets arrive intact at the problem machine
with tcpdump on the ppp interface
- disabled all sysctl settings that I had previously set
- rebooted countless times to try other variations :-)

Anyone have any idea where to proceed here? I'm sure it's something stupid
I've missed, as this is a pretty basic thing to not have working properly,
but I can't seem to find it.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Mon Jan 07 2002 - 21:00:23 EST