On Tue, Aug 15, 2006 at 06:01:47PM +0100, Alan Cox wrote:I'm not sure what OS the T1 provider's box is running. I experience the same problems trying to access kernel.org or one of my servers hosted at Verio in Sterling, VA.
Ar Maw, 2006-08-15 am 11:05 -0500, ysgrifennodd Mark Reidenbach:
Does anyone have a way to find the broken router if you are not running the networks involved?You are almost certainly looking for a broken/crap NAT box, firewall or
similar product. Routers that are just being routers don't touch the TCP
layer so even if they are broken/crap/ancient they won't do any harm to
The usual offenders are cheap NAT boxes and badly designed load
balancers. They may not even show up in a trace but you should expect
them to be at one end or the other, unless your ISP is providing you
with NATted addresses or some kind of managed security service.
Certain versions of BSD ipfilter are also broken. Try some of Apple's
websites for examples.
Is the destination box BSD or behind a BSD firewall?