At 02:45 PM 2/12/03 -0800, Tom Eastep wrote:
I agree, with one possible addition (I'm not sure quite how much "shorewall status > /tmp/status" reports). I'd like to see a report on MASQ'd connections while you are trying to make an EyeBall connection (the equivalent command to "netstat -M" on 2.2.x kernels - Tom, do you know offhand what the command is for 2.4.x kernels, I can't remember).Sean wrote:For a first shot on Bering, I think that the procedure that I outlined before is still appropriate.So, after much discussion, is there anything specific you would like me to do Shorewall before I gather statistics? I can shut off all my other machines and turn on/off everything/nothing, logg everything...whatever. Just let me know what. How about Dachstein? I'll be making my attempt in about 3 hours (8:30 est) after the young one goes to bed. I've got to find a patient relative who will put up with my trouble-shooting.
If you have tcpdump on the Dachstein box, I'd love to capture everything that happens on your remote interface during a successful connection.Me too (for that matter, I'd like to see this for the Bering/Shorewall connection failure too). In the long run, I think we're going to need this level of info to pin the exact problem, and I hope a solution, down.
But if you don't have tcpdump, I'd settle for your running
netstat -M >/tmp/msaq_ports.txt
ipchains -NVL >/tmp/ipchains_rulesets.txt
while the connection is active, then sending us the resulting files.
--
-------------------------------------------"Never tell me the odds!"--------
Ray Olszewski -- Han Solo
Palo Alto, California, USA [EMAIL PROTECTED]
-------------------------------------------------------------------------------
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
