Hi there I had the exact same strange (kind of) problem.
All clients could connect to my (own OpenBSD) web server, only my main PC (sorry linux gentoo machine) could not. The packets match what you show below. It stops because the initial http) packet does't arrive at your VistaPC. [Fire up wireshark and load the tcpdump into that -> TCP previous segment lost, it told me] After 2 days and nights shuffling around all Hardware and software (Firewall, PC, Ethernetcards, Gateway, kernels, ...) this was the problem: On the OpenBSD www server (pf enabled), the one rule had no 'keep state' not good: pass in quick on $external inet proto tcp from any to $http_server port = $http_port label "l_http_in" good: pass in quick on $external inet proto tcp from any to $http_srv port = http keep state label "l_http_in" # queue q_rest_out pass out quick on $external inet proto tcp from any to any port = http keep state (I added the pass out rule, not sure if needed) Why on earth this only produced problems with 1/100 of all clients, I cannot say... (It should always fail or never...) For example with linux kernel 2.6.16.x it worked, with kernel 2.6.17.x it didn't. Some IP/networking behavior must have been changed in defaults ...?) Hope that helps -cmb [ long part of email removed] > > > Opera 9: > > 20:40:45.824144 my.workstation.ip.49370 > remote.server.ip.80: S > 1215871830:1215871830(0) win 8192 <mss 1380,nop,wscale > 8,nop,nop,sackOK> (DF) > 20:40:45.824646 207.218.64.33.80 > my.workstation.ip.49370: S > 2582857930:2582857930(0) ack 1215871831 win 64240 <mss 1460,nop,wscale > 0,nop,nop,sackOK> > 20:40:45.878361 my.workstation.ip.49370 > 207.218.64.33.80: . ack 1 win > 260 (DF) > 20:40:45.904597 my.workstation.ip.49370 > 207.218.64.33.80: P > 1:384(383) ack 1 win 260 (DF) > 20:40:46.058234 207.218.64.33.80 > my.workstation.ip.49370: . ack 384 > win 63857 (DF) > 20:40:46.061253 my.workstation.ip.49370 > 207.218.64.33.80: P > 1:384(383) ack 1 win 260 (DF) > 20:40:46.061726 207.218.64.33.80 > my.workstation.ip.49370: . ack 384 > win 63857 (DF) > (at this point, the connection is hung -- the Vista workstation > receives no further communcations -- it's like it just drops the > replies) > > > > Firefox: > > 20:38:25.197691 my.workstation.ip.49357 > remote.server.ip.80: S > 643900711:643900711(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK> > (DF) > 20:38:25.198320 remote.server.ip.80 > my.workstation.ip.49357: S > 852828096:852828096(0) ack 643900712 win 64240 <mss 1460,nop,wscale > 0,nop,nop,sackOK> > 20:38:25.244540 my.workstation.ip.49357 > remote.server.ip.80: . ack 1 > win 260 (DF) > 20:38:25.251037 my.workstation.ip.49357 > remote.server.ip.80: P > 1:403(402) ack 1 win 260 (DF) > 20:38:25.567602 my.workstation.ip.49357 > remote.server.ip.80: P > 1:403(402) ack 1 win 260 (DF) > 20:38:25.568042 remote.server.ip.80 > my.workstation.ip.49357: . ack > 403 win 63838 (DF) > (same deal -- it just seems to die right here) > [ removed ... ]
