John Weekley writes: > > Please provide more details. Are those perhaps type 3 (Destination > > Unreachable) with code 4 (Fragmentation Needed and Don't Fragment was > > Set)? > > All Type 3 code 0, No code fours.
That's "Net Unreachable." It means that your routing is broken, and it's definitely a different problem. Can you provide more details on how the routing is configured? > > What does your firewall machine do? Just filtering? Filtering and > > NAT? SOCKS? Something else? > Firewall is a misnomer, it performs multiple functions (Bad security > practice, I know, but it's a home network.) > > Firewalling/NAT, BIND, and email (postfix,clamAV, amavis, and dovecot). > IPv6 Tunneling to HE.net > IPv6 was disabled to eliminate it from the mix, with no effect on the > problem. At a guess, we're possibly dealing with a misconfigured NAT ... but still need more information. > > Exactly which interface is the "external" one, and where do you have > > MTU set in your network? > > iprb1 is the external interface it's MTU is set at 1500 and on all other > systems on internal and external networks. And you see the ICMP errors only on the external side using snoop, right? Who is sending them? Is Solaris sending them or are they inbound from the wider Internet? The source address of the ICMP message should reveal the router that's confused. It almost sounds like you're describing CR 6563892 -- except for the detail that this happens on the local system as well. -- James Carlson, Solaris Networking <[EMAIL PROTECTED]> Sun Microsystems / 1 Network Drive 71.232W Vox +1 781 442 2084 MS UBUR02-212 / Burlington MA 01803-2757 42.496N Fax +1 781 442 1677 _______________________________________________ networking-discuss mailing list [email protected]
