Re: Can't access a site from Masqueraded host

On Mon, Sep 08, 2003 at 12:53:02PM -0700, Bill Moseley wrote: | On Mon, Sep 08, 2003 at 09:39:43PM +0200, Nicos Gollan wrote: | > On Monday 08 September 2003 21:08, Donald Spoon wrote: | > > If you are able to connect to other sites from the internal network, and | > > only have problems with this

Re: Can't access a site from Masqueraded host

On Mon, Sep 08, 2003 at 09:39:43PM +0200, Nicos Gollan wrote: > On Monday 08 September 2003 21:08, Donald Spoon wrote: > > If you are able to connect to other sites from the internal network, and > > only have problems with this site (or maybe just a few others), I would > > suspect ECN is set on y

Re: Can't access a site from Masqueraded host

On Monday 08 September 2003 21:08, Donald Spoon wrote: > If you are able to connect to other sites from the internal network, and > only have problems with this site (or maybe just a few others), I would > suspect ECN is set on your NAT box. Check /proc/sys/net/ipv4/tcp_ecn > and see if it is set

Re: Can't access a site from Masqueraded host

On Mon, Sep 08, 2003 at 02:08:14PM -0500, Donald Spoon wrote: > [EMAIL PROTECTED] wrote: > If you are able to connect to other sites from the internal network, and > only have problems with this site (or maybe just a few others), I would > suspect ECN is set on your NAT box. Check /proc/sys/net

Re: Can't access a site from Masqueraded host

[EMAIL PROTECTED] wrote: I'm trying to understand why I can't access a host from my NAT network. I thought my firewall must be blocking. I enabled logging of dropped packets but still didn't see what wasn't working. So I disabled it and now have a very basic masquerading setup -- no dropping (s

Re: Can't access a site from Masqueraded host

On Mon, Sep 08, 2003 at 11:34:44AM -0700, Paul Johnson wrote: > On Mon, Sep 08, 2003 at 10:20:14AM -0700, Bill Moseley wrote: > > Ya, sure. You waste all that water running out the mouth of the > > Columbia that we could be using to wash our cars and grow cotton. Too > > late to bring Trojan back

Re: Can't access a site from Masqueraded host

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, Sep 08, 2003 at 10:20:14AM -0700, Bill Moseley wrote: > Ya, sure. You waste all that water running out the mouth of the > Columbia that we could be using to wash our cars and grow cotton. Too > late to bring Trojan back on line? ;) First of

Re: Can't access a site from Masqueraded host

On Mon, Sep 08, 2003 at 09:41:28AM -0700, Paul Johnson wrote: > On Mon, Sep 08, 2003 at 09:25:22AM -0700, [EMAIL PROTECTED] wrote: > > [EMAIL PROTECTED]:~$ ping www.pge.com > > PING www.pge.com (131.89.128.50): 56 data bytes > > Just send the State of Oregon what you owe instead. Y'all owe us big

Re: Can't access a site from Masqueraded host

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, Sep 08, 2003 at 09:25:22AM -0700, [EMAIL PROTECTED] wrote: > [EMAIL PROTECTED]:~$ ping www.pge.com > PING www.pge.com (131.89.128.50): 56 data bytes Just send the State of Oregon what you owe instead. Y'all owe us big time for the power crisi

Can't access a site from Masqueraded host

I'm trying to understand why I can't access a host from my NAT network. I thought my firewall must be blocking. I enabled logging of dropped packets but still didn't see what wasn't working. So I disabled it and now have a very basic masquerading setup -- no dropping (shown below). NAT is work