Ack. The problem was mismatched MTU/MRU settings between the masqed
and masqing boxes. Ugly, nasty, stupid stuff. It's in the IP Masq
FAQ I've been using; seems to be some hosts don't like responding to
fragmented packets. The writers of the FAQ imply the blame lies with
these sites:
Ack. Re: Karsten's mail, I get the same IP from host, and the trace
stops at that same pbs-gw one. So I try a browser again, which...
works. I was certain I'd tried that, but I guess not. So the problem
now is that the *masqed* machine can't get to www.pbs.org. Looks
like I'll be messing with i
First off, it's *NOT* that ECN thing, I didn't put it in the kernel.
And it's not a DNS issue, or the site's problem (well, it *could* be)
because (arg) it works in windows. And it shouldn't be my iptables
setup, since the only thing there is a single masquerade rule (I
haven't really started
3 matches
Mail list logo
