[Openswan Users] ping works but others applications don't

Paulo Ricardo Bruck pauloric at contato.com.br
Wed Jan 26 19:12:43 CET 2005 

>From: "Gary W. Smith" <gary at primeexalia.com>
>Subject: RE: [Openswan Users] ping works but others applications don't
>To: "Paulo Ricardo Bruck" <pauloric at contato.com.br>,
>        <users at openswan.org>
>Message-ID:
>
><27594E8BA9D5CA458F5EF87D88B6B48F019923 at pxtvjoexd01.pxt.primeexalia.com>
>        
>Content-Type: text/plain;       charset="us-ascii"
>
>Firewall maybe?  Are you running one?  What does traceroute reveal?

all right let's seen againg

- debiansarge+openswan+iptables

a) ping from 192.168.0.11 to 192.168.1.7 works and vice-versa
b) lynx from 192.168.1.7 to 192.168.0.11 don't work. see below

tcpdump from internal eth firewall+openswan net 192.168.0.0
IP 192.168.1.7.32774 > 192.168.0.11.80: S 3331951365:3331951365(0) win
5840 <mss 1460,sackOK,timestamp 466150 0,nop,wscale 0>
IP 192.168.0.11.80 > 192.168.1.7.32774: S 7658463:7658463(0) ack
3331951366 win 5792 <mss 1460,sackOK,timestamp 35498401
466150,nop,wscale 0>

ok packet coming and going



tcpdump from external eth firewall+openswan net 192.168.0.0
IP 192.168.1.7.32775 > 192.168.0.11.80: S 3455969260:3455969260(0) win
5840 <mss 1460,sackOK,timestamp 479345 0,nop,wscale 0>
IP 192.168.1.7.32775 > 192.168.0.11.80: S 3455969260:3455969260(0) win
5840 <mss 1460,sackOK,timestamp 479645 0,nop,wscale 0>

hummm I can see only packets going not comming. Shouldn't I see w;
ESP???



tcpdump from external eth firewall+openswan net 192.168.1.0
IP 192.168.0.11.80 > 192.168.1.7.32776: S 334224082:334224082(0) ack
3656755816 win 5792 <mss 1460,sackOK,timestamp 35807423
497047,nop,wscale 0>
IP 192.168.0.11.80 > 192.168.1.7.32776: S 334224082:334224082(0) ack
3656755816 win 5792 <mss 1460,sackOK,timestamp 35810422
497047,nop,wscale 0>



tcpdump from internal eth firewall+openswan net 192.168.1.0
IP 192.168.1.7.32777 > 192.168.0.11.80: S 3753838401:3753838401(0) win
5840 <mss 1460,sackOK,timestamp 507639 0,nop,wscale 0>
IP 192.168.0.11.80 > 192.168.1.7.32777: S 437177896:437177896(0) ack
3753838402 win 5792 <mss 1460,sackOK,timestamp 35913388
507339,nop,wscale 0>

all right packets comming and going but I can't see any html at lynx.


screen from 192.168.0.1 to 192.168.0.11
 Index of /

        Name                    Last modified       Size  Description
________________________________________________________________

 [DIR]  Parent Directory        20-Jan-2005 15:19      -
 [DIR]  dwww/                   26-Jan-2005 11:45      -
 [DIR]  info2www/               20-Jan-2005 15:19      -
   _________________________________________________________


    Apache/1.3.33 Server at 192.168.0.11 Port 80


Can anyone give me any clue???

Thanks in advance.


-- 
Paulo Ricardo Bruck - consultor
Contato Global Solutions
tel 011 5031-4932  fone/fax 011 5034-1732  cel 011 9235-4327

More information about the Users mailing list