From owner-freebsd-questions  Wed Mar 19  4:47: 1 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C881037B401
	for <questions@freebsd.org>; Wed, 19 Mar 2003 04:46:59 -0800 (PST)
Received: from pa-plum1b-166.pit.adelphia.net (pa-plum1b-122.pit.adelphia.net [24.53.161.122])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BD0B543FA3
	for <questions@freebsd.org>; Wed, 19 Mar 2003 04:46:58 -0800 (PST)
	(envelope-from wmoran@potentialtech.com)
Received: from potentialtech.com (working [172.16.0.95])
	by pa-plum1b-166.pit.adelphia.net (8.12.7/8.12.7) with ESMTP id h2JCkuTb012560;
	Wed, 19 Mar 2003 07:46:57 -0500 (EST)
	(envelope-from wmoran@potentialtech.com)
Message-ID: <3E7866CB.5060104@potentialtech.com>
Date: Wed, 19 Mar 2003 07:47:07 -0500
From: Bill Moran <wmoran@potentialtech.com>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.2.1) Gecko/20030301
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: ai1@mtaonline.net
Cc: freebsd-questions <questions@freebsd.org>
Subject: Re: where packets are dropped in route
References: <200303191011.h2JABJ0B038650@en26.ai1.anchorage.mtaonline.net>
In-Reply-To: <200303191011.h2JABJ0B038650@en26.ai1.anchorage.mtaonline.net>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

ai1@mtaonline.net wrote:
> is there any way to determine which machine along
> a route is dropping packets destined for a specific
> IP/port combination?
> 
> i can't SSH to my gateway from machines elsewhere
> on the internet, but i can ssh to it on a local net.
> 
> i can ssh to other machines elsewhere on the internet
> from the local gateway / local net.
> 
> i have no firewall rules blocking any traffic.
> i have the same configuration that i used with
> a previous ISP - where all worked fine
> (except for ppp login mods).
> 
> my current ISP claims not to be blocking any traffic.
> i think he is wrong, and would like to identify
> exactly what machine is dropping the packets
> destined for port 22 on my gateway.

traceroute will allow you to specify a port/proto instead of
using ICMP.
Other tools might be helpful as well.  Use nmap (in ports) to
see if packets are being denied or simply dropped.  You could
use traceroute in combination with nmap and simply test each
host along the path.
Check sockstat on the ssh server and make sure it's acutally
binding to the proper IP as well.

-- 
Bill Moran
Potential Technologies
http://www.potentialtech.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message