From owner-freebsd-net@FreeBSD.ORG Fri Mar 7 23:24:14 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 74B261065670 for ; Fri, 7 Mar 2008 23:24:14 +0000 (UTC) (envelope-from rizzojake@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.230]) by mx1.freebsd.org (Postfix) with ESMTP id 2DA5E8FC22 for ; Fri, 7 Mar 2008 23:24:13 +0000 (UTC) (envelope-from rizzojake@gmail.com) Received: by wx-out-0506.google.com with SMTP id i29so809273wxd.7 for ; Fri, 07 Mar 2008 15:24:13 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=EE/AGndkZLdL9QGMjZWmwr8eh5YmqBguPB4OGWxWSBY=; b=Pt2uIVWayrBsRFVOpSUkACHIgdc2eh3oXGtsQ+pTCrOE60/xzlCJvHjk47MdVHUAJNKDL0cr5L6lqCvRxQ1IQSi15EcP54xAVeEq1gbh8kH6/Fht4zx6jun9XFhXYg88Qt1/gGds8EVRS7kx48B1yc/agqa3Gg834dPd7Vao2h4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=w5MNRxxHYIAk1BiAUBs0BJUPafr1Nj8yBLZPV7nRlLxT/bWnr7pUIdRfsT1LhtXzGaId9mJiOlu29lZfsY/qd+EBvq/MfWSpOWBY4cekHgMOte5erGNxh+qMmx0YukKz/ylZw9p3hLcVKZlfKjebWA89pW7/uJQTTCKZ56qWJNk= Received: by 10.140.128.11 with SMTP id a11mr1095964rvd.232.1204930556142; Fri, 07 Mar 2008 14:55:56 -0800 (PST) Received: by 10.141.22.11 with HTTP; Fri, 7 Mar 2008 14:55:56 -0800 (PST) Message-ID: Date: Fri, 7 Mar 2008 22:55:56 +0000 From: "Jake Rizzo" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: RELENG-7 tcp connectivity problems with certain clients X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 Mar 2008 23:24:14 -0000 Hi, I had two 6.3-STABLE boxen which have been happily running away for months on end now without any problems. Last week I upgraded (via buildworld) both boxes to 7.0-STABLE. Since then I've had reports of some clients being unable to connect via tcp. I've seen this happen first hand on an affected remote machine. Traceroute & ping gets to the machine just fine but connecting to an open tcp port on the machine just times out. The remote box was a XP machine and so I didn't have the luxury of tcp dump on that end, however I did get a chance to run it at the freebsd end: 16:04:31.445390 IP (tos 0x20, ttl 109, id 41184, offset 0, flags [DF], proto TCP (6), length 48) xxxxx.comcastbusiness.net.22625 > 192.168.1.104.http: S, cksum 0x81e2 (correct), 3539746141:3539746141(0) win 16384 16:04:31.445405 IP (tos 0x0, ttl 64, id 55077, offset 0, flags [DF], proto TCP (6), length 48, bad cksum 0 (->b21)!) 192.168.1.104.http > xxxxx.comcastbusiness.net.22625: S, cksum 0x58a4 (incorrect (-> 0x8f6e), 152644170:152644170(0) ack 3539746142 win 65535 16:04:34.444871 IP (tos 0x0, ttl 64, id 56095, offset 0, flags [DF], proto TCP (6), length 48, bad cksum 0 (->727)!) 192.168.1.104.http > xxxxx.comcastbusiness.net.22625: S, cksum 0x58a4 (incorrect (-> 0x8f6e), 152644170:152644170(0) ack 3539746142 win 65535 16:04:40.444521 IP (tos 0x0, ttl 64, id 57587, offset 0, flags [DF], proto TCP (6), length 48, bad cksum 0 (->153)!) 192.168.1.104.http > xxxxx.comcastbusiness.net.22625: S, cksum 0x58a4 (incorrect (-> 0x8f6e), 152644170:152644170(0) ack 3539746142 win 65535 It seems the the tcp handshake is not happening for one reason or another. I downgraded one of the boxes back to 6.3-STABLE and now the same client's connectivity issues disappeared. Has anyone any ideas of where to look? I'd really like to stay on 7.0-STABLE if I can because of the performance increase! Here's some additional configuration details: Ifconfig output: bge0: flags=8843 metric 0 mtu 1500 options=9b ether 00:e0:81:33:48:f6 inet 192.168.1.197 netmask 0xffffff00 broadcast 192.168.1.255 inet 192.168.1.104 netmask 0xffffffff broadcast 192.168.1.104 media: Ethernet autoselect (100baseTX ) status: active dmesg| grep bge0: bge0: mem 0xfc9c0000-0xfc9cffff,0xfc9b0000-0xfc9bffff irq 24 at device 9.0 on pci2 miibus0: on bge0 bge0: Ethernet address: 00:e0:81:33:48:f6 bge0: [ITHREAD] I have a few network related sysctl's defined since 6.3-STABLE too: security.bsd.see_other_uids=0 net.inet.icmp.icmplim=50 kern.ipc.somaxconn=12768 net.inet.udp.blackhole=1 net.inet.tcp.blackhole=2 net.inet.tcp.msl=7500 Any help would be greatly appreciated. Thanks, Regards, Jerry