1. Have upgraded machine to fiesty and problem persists.
2. This also affects wget and therefore is likely low level. Probably kernel?
3. Have looked at packet trace (full trace is an attachment to this bug) and
compared to a good trace.
>From the packet trace (made with wireshark) it seems the problem is
missing SYN,ACK packet from the remote host. So it seems the problem is
caused by a bad SYN packet sent by the problematic machine causing no
response or the SYN,ACK packet is being dropped by the kernel before
wireshark sees it.
After noticing this I checked and iptables were installed (think that's
default though) so I uninstalled and no effect.
So for the record here is a "good syn" packet and a "bad syn" packet
Good host == 192.168.1.121
Bad host == 192.168.1.100
Router == 192.168.1.1
I've diffed these two and all the flags seem to be the same although the
data in the dump is different. My TCP/IP knowledge doesn't stretch to
deblocking this.
Good Syn
======
No. Time Source Destination Protocol Info
18 6.281664 192.168.1.121 82.211.81.211 TCP 60163
> https [SYN] Seq=0 Len=0 MSS=1460 TSV=2512360 TSER=0 WS=5
Frame 18 (74 bytes on wire, 74 bytes captured)
Arrival Time: Aug 11, 2007 23:01:19.096021000
[Time delta from previous packet: 0.003644000 seconds]
[Time since reference or first frame: 6.281664000 seconds]
Frame Number: 18
Packet Length: 74 bytes
Capture Length: 74 bytes
[Frame is marked: False]
[Protocols in frame: eth:ip:tcp]
[Coloring Rule Name: TCP SYN/FIN]
[Coloring Rule String: tcp.flags & 0x02 || tcp.flags.fin == 1]
Ethernet II, Src: D-Link_e6:32:09 (00:0d:88:e6:32:09), Dst: D-Link_28:82:bb
(00:15:e9:28:82:bb)
Destination: D-Link_28:82:bb (00:15:e9:28:82:bb)
Address: D-Link_28:82:bb (00:15:e9:28:82:bb)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)
Source: D-Link_e6:32:09 (00:0d:88:e6:32:09)
Address: D-Link_e6:32:09 (00:0d:88:e6:32:09)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)
Type: IP (0x0800)
Internet Protocol, Src: 192.168.1.121 (192.168.1.121), Dst: 82.211.81.211
(82.211.81.211)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
0000 00.. = Differentiated Services Codepoint: Default (0x00)
.... ..0. = ECN-Capable Transport (ECT): 0
.... ...0 = ECN-CE: 0
Total Length: 60
Identification: 0x05a3 (1443)
Flags: 0x04 (Don't Fragment)
0... = Reserved bit: Not set
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: TCP (0x06)
Header checksum: 0xce51 [correct]
[Good: True]
[Bad : False]
Source: 192.168.1.121 (192.168.1.121)
Destination: 82.211.81.211 (82.211.81.211)
Transmission Control Protocol, Src Port: 60163 (60163), Dst Port: https (443),
Seq: 0, Len: 0
Source port: 60163 (60163)
Destination port: https (443)
Sequence number: 0 (relative sequence number)
Header length: 40 bytes
Flags: 0x02 (SYN)
0... .... = Congestion Window Reduced (CWR): Not set
.0.. .... = ECN-Echo: Not set
..0. .... = Urgent: Not set
...0 .... = Acknowledgment: Not set
.... 0... = Push: Not set
.... .0.. = Reset: Not set
.... ..1. = Syn: Set
.... ...0 = Fin: Not set
Window size: 5840
Checksum: 0x72bb [correct]
Options: (20 bytes)
Maximum segment size: 1460 bytes
SACK permitted
Timestamps: TSval 2512360, TSecr 0
NOP
Window scale: 5 (multiply by 32)
0000 00 15 e9 28 82 bb 00 0d 88 e6 32 09 08 00 45 00 ...(......2...E.
0010 00 3c 05 a3 40 00 40 06 ce 51 c0 a8 01 79 52 d3 .<[EMAIL
PROTECTED]@..Q...yR.
0020 51 d3 eb 03 01 bb c4 96 50 4b 00 00 00 00 a0 02 Q.......PK......
0030 16 d0 72 bb 00 00 02 04 05 b4 04 02 08 0a 00 26 ..r............&
0040 55 e8 00 00 00 00 01 03 03 05 U.........
Bad Syn
=====
No. Time Source Destination Protocol Info
5 1.089805 192.168.1.100 82.211.81.244 TCP 36728
> https [SYN] Seq=0 Len=0 MSS=1460 TSV=8036033 TSER=0 WS=2
Frame 5 (74 bytes on wire, 74 bytes captured)
Arrival Time: Apr 24, 2007 21:01:55.358723000
[Time delta from previous packet: 0.087971000 seconds]
[Time since reference or first frame: 1.089805000 seconds]
Frame Number: 5
Packet Length: 74 bytes
Capture Length: 74 bytes
[Frame is marked: False]
[Protocols in frame: eth:ip:tcp]
[Coloring Rule Name: TCP SYN/FIN]
[Coloring Rule String: tcp.flags & 0x02 || tcp.flags.fin == 1]
Ethernet II, Src: 3Com_53:cf:11 (00:04:75:53:cf:11), Dst: D-Link_28:82:bb
(00:15:e9:28:82:bb)
Destination: D-Link_28:82:bb (00:15:e9:28:82:bb)
Address: D-Link_28:82:bb (00:15:e9:28:82:bb)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)
Source: 3Com_53:cf:11 (00:04:75:53:cf:11)
Address: 3Com_53:cf:11 (00:04:75:53:cf:11)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)
Type: IP (0x0800)
Internet Protocol, Src: 192.168.1.100 (192.168.1.100), Dst: 82.211.81.244
(82.211.81.244)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
0000 00.. = Differentiated Services Codepoint: Default (0x00)
.... ..0. = ECN-Capable Transport (ECT): 0
.... ...0 = ECN-CE: 0
Total Length: 60
Identification: 0x2cdf (11487)
Flags: 0x04 (Don't Fragment)
0... = Reserved bit: Not set
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: TCP (0x06)
Header checksum: 0xa709 [correct]
[Good: True]
[Bad : False]
Source: 192.168.1.100 (192.168.1.100)
Destination: 82.211.81.244 (82.211.81.244)
Transmission Control Protocol, Src Port: 36728 (36728), Dst Port: https (443),
Seq: 0, Len: 0
Source port: 36728 (36728)
Destination port: https (443)
Sequence number: 0 (relative sequence number)
Header length: 40 bytes
Flags: 0x02 (SYN)
0... .... = Congestion Window Reduced (CWR): Not set
.0.. .... = ECN-Echo: Not set
..0. .... = Urgent: Not set
...0 .... = Acknowledgment: Not set
.... 0... = Push: Not set
.... .0.. = Reset: Not set
.... ..1. = Syn: Set
.... ...0 = Fin: Not set
Window size: 5840
Checksum: 0x3986 [correct]
Options: (20 bytes)
Maximum segment size: 1460 bytes
SACK permitted
Timestamps: TSval 8036033, TSecr 0
NOP
Window scale: 2 (multiply by 4)
0000 00 15 e9 28 82 bb 00 04 75 53 cf 11 08 00 45 00 ...(....uS....E.
0010 00 3c 2c df 40 00 40 06 a7 09 c0 a8 01 64 52 d3 .<,[EMAIL
PROTECTED]@......dR.
0020 51 f4 8f 78 01 bb ae 4d b2 1e 00 00 00 00 a0 02 Q..x...M........
0030 16 d0 39 86 00 00 02 04 05 b4 04 02 08 0a 00 7a ..9............z
0040 9e c1 00 00 00 00 01 03 03 02 ..........
--
https is broken for some
https://bugs.launchpad.net/bugs/96447
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
