-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello there,
: The 192.168.200.x (lan) network gets to the internet via another
: gateway (192.168.200.1). Client machines on the 200.x network
: work ok except for ssh connections to machines on the internet
: hanging. It asks for a password and hangs. Any ideas? Thanks
Yes. Vincent Jaussaud had a very similar problem (though much
larger than yours) several years ago [0]. If you run tcpdump on the
client and watch for the ToS to change (just after authentication),
it should become very clear what is happening.
You must remember that the the tuple on which a route is selected
includes the ToS. So, after you have tried to connect to the ssh
server in the public Internet from the inside (watching with
tcpdump, of course), run "ip route show cache $DEST_IP" and compare
the set of results.
If that's at all unclear, maybe this will also help [1].
Good luck,
- -Martin
[0] http://mailman.ds9a.nl/pipermail/lartc/2002q4/005653.html
[1] http://linux-ip.net/html/routing-selection.html#tb-routing-selection-adv
- --
Martin A. Brown
http://linux-ip.net/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: pgf-0.72 (http://linux-ip.net/sw/pine-gpg-filter/)
iD8DBQFF42TLHEoZD1iZ+YcRAlZqAKCrpGmNKdyCUUwExGW2MWLUQqMzzwCgiKY6
czRMryHmcM9HBGdKkFfWUgg=
=Pgu8
-----END PGP SIGNATURE-----
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
|