[Shorewall-users] Can't connect to remote server

Tom Eastep teastep@shorewall.net
Sun, 28 Jul 2002 19:38:46 -0700 (PDT)


On Sun, 28 Jul 2002, Richard wrote:

> Hi Tom,
> 	I have an interesting problem.  Using shoewall I cannot connect to ONE
>  remote server, zdnet.com , using either fqhn or URL@ 205.181.112.69.  All
>  other sites seem to be ok.  I can ping the URL.  Yet, the problem is ONLY
>  with the gateway, all other machines can access the site, no problem.
> 

This is really laughable -- it looks like ZD are clueless with respect to 
ECN....

echo 0 > /proc/sys/net/ipv4/tcp_ecn

As regarding the other messages you are seeing, turn off "norfc1918" on 
your external interface...

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net