Wheezy as internet gateway: lost connections

From: Steven Post <redalert.commander@xxxxxxxxx>
Date: Tue, 05 Jun 2012 21:48:35 +0200

Hello list,

I have a small home network and using a Wheezy installation as the
gateway here. Since the gateway is running wheezy I'm experiencing
dropped (tcp) connections.
I observer this behaviour with both another Wheezy installation
(desktop) and with a Windows 7 machine. The problem didn't occur with
the old server (Etch).

The network setup is quite simple, the gateway establishes a PPPoE
connection with my ISP as ppp0 (actual interface is eth1). Another
network card (eth0) has a static address on the LAN.

The machine has a load of firewall rules for incoming and outgoing
connections, but the important ones here are the following:
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP

iptables -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT
iptables -A FORWARD -i $EXTIF -o $INTIF -j ACCEPT
iptables -t nat -A POSTROUTING -o $EXTIF -s $INTLAN -j MASQUERADE

Last line in my firewall script enables ipv4 forwarding:
echo 1 > /proc/sys/net/ipv4/ip_forward

What I see is various websites that don't load (such as slashdot.org or
hotmail.com) and services such as msn, IRC still works fine.

I did some research and it might have something to do with the MTU value
of the connection as explained here:
http://www.netheaven.com/pmtu.html

I tested this by setting a lower MTU value on my local (desktop)
connection, this seemed to work, same for the server. However it doesn't
have much effect today.

Does anyone have any idea on how to solve this? What changed between
Etch and wheezy with regard to MTU and/or packet fragmentation?

Regards,
Steven

Attachment: signature.asc
Description: This is a digitally signed message part

Follow-Ups:
- [Solved] Re: Wheezy as internet gateway: lost connections
  - From: Steven Post

Prev by Date: Re: Finding files
Next by Date: Re: [OT] Re: the ghost of UEFI and Micr0$0ft
Previous by thread: Why does login_tty(int fd) close fd at the end?
Next by thread: [Solved] Re: Wheezy as internet gateway: lost connections
Index(es):
- Date
- Thread

Relevant Pages

Re: VPN and remote gateway
... 317025, we could know that if you use local gateway, your internet connection will not be a problem, but, you could not access your ... remote network since there is no route between you computer and your remote company network. ...
(microsoft.public.windows.server.sbs)
Re: Network connected but no IP address
... To make sure that the NIS firewall isn't blocking the gateway ??router??, open NIS and add the gateway ??router?? ... To minimize any conflicts while working to resolve this issue Uninstall Any/All devices listed in Device Manager> Network Adapters. ... Shut down and remove the wireless NIC. ... What components/protocols are listed as installed in the NIC connection properties? ...
(microsoft.public.windowsxp.general)
Baffling DNS Problem
... Network Diagnostics for Windows XP also states a DNS problem in the log ... - internet connection works just fine when switched over to my MacBook ... Gateway Diagnostic ... Wireless Diagnostic ...
(microsoft.public.windowsxp.network_web)
RE: Remote Access problems
... I have been unable to attempt changing the gateway as of yet. ... Over the PPP connection, Outlook connects to exchange fine, you can print, ... > Since the remote client uses a SBS VPN connection package, ... Click Start, click Control Panel, click Network and Internet ...
(microsoft.public.windows.server.sbs)
Re: Internet Gateway
... the network services for gateway, and all seems back to normal (well, I then ... connection', and this was the only connection that was ever enabled. ... However, today there has appeared another connection, under Internet ...
(microsoft.public.windowsxp.network_web)