cant connect websites

Message

cybermans · Post by **cybermans** » Sat Jun 07, 2003 3:29 pm

When i try to open some websites with konqueror/mozilla/phoenix i get messages like

An error occured while loading http://www.castlewolfenstein.com:

Timeout on server
Connection was to www.castlewolfenstein.com at port 80

I searched and found this topic but that didn't solved my problem.
I can ping the server. DNS lookup is working good.

and i get despate because live sux when u cant connect to websites that u want.

An other example i cannot visit is edition.cnn.com

Highlands · Post by **Highlands** » Sat Jun 07, 2003 4:00 pm

can you ping www.gentoo.org?

cybermans · Post by **cybermans** » Sat Jun 07, 2003 6:32 pm

mans@meanmachine mans $ ping www.gentoo.org
PING www.gentoo.org (128.193.0.36): 56 octets data
64 octets from 128.193.0.36: icmp_seq=0 ttl=45 time=185.0 ms
64 octets from 128.193.0.36: icmp_seq=1 ttl=45 time=186.6 ms
64 octets from 128.193.0.36: icmp_seq=2 ttl=45 time=190.4 ms
64 octets from 128.193.0.36: icmp_seq=3 ttl=45 time=190.6 ms
64 octets from 128.193.0.36: icmp_seq=4 ttl=45 time=203.9 ms

--- www.gentoo.org ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 185.0/191.3/203.9 ms

yup

beowulf · Post by **beowulf** » Sat Jun 07, 2003 9:24 pm

I gather you're using the LiveCD? Does it come with the traceroute package? If so, maybe there's a bad router along the way to the site? Or it could simply be due to internet congestion at the time of access... have you ever been able to access it?

If it's not the network or Internet, then start taking a look at the module you're using for your nic and how it's configured....

Aside from those two issues... then I'm not sure what's going on...

vedas · Post by **vedas** » Sun Jun 08, 2003 12:26 am

firewall? proxy?

what kind of network is this machine hooked up to. You have actual connectivity so this is a configuration issue...

cybermans · Post by **cybermans** » Sun Jun 08, 2003 7:32 am

What is between me and inet is a sitecom broadband wireleass homestation/acces point/printerserver. In windoze i can visit all sites incl castlewolfenstein.com. That it was a config problem i know. I can game without probs

cybermans · Post by **cybermans** » Sun Jun 08, 2003 4:41 pm

its suckier then i realized before now i detected that i cant connect to the macromedia site.

dev-null-devil · Post by **dev-null-devil** » Sun Jun 08, 2003 6:53 pm

I belive you're using some kind of firewall, maybe you missconfigured your router, iptables?

cybermans · Post by **cybermans** » Sun Jun 08, 2003 9:59 pm

my iptable settings are:
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW

Chain OUTPUT (policy ACCEPT)
target prot opt source

the hardware firewall is just working fine 'cause when i boot to windoze i can visit all sites.

H0bb3z · Post by **H0bb3z** » Sun Jun 08, 2003 10:28 pm

Just for kicks - you should try to stop iptables and check connectivity. I've seen some unexplainable activity when the firewall is running. The first step is to rule out the firewall by shutting it off.

cybermans · Post by **cybermans** » Sun Jun 08, 2003 11:05 pm

done that make no diffrence at all. iptables -L shows all accepts.
still getting the errors

H0bb3z · Post by **H0bb3z** » Mon Jun 09, 2003 2:36 am

Sounds like its time to fire up tcpdump to see what's really happening...

cybermans · Post by **cybermans** » Mon Jun 09, 2003 9:37 am

root@meanmachine mans # tcpdump
tcpdump: listening on eth0
12:36:23.230695 192.168.123.144.34785 > ns2.xs4all.nl.domain: 27973+ A? www.castlewolfenstein.com. (43) (DF)
12:36:23.231519 192.168.123.144.34786 > ns2.xs4all.nl.domain: 36960+ PTR? 99.9.109.194.in-addr.arpa. (43) (DF)
12:36:23.252281 arp who-has 192.168.123.144 (0:0:e8:7d:b0:71) tell 192.168.123.254
12:36:23.252317 arp reply 192.168.123.144 is-at 0:0:e8:7d:b0:71
12:36:23.253069 ns2.xs4all.nl.domain > 192.168.123.144.34785: 27973 1/2/2 (138)
12:36:23.253569 192.168.123.144.39929 > wf.networksolutions.com.www: S 769303769:769303769(0) win 5840 <mss 1460,sackOK,timestamp 15567219 0,nop,wscale 0> (DF)
12:36:23.259035 ns2.xs4all.nl.domain > 192.168.123.144.34786: 36960* 1/2/2 (133)
12:36:23.259411 192.168.123.144.34786 > ns2.xs4all.nl.domain: 36961+ PTR? 144.123.168.192.in-addr.arpa. (46) (DF)
12:36:23.281612 ns2.xs4all.nl.domain > 192.168.123.144.34786: 36961 NXDomain* 0/1/0 (105)
12:36:23.282081 192.168.123.144.34786 > ns2.xs4all.nl.domain: 36962+ PTR? 254.123.168.192.in-addr.arpa. (46) (DF)
12:36:23.301874 ns2.xs4all.nl.domain > 192.168.123.144.34786: 36962 NXDomain* 0/1/0 (105)
12:36:23.302327 192.168.123.144.34786 > ns2.xs4all.nl.domain: 36963+ PTR? 70.224.168.216.in-addr.arpa. (45) (DF)
12:36:23.323010 ns2.xs4all.nl.domain > 192.168.123.144.34786: 36963 1/3/3 (191)
12:36:26.249360 192.168.123.144.39929 > wf.networksolutions.com.www: S 769303769:769303769(0) win 5840 <mss 1460,sackOK,timestamp 15567819 0,nop,wscale 0> (DF)
12:36:26.365723 wf.networksolutions.com.www > 192.168.123.144.39929: . ack 769303770 win 25308 <nop,nop,timestamp 2862211448 15567219> (DF)
12:36:30.539383 192.168.123.144.bootpc > 192.168.123.254.bootps: xid:0x2e2ff67a secs:10 C:192.168.123.144 [|bootp]
12:36:30.542823 192.168.123.254.bootps > 255.255.255.255.bootpc: xid:0x2e2ff67a Y:192.168.123.144 S:192.168.123.254 ether 0:0:e8:7d:b0:71 [|bootp]
12:36:32.249357 192.168.123.144.39929 > wf.networksolutions.com.www: S 769303769:769303769(0) win 5840 <mss 1460,sackOK,timestamp 15569019 0,nop,wscale 0> (DF)
12:36:32.366625 wf.networksolutions.com.www > 192.168.123.144.39929: . ack 1 win 25308 <nop,nop,timestamp 2862212048 15567219> (DF)

19 packets received by filter
0 packets dropped by kernel

192.168.123.144: thats me
192.168.123.254 : the sitecom gateway

H0bb3z · Post by **H0bb3z** » Mon Jun 09, 2003 7:22 pm

cybermans wrote:12:36:26.249360 192.168.123.144.39929 > wf.networksolutions.com.www: S 769303769:769303769(0) win 5840 <mss 1460,sackOK,timestamp 15567819 0,nop,wscale 0> (DF)
12:36:26.365723 wf.networksolutions.com.www > 192.168.123.144.39929: . ack 769303770 win 25308 <nop,nop,timestamp 2862211448 15567219> (DF)
12:36:30.539383 192.168.123.144.bootpc > 192.168.123.254.bootps: xid:0x2e2ff67a secs:10 C:192.168.123.144 [|bootp]
12:36:30.542823 192.168.123.254.bootps > 255.255.255.255.bootpc: xid:0x2e2ff67a Y:192.168.123.144 S:192.168.123.254 ether 0:0:e8:7d:b0:71 [|bootp]
12:36:32.249357 192.168.123.144.39929 > wf.networksolutions.com.www: S 769303769:769303769(0) win 5840 <mss 1460,sackOK,timestamp 15569019 0,nop,wscale 0> (DF)
12:36:32.366625 wf.networksolutions.com.www > 192.168.123.144.39929: . ack 1 win 25308 <nop,nop,timestamp 2862212048 15567219> (DF)

I see a DNS lookup, 2 port 80 attempts, and a bootp connection (attempt?) in here.

The bolded headers are port 80 attempts. All I see is a SYN, ACK 2 times to wf.networksolutions.net -- it doesn't look like any data is transferred either way because the handshake never completes.

If I telnet to www.castlewolfenstein.com on port 80, here's what I get (cleaned for easier reading):

Code: Select all

telnet www.castlewolfenstein.com 80
GET
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">

<HTML>
<HEAD>
<TITLE>302 Found</TITLE>
</HEAD>
<BODY>
<H1>Found</H1>
The document has moved <A HREF="http://207.87.8.117">here</A>.
<P>
<HR>
<ADDRESS>Apache/1.3.3 Server at wf.networksolutions.net Port 80</ADDRESS>
</BODY>
</HTML>

But if I telnet to wf.networksolutions.net on port 80, I get a failed connection.

If I bring up www.castlewolfenstein.com in a browser, I get redirected to http://games.activision.com/games/wolfenstein/

It looks like there's a server-side redirect at www.castlewolfenstein.com, so maybe that's whats causing grief. Maybe the other site you're having issues with is also doing something similar? Anyone else have an opinion?

H0bb3z · Post by **H0bb3z** » Mon Jun 09, 2003 8:12 pm

Here's tcpdump -ttt -v output when I connect in my Gentoo VM:

Code: Select all

13:43:52.431465 192.168.60.129.1024 > 192.168.60.2.domain:  21261+ A? www.castlewolfenstein.com. (43) (DF)
13:43:52.432983 192.168.60.2.domain > 192.168.60.129.1024:  21261 1/0/0 (59)
13:43:52.463147 192.168.60.129.1024 > 192.168.60.2.domain:  25316+ A? www.castlewolfenstein.com. (43) (DF)
13:43:52.464161 192.168.60.2.domain > 192.168.60.129.1024:  25316 1/0/0 (59)
13:43:52.487221 192.168.60.129.1085 > wf.networksolutions.com.www: S 1599167338:1599167338(0) win 5840 <mss 1460,sackOK,timestamp 3792952 0,nop,wscale 0> (DF)
13:43:52.578727 wf.networksolutions.com.www > 192.168.60.129.1085: SP 2032548688:2032548688(0) ack 1599167339 win 64240 <mss 1460>
13:43:52.578821 192.168.60.129.1085 > wf.networksolutions.com.www: . ack 1 win 5840 (DF)
13:43:52.586708 192.168.60.129.1085 > wf.networksolutions.com.www: P 1:357(356) ack 1 win 5840 (DF)
13:43:52.587101 wf.networksolutions.com.www > 192.168.60.129.1085: . ack 357 win 64240
13:43:52.694353 wf.networksolutions.com.www > 192.168.60.129.1085: FP 1:490(489) ack 357 win 64240
13:43:52.707878 192.168.60.129.1085 > wf.networksolutions.com.www: F 357:357(0) ack 491 win 6432 (DF)
13:43:52.708234 wf.networksolutions.com.www > 192.168.60.129.1085: . ack 358 win 64239
13:43:53.128782 192.168.60.129.bootpc > 192.168.60.254.bootps:  xid:0x54b15a30 secs:10 C:192.168.60.129 file ""[|bootp]
13:43:53.133547 192.168.60.254.bootps > 192.168.60.129.bootpc:  xid:0x54b15a30 secs:10 C:192.168.60.129 Y:192.168.60.129 S:192.168.60.254 file ""[|bootp] [tos 0x10]
13:43:53.725437 192.168.60.129.1024 > 192.168.60.2.domain:  30515+ A? www.activision.com. (36) (DF)
13:43:53.726622 192.168.60.2.domain > 192.168.60.129.1024:  30515 2/0/0 A 63.146.124.34, (68)
13:43:53.738542 192.168.60.129.1086 > 63.146.124.34.www: S 1588005885:1588005885(0) win 5840 <mss 1460,sackOK,timestamp 3793202 0,nop,wscale 0> (DF)
13:43:53.771457 63.146.124.34.www > 192.168.60.129.1086: SP 840981179:840981179(0) ack 1588005886 win 64240 <mss 1460>
13:43:53.771548 192.168.60.129.1086 > 63.146.124.34.www: . ack 1 win 5840 (DF)
13:43:53.773627 192.168.60.129.1086 > 63.146.124.34.www: P 1:367(366) ack 1 win 5840 (DF)
13:43:53.776757 63.146.124.34.www > 192.168.60.129.1086: . ack 367 win 64240
13:43:53.808972 63.146.124.34.www > 192.168.60.129.1086: FP 1:541(540) ack 367 win 64240
13:43:53.809049 192.168.60.129.1086 > 63.146.124.34.www: . ack 542 win 6480 (DF)
13:43:53.825588 192.168.60.129.1086 > 63.146.124.34.www: F 367:367(0) ack 542 win 6480 (DF)
13:43:53.825963 63.146.124.34.www > 192.168.60.129.1086: . ack 368 win 64239
13:43:54.858175 192.168.60.129.1024 > 192.168.60.2.domain:  31882+ A? games.activision.com. (38) (DF)
13:43:54.859208 192.168.60.2.domain > 192.168.60.129.1024:  31882 1/0/0 A 63.146.124.22 (54)
13:43:54.864028 192.168.60.129.1087 > 63.146.124.22.www: S 1598873776:1598873776(0) win 5840 <mss 1460,sackOK,timestamp 3793427 0,nop,wscale 0> (DF)
13:43:54.893685 63.146.124.22.www > 192.168.60.129.1087: SP 721045628:721045628(0) ack 1598873777 win 64240 <mss 1460>
13:43:54.893776 192.168.60.129.1087 > 63.146.124.22.www: . ack 1 win 5840 (DF)
13:43:54.894932 192.168.60.129.1087 > 63.146.124.22.www: P 1:369(368) ack 1 win 5840 (DF)
13:43:54.902378 63.146.124.22.www > 192.168.60.129.1087: . ack 369 win 64240
13:43:54.931442 63.146.124.22.www > 192.168.60.129.1087: FP 1:330(329) ack 369 win 64240
13:43:54.933492 192.168.60.129.1087 > 63.146.124.22.www: F 369:369(0) ack 331 win 6432 (DF)
13:43:54.933871 63.146.124.22.www > 192.168.60.129.1087: . ack 370 win 64239
13:43:55.960178 192.168.60.129.1024 > 192.168.60.2.domain:  64460+ A? games.activision.com. (38) (DF)
13:43:55.961248 192.168.60.2.domain > 192.168.60.129.1024:  64460 1/0/0 A 63.146.124.22 (54)
13:43:55.967436 192.168.60.129.1088 > 63.146.124.22.www: S 1601316169:1601316169(0) win 5840 <mss 1460,sackOK,timestamp 3793648 0,nop,wscale 0> (DF)
13:43:56.014515 63.146.124.22.www > 192.168.60.129.1088: SP 1072183739:1072183739(0) ack 1601316170 win 64240 <mss 1460>
13:43:56.014596 192.168.60.129.1088 > 63.146.124.22.www: . ack 1 win 5840 (DF)
13:43:56.015839 192.168.60.129.1088 > 63.146.124.22.www: P 1:370(369) ack 1 win 5840 (DF)
13:43:56.021291 63.146.124.22.www > 192.168.60.129.1088: . ack 370 win 64240
13:43:56.134782 63.146.124.22.www > 192.168.60.129.1088: . 1:1461(1460) ack 370 win 64240
13:43:56.134853 192.168.60.129.1088 > 63.146.124.22.www: . ack 1461 win 8760 (DF)
13:43:56.135200 63.146.124.22.www > 192.168.60.129.1088: . 1461:2921(1460) ack 370 win 64240
13:43:56.135231 192.168.60.129.1088 > 63.146.124.22.www: . ack 2921 win 11680 (DF)
13:43:56.135849 63.146.124.22.www > 192.168.60.129.1088: P 2921:4141(1220) ack 370 win 64240
13:43:56.135901 192.168.60.129.1088 > 63.146.124.22.www: . ack 4141 win 14600 (DF)
13:43:56.139341 63.146.124.22.www > 192.168.60.129.1088: FP 4141:5431(1290) ack 370 win 64240
13:43:56.172443 192.168.60.129.1088 > 63.146.124.22.www: . ack 5432 win 17520 (DF)
13:44:00.257490 192.168.60.129.1088 > 63.146.124.22.www: F 370:370(0) ack 5432 win 17520 (DF)
13:44:00.257863 63.146.124.22.www > 192.168.60.129.1088: . ack 371 win 64239

192.168.60.129 -> My Gentoo VMWare box
192.168.60.2 -> Gateway

I looks like it does a second lookup for the activision site that doesn't show up in your output. Also, you can see the PUSH 'P' headers where data is being transmitted, unlike in your output...

cybermans · Post by **cybermans** » Tue Jun 10, 2003 8:45 am

but do you have a solution?

H0bb3z · Post by **H0bb3z** » Tue Jun 10, 2003 1:27 pm

Unfortunately, no

-- I can't really explain why your machine is not getting any data, or more specifically why wf.networksolutions.com is not pushing your box any data after the initial handshake. I put up my tcpdump in hopes someone might see something that I didn't in the comparison.

When I look at your tcpdump output again, I see that wf.networksolutions.com sends a syn/ack OK, but no data follows in a subsequent packet (as would be expected). From all indications it appears to be some issue that the server-side may have with your particular browser or connection.

My only other thought in this is that for some reason your broadband access point is not completely behaving with the TCP stack on your Gentoo box -- you may check with your provider to see if they have any nuggets of knowledge specific to using Linux with their devices. Perhaps there is a proxy setting or something that needs to be manually configured in Linux that Windows automagically deals with when connected.

I'm just speculating at this point...

cybermans · Post by **cybermans** » Tue Jun 10, 2003 1:38 pm

there is no proxy or whatsoever only a gateway. darn i hoped that u would have an solution because it gets very iritating.

cybermans · Post by **cybermans** » Thu Jun 12, 2003 4:52 pm

i think i found the reason why: Redirects! if a site page auto redirects it aint work
like www.webmonkey.com
and in the TS mentioned www.castlewolfenstein.com

cybermans · Post by **cybermans** » Mon Jun 16, 2003 9:11 am

i have fixed with on a not so nice way. Now i use the proxy that is located at my ISP and now i can visit all sites.

Guybrush · Post by **Guybrush** » Mon Jun 16, 2003 6:47 pm

I had the same problems with my gateway some time ago, and it only occured when connecting to the Internet by (german) DSL.

The SuSE homepage says that some firewalls are misconfigured, so they don't let need defragmentation ICMP messages pass through.

I entered the following firewall rule to my gateway and everything was fine:
iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
as my FIRST rule on the FORWARD-chain and everything worked fine.

Hope this helps

cant connect websites

cant connect websites

What kind of internet connection do you have?