|
On 18 Aug 2002 at 23:18, Greg Woods wrote:
> I'm having a huge problem with my LVS mail cluster. The real servers
> cannot connect to certain remote sites, even though other machines on the
> same network with them can. I have traced the problem to the fact that,
> after applying the hidden patch to a 2.4.18 kernel, the SYN packets for
> outbound connections are being sent out with "SWE" flags set (as shown
> by tcpdump). This seems to cause some remote machines not to treat it as
> a SYN, and I see no response.
It seems you have ECN (Explicit Congestion Notification) on which
causes problems at some firewalls. You can turn it off in your kernel
configuration or disable it with echo 0 >/proc/sys/net/ipv4/tcp_ecn
(look whether it is enabled by cat /proc/sys/net/ipv4/tcp_ecn first)
Good luck,
Axel Dunkel
---
Systemberatung A. Dunkel GmbH, Gutenbergstr. 5, D-65830 Kriftel
Tel.: +49-6192-9988-0, Fax: +49-6192-9988-99, E-Mail: ad@xxxxxxxxx
|
