Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Xen>
  3. Users
Ping,arp,UDP OK, TCP not OK, help?
choynews at yahoo
Mar 28, 2005, 9:16 PM
Post #1 of 2 (1206 views)
Permalink
hello all :)
Please forgive my poor English.

I've setup a dom0(debian sarge) and a guest debian sarge.
I set the network-script to "network-route" and vif-script to
"vif-route".
The dom0's ip is 192.168.10.1 and the guest's ip is 192.168.10.2
Ive recompiled the dom0's kernel to support my hardware, the guest's
kernel is using default .config
Xen 2.0.4, 2.0.5x 2.0-testing have the same problem.

Both can ping and arp each other, and can connect with UDP.
However TCP connections are not working in both side.

The opened TCP ports can be connected from localhost. (so the server is
listening)
Then I do a tcpdump and netcat, here are the results:
When I connect to guest from dom0, tcpdump(on guest) shows the guest
reveive the packet, but didn't reply

When i connect to dom0 from guest, tcpdump(on dom0) shows the dom0
receive the packet(seq), and send a repliy(seq/ack),
the guest's tcpdump shows it send the packet, and receive the dom0's
reply, however, nothing is going on.

Finally, the error "timeout" is rised.

So, any hints, comment?
Thanks in advanced.
choy

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
Re: Ping,arp,UDP OK, TCP not OK, help? [ In reply to ]
choynews at yahoo
Mar 29, 2005, 6:38 AM
Post #2 of 2 (1202 views)
Permalink
On Tue, at 2005-03-29 20:33, B.G. Bruce wrote:
>: Do you have any filtering enabled on your domU. Do an
>: iptables-save > /tmp/foo.ipt and email the file.
>:
>: Thanks,
>: B.

Thanks for the reply!
To keep things simple, I've just removed the iptables on my domU.
(btw) As I know, support for iptable on domU is not enabled in default
domU's kernel. (Please correct me if I'm wrong :)

To isolation the problem, I've also disable the iptables on dom0:
# iptables-save > /tmp/foo.ipt; cat /tmp/foo.ipt;

# Generated by iptables-save v1.2.11 on Tue Mar 29 20:59:06 2005
*filter
:INPUT ACCEPT [20041:5840682]
:FORWARD ACCEPT [30:1440]
:OUTPUT ACCEPT [20059:5824194]
COMMIT
# Completed on Tue Mar 29 20:59:06 2005
# Generated by iptables-save v1.2.11 on Tue Mar 29 20:59:06 2005
*nat
:PREROUTING ACCEPT [54:2875]
:POSTROUTING ACCEPT [85:4932]
:OUTPUT ACCEPT [71:4260]
COMMIT
# Completed on Tue Mar 29 20:59:06 2005

So... any comments or directions? Thanks!
Choy

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal