[Bug 47] conntrack breaks nfs, corrupted packets

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Wed, 14 May 2003 02:39:37 +0200 

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=47





------- Additional Comments From kaber@trash.net  2003-05-14 02:39 -------
I've captured some non-fragmented tcp packets which show this behaviour with
2.4.21-rc2.
They look badly damaged. The destination ip doesn't match the mac but they come
from valid connections. Setting interface mtu to 1486 helps which makes me think
this is also related to ip_conntrack (although i've not tried without because i
need to masquerade).

0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 192.168.0.1.51420 >
192.168.0.223.56058: FRW 3723124278:3723124306(28) ack 2602302847 win 60390 urg
44527 <[bad opt]> (DF) [tos 0x12,ECT(0)]  (ttl 64, id 11333, len 100, bad cksum
8cd4!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 172.183.247.57.1282 >
192.168.0.223.12899: P [bad tcp cksum be1d!] 176162560:176162584(24) ack
3969909265 win 52224 (DF) (ttl 118, id 18806, len 52, bad cksum 569d!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 192.168.0.1.3356 >
192.168.0.223.63539: udp 35372 (DF) (ttl 64, id 583, len 106, bad cksum b6d3!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.0.157.40.23320 >
192.168.0.223.53818: FRPW [bad tcp cksum 240a!] 2316506398:2316506402(4) win
48011 <[bad opt]> (DF) (ttl 118, id 45558, len 52, bad cksum 1be5!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 80.134.198.47.58609 >
192.168.0.223.11407: SFPE [bad hdr length] (ttl 117, id 2410, len 52, bad cksum
64e5!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.236.110.112.9272 >
192.168.0.223.28419: SPWE [bad tcp cksum b890!] 846439856:846439880(24) win
30252 urg 56760 (DF) (ttl 117, id 44535, len 52, bad cksum 4eb0!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.38170 >
192.168.0.223.54361: SFWE 2985761410:2985762802(1392) win 21463 urg 11395
<opt-160:dd8028,[bad opt]> (DF) [tos 0x2,ECT(0)]  (ttl 57, id 13127, len 1452,
bad cksum ed38!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.44760 >
192.168.0.223.23272: SFP [bad tcp cksum 2103!] 1779529114:1779529118(4) ack
3457408450 win 17576 <[bad opt]> (DF) (ttl 57, id 11973, len 52, bad cksum f734!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.13496 >
192.168.0.223.32768: SFR 4634:6062(1428) win 12755 [!RST+
\000\000\022\032\026\002BC\033\0071\3233e9\020\245\235\013c\310`\203\302\310F\032\024a`]
(DF) [tos 0x2,ECT(0)]  (ttl 57, id 12006, len 1452, bad cksum f199!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.228.88.2.18847 >
192.168.0.223.16454: SFRPW [bad tcp cksum 214f!] 621281275:621281303(28) ack
2959382016 win 28240 urg 49170 [RST
I\237@F%\007\377\373\260d\226\000\010\277nP\003\273\300\022\006\200J\000<@\000b]
(DF) (ttl 118, id 64278, len 48, bad cksum 170b!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.60325 >
192.168.0.223.21544: SRW [bad hdr length] (DF) (ttl 57, id 12009, len 52, bad
cksum f710!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 217.0.157.40.12634 >
192.168.0.223.48011: SRP [bad hdr length] (DF) (ttl 118, id 51157, len 52, bad
cksum 606!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 213.164.67.210.15620 >
192.168.0.223.30118: SFE 1813471689:1813471813(124) win 38522 urg 29523 (DF)
[tos 0x10]  (ttl 46, id 13841, len 164, bad cksum 3bfd!)
0:e0:7d:74:ab:cc 0:e0:7d:74:ab:cd 0800 1514: 62.128.28.139.15620 >
192.168.0.223.30118: SFE [bad tcp cksum 8162!] 1813471689:1813471701(12) win
38522 urg 29523 (DF) (ttl 57, id 12029, len 52, bad cksum f6fc!)



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.