Operating System Tech Support <os@qnx.com> wrote:
nospam94@parse.com> > wrote in message news:9qn7si$opl$> 1@inn.qnx.com> …
nospam94@parse.com > wrote:
Operating System Tech Support <> os@qnx.com> > wrote:
nospam94@parse.com> > wrote in message news:9q1gk6$dr2$> 1@inn.qnx.com> …
Operating System for Tech Supp <> os@qnx.com> > wrote:
nospam94@parse.com > wrote:
Also, it appears to be sensitive to the amount of compression. With -z0,
it works “best”, although it still doesn’t do anything…
Just a quick sanity check, have you opened port 2401 for outgoing traffic?
Yuppers. Like I said in a this thread (way back when we first started it )
I was able to get a few files “manually” by specifying their full names.
What kind of firewall do you have (brand or OS+firewalling technique). I
have a “hunch” it may have something to do with FIN timing.
openBSD, with ipfrules set to log all outgoing and incoming 2401 access. Here’s
an example of logs from the “-z0” case and the corresponding log from the openBSD
box. I’ve marked the “CVS” logs with “CVS>”, the QNX 6 commands with “QNX6>”,
and the openBSD logs with “BSD>”
QNX6> [columbia@ttyp2] export CVSROOT=":pserver:anoncvs@cvs.qnx.com:/cvs"
QNX6> [columbia@ttyp2] cvs login
CVS> (Logging in to anoncvs@cvs.qnx.com)
CVS> CVS password:
At this point I entered “anoncvs” and hit return. Switching quickly to the openBSD
box, I noticed the following IPF logs:
BSD> Oct 19 15:06:14 gateway ipmon[21281]: 15:06:13.909833 tun0 @0:32 p 206.191.28.128,10765 → 209.226.137.124,2401 PR tcp len 20 60 -S OUT
BSD> Oct 19 15:06:14 gateway ipmon[21281]: 15:06:13.974683 tun0 @0:59 p 209.226.137.124,2401 → 10.0.0.5,1599 PR tcp len 20 60 -AS IN
BSD> Oct 19 15:06:14 gateway ipmon[21281]: 15:06:13.975073 tun0 @0:32 p 206.191.28.128,10765 → 209.226.137.124,2401 PR tcp len 20 52 -A OUT
BSD> Oct 19 15:06:14 gateway ipmon[21281]: 15:06:13.975183 tun0 @0:32 p 206.191.28.128,10765 → 209.226.137.124,2401 PR tcp len 20 79 -AP OUT
BSD> Oct 19 15:06:14 gateway ipmon[21281]: 15:06:14.026106 tun0 @0:59 p 209.226.137.124,2401 → 10.0.0.5,1599 PR tcp len 20 52 -A IN
Then, a pwd to show the current source location:
QNX6> [columbia@ttyp2] pwd
QNX6> /source/qssl/cvs
Finally, a “checkout” command with logging to illustrate the problem:
QNX6> [columbia@ttyp2] cvs -z0 -t checkout lib
CVS> cvs checkout: notice: main loop with CVSROOT=:pserver:anoncvs@cvs.qnx.com:/cvs
CVS> S-> do_module (lib, Updating, , )
CVS> S-> Create_Admin (., lib, /cvs/lib, , , 0, 0)
CVS> S-> unlink(./CVS/Tag)
CVS> → ParseInfo(/cvs/CVSROOT/rcsinfo, lib, ALL)
CVS> S<- Create_Admin
CVS> S-> fopen(/cvs/CVSROOT/history,a)
CVS> S-> unlink(./CVS/Entries.Static)
CVS> S-> checkout (/cvs/lib/Makefile,v, 1.1.1.1, , (function))
CVS> S-> server_register(Makefile, 1.1.1.1, , , , , )
CVS> S-> Register(Makefile, 1.1.1.1, , , )
CVS> S-> Create_Admin (c, lib/c, /cvs/lib/c, , , 0, 0)
CVS> S-> unlink(c/CVS/Tag)
CVS> → ParseInfo(/cvs/CVSROOT/rcsinfo, lib/c, ALL)
CVS> S<- Create_Admin
CVS> S-> unlink(c/CVS/Entries.Static)
CVS> S-> checkout (/cvs/lib/c/Makefile,v, 1.1.1.1, , (function))
CVS> S-> server_register(Makefile, 1.1.1.1, , , , , )
CVS> S-> Register(Makefile, 1.1.1.1, , , )
CVS> S-> checkout (/cvs/lib/c/asmoff.c,v, 1.1.1.1, , (function))
CVS> S-> server_register(asmoff.c, 1.1.1.1, , , , , )
CVS> S-> Register(asmoff.c, 1.1.1.1, , , )
CVS> S-> checkout (/cvs/lib/c/common.mk,v, 1.1.1.1, , (function))
CVS> S-> server_register(common.mk, 1.1.1.1, , , , , )
At this point, it hangs. Switching to the BSD box shows:
BSD> Oct 19 15:07:06 gateway ipmon[21281]: 15:07:05.728352 tun0 @0:32 p 206.191.28.128,10766 → 209.226.137.124,2401 PR tcp len 20 60 -S OUT
BSD> Oct 19 15:07:06 gateway ipmon[21281]: 15:07:05.767476 tun0 @0:59 p 209.226.137.124,2401 → 10.0.0.5,1603 PR tcp len 20 60 -AS IN
BSD> Oct 19 15:07:06 gateway ipmon[21281]: 15:07:05.767899 tun0 @0:32 p 206.191.28.128,10766 → 209.226.137.124,2401 PR tcp len 20 52 -A OUT
BSD> Oct 19 15:07:06 gateway ipmon[21281]: 15:07:05.769172 tun0 @0:32 p 206.191.28.128,10766 → 209.226.137.124,2401 PR tcp len 20 71 -AP OUT
BSD> Oct 19 15:07:06 gateway ipmon[21281]: 15:07:05.806366 tun0 @0:59 p 209.226.137.124,2401 → 10.0.0.5,1603 PR tcp len 20 52 -A IN
After the novelty wore off, I hit ^C:
CVS> cvs [checkout aborted]: received interrupt signal
And got this traffic on the BSD box:
BSD> Oct 19 15:07:15 gateway ipmon[21281]: 15:07:14.667589 tun0 @0:32 p 206.191.28.128,10766 → 209.226.137.124,2401 PR tcp len 20 52 -AF OUT
BSD> Oct 19 15:07:15 gateway ipmon[21281]: 15:07:14.832825 tun0 @0:59 p 209.226.137.124,2401 → 10.0.0.5,1603 PR tcp len 20 52 -A IN
Do you folks have the ability to check the logs on your end to see if there’s anything funny being reported?
My IP address is 206.191.28.128 if you can see that in the logs…
Do you have the same problem, without the firewall in place (or if your box
is in a “DMZ”)
Kirk Russell and I tried it with the IPF rules allowing everything to go everywhere (i.e.,
no firewall at all) on the openBSD box, and got the same results…
Other than that, I can’t try it without the firewall 'cuz it’s my PPPoE server
Weird, huh?
-RK
Robert Krten, PARSE Software Devices +1 613 599 8316.
Realtime Systems Architecture, Consulting and Training at www.parse.com