crazyscot: Me at an outside broadcast (Default)
posted by [personal profile] crazyscot at 04:36pm on 27/10/2013 under
Previously...

I played around with MTUs, which might have helped a little but there aren't many data points.

My current suspicion is that my own slightly wacky network setup may have been to blame.
  • I had been running two different IP nets on the same physical net.
  • Clients were allocated an address by DHCP (running on my server), server was DNS and gateway (amongst other things) to the second logical net. (My server has but a single ethernet interface.)
  • Only my server and the DSL modem were on the second logical net.
  • The DSL modem was itself running NAT.


So my desktop was behind double-NAT, which the internets (and my colleague Thomas) pointed out were likely to break many things. Having moved the DSL modem to be on the same part of RFC1918-space as the rest of the wired net, I have started using the DSL modem as a direct gateway for desktop clients - and it all works much better. I don't think I've had a single blackhole event since making the change a couple of days ago.

The only downside that I can see is that I no longer have the fine-grained firewall control that I enjoyed with iptables. Right?

Reply

From:
Anonymous
OpenID
Identity URL: 
User
Account name:
Password:
If you don't have an account you can create one now.
Subject:
HTML doesn't work in the subject.

Message:

 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.

April

SunMonTueWedThuFriSat
            1
 
2
 
3
 
4
 
5 6
 
7
 
8
 
9
 
10
 
11 12
 
13
 
14
 
15
 
16
 
17
 
18
 
19
 
20
 
21
 
22
 
23
 
24
 
25
 
26
 
27
 
28
 
29
 
30