Skip to content

Rough Book

random musings

Menu
  • About Me
  • Contact
  • Projects
    • bAdkOde
    • CherryBlossom
    • FXCalendar
    • Sulekha
Menu

Flu shot and bizarre network issues

Posted on October 27, 2009October 27, 2009 by vivin

This last weekend I had drill and the medics gave us the seasonal-flu mist-vaccine. It's the one where they squirt gooey, inactive virus up your nose. I've had the vaccine before without any adverse side-effects. Yeah, not this time. I got the shot on Saturday and I was fine on Sunday. Not so on Monday. I woke up a few times in the middle of the night with a bit of a fever, but I figured that it would just go away. Yeah, didn't happen. On Monday morning I felt like I had been run over by a semi. My throat felt like I had swallowed bits of broken glass. Needless to say, I didn't go to work. I was bedridden most of the day, but towards the end I felt a little better. I tried to get a little work done but I wasn't too successful since I had a hard time concentrating.

By around seven or eight in the evening I was checking my email and I realized that Gmail wasn't picking up any mail from vivin.net. I thought that courier-imap might not be running, but it was. Gmail complained that the connection was timing out. Odd, because I hadn't made any changes at all recently other than an fsck after a power failure. I decided to try out the POP3 tester over here and I also got a timeout error. However, when I did a command-line test of the POP3 server like so:

[sourcecode]
openssl s_client -connect localhost:995
[/sourcecode]

Everything seemed fine. Furthermore, this problem seemed to be limited to both my FreeBSD servers. My Linux box seemed to be running fine. I tried a bunch of things. I restarted both machines, restarted the network interfaces, made sure firewalls weren't running, reset my router... nothing seemed to work. Every time I tested the connection to the machines (using this awesome tool here), the connections would time out. What was even stranger was that a netstat showed connections to be in a SYN_RCVD state, which meant that the box had accepted the connection. It's just that the response wasn't getting out. Eventually I was so desperate that I decided to reinstall FreeBSD on one of the machines. I also posted to a BSD forum asking for help. I figured that next evening I could probably fix it after work.

Well, next morning I still felt terrible, but it wasn't so bad. My throat wasn't hurting as much and I didn't have that much of a headache so I was able to work from home. Oh, and the installation had completed. I set everything up quickly and gave it a whirl. Nope. Same problem. Yeah, I was getting pretty frustrated and annoyed at this point. I went so far as to contemplate wiping my beloved FreeBSD off both machines and putting Linux on there. I updated my post at the forum and I checked on it periodically throughout the day as I kept working. Finally, a kind soul popped in to help me out. He helped me troubleshoot using tcpdump and I was able to confirm that the machine was responding to the incoming connection, but it wasn't going out. Finally, he asked me to check the routing information. I'm not that well-versed with that so I didn't see the problem until he pointed it out. The routing information was all wrong!

See, I have two network interfaces on the box. One for my internal network, and one pointing to the outside world. The one pointing to the outside world is statically configured, whereas the one for my internal network picks up its configuration from my AirPort Extreme router. What was happening was that dhclient was overwriting the route information. So when the machine tried to respond back, it saw its default route as the internal router, and not my modem! I had to update my dhclient.conf and force the router address to the correct one:

[sourcecode]
backoff-cutoff 2;
initial-interval 1;
retry 10;
select-timeout 0;
timeout 30;

interface "vr0" {
supersede routers 209.x.y.54;
supersede host-name "enterprise";
supersede domain-name "xxxx.xxx";
request subnet-mask,
domain-name-servers;

require subnet-mask,
domain-name-servers;
}
[/sourcecode]

The important line here is the one that says supersede routers 209.x.y.54; (I've hidden the actual numbers from teh hax0rs). This tells the dhclient to override the router information that it gets from the DHCP server. Once I did this, everything started working again. My thanks to jggimi at DaemonForums!

3 thoughts on “Flu shot and bizarre network issues”

  1. Pingback: Untaken Road » Blog Archive » Flu shot and bizarre network issues
  2. Nick says:
    October 27, 2009 at 9:32 pm

    You can get the IP address by doing a simple tracerotue to vivin.net 😛

    Reply
  3. vivin says:
    October 28, 2009 at 9:49 am

    @Nick
    Or an nslookup :p I just want to deter the script kiddies. But even then. I think I have my box decently locked down. No FTP or Telnet. SSH doesn’t allow root logins and only lets my username in. Oh, and strong passwords 🙂

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Archives

  • February 2023
  • April 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • May 2018
  • April 2018
  • March 2018
  • February 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • June 2017
  • March 2017
  • November 2016
  • August 2016
  • July 2016
  • June 2016
  • February 2016
  • August 2015
  • July 2014
  • June 2014
  • March 2014
  • December 2013
  • November 2013
  • September 2013
  • July 2013
  • June 2013
  • March 2013
  • February 2013
  • January 2013
  • October 2012
  • July 2012
  • June 2012
  • January 2012
  • December 2011
  • November 2011
  • October 2011
  • September 2011
  • July 2011
  • June 2011
  • May 2011
  • February 2011
  • January 2011
  • December 2010
  • November 2010
  • October 2010
  • September 2010
  • July 2010
  • June 2010
  • May 2010
  • April 2010
  • March 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009
  • August 2009
  • July 2009
  • May 2009
  • April 2009
  • March 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008
  • October 2008
  • August 2008
  • March 2008
  • February 2008
  • November 2007
  • July 2007
  • June 2007
  • May 2007
  • March 2007
  • December 2006
  • October 2006
  • September 2006
  • August 2006
  • June 2006
  • April 2006
  • March 2006
  • January 2006
  • December 2005
  • November 2005
  • October 2005
  • September 2005
  • August 2005
  • July 2005
  • June 2005
  • May 2005
  • April 2005
  • February 2005
  • October 2004
  • September 2004
  • August 2004
  • July 2004
  • June 2004
  • May 2004
  • April 2004
  • March 2004
  • February 2004
  • January 2004
  • December 2003
  • November 2003
  • October 2003
  • September 2003
  • July 2003
  • June 2003
  • May 2003
  • March 2003
  • February 2003
  • January 2003
  • December 2002
  • November 2002
  • October 2002
  • September 2002
  • August 2002
  • July 2002
  • June 2002
  • May 2002
  • April 2002
  • February 2002
  • September 2001
  • August 2001
  • April 2001
  • March 2001
  • February 2001
  • January 2001
  • December 2000
  • November 2000
  • October 2000
  • August 2000
  • July 2000
  • June 2000
  • May 2000
  • March 2000
  • January 2000
  • December 1999
  • November 1999
  • October 1999
  • September 1999
©2023 Rough Book | Built using WordPress and Responsive Blogily theme by Superb
All original content on these pages is fingerprinted and certified by Digiprove