Date: Thu, 5 Jan 2006 13:59:17 +0100 From: Kristian M <none@kristian--struer.net.lh.bsd-dk.dk> To: bsd-dk@bsd-dk.dk Subject: Re: SV: Mystik omkring localhost
Det havde jeg faktisk tænkt på, fik det bare aldrig gjort.
Her er et eksempel med ping:
et godt stykke nede seq 28 starter vi fra:
13:52:26.944193 IP localhost > localhost: icmp 64: echo request seq 28
13:52:26.944204 IP localhost > localhost: icmp 64: echo reply seq 28
13:52:27.954209 IP localhost > localhost: icmp 64: echo request seq 29
13:52:27.954222 IP localhost > localhost: icmp 64: echo reply seq 29
13:52:28.964224 IP localhost > localhost: icmp 64: echo request seq 30
13:52:28.964236 IP localhost > localhost: icmp 64: echo reply seq 30
13:52:29.974242 IP localhost > localhost: icmp 64: echo request seq 31
13:52:29.974254 IP localhost > localhost: icmp 64: echo reply seq 31
13:52:30.984322 IP localhost > localhost: icmp 64: echo request seq 32
13:52:30.984339 IP localhost > localhost: icmp 64: echo reply seq 32
13:52:31.994272 IP localhost > localhost: icmp 64: echo request seq 33
13:52:31.994285 IP localhost > localhost: icmp 64: echo reply seq 33
13:52:33.004304 IP localhost > localhost: icmp 64: echo request seq 34
13:52:33.004316 IP localhost > localhost: icmp 64: echo reply seq 34
13:52:34.014305 IP localhost > localhost: icmp 64: echo request seq 35
13:52:34.014317 IP localhost > localhost: icmp 64: echo reply seq 35
13:52:35.024317 IP localhost > localhost: icmp 64: echo request seq 36
13:52:35.024329 IP localhost > localhost: icmp 64: echo reply seq 36
13:52:36.034336 IP localhost > localhost: icmp 64: echo request seq 37
13:52:37.044347 IP localhost > localhost: icmp 64: echo request seq 38
13:52:38.054367 IP localhost > localhost: icmp 64: echo request seq 39
13:52:39.064379 IP localhost > localhost: icmp 64: echo request seq 40
13:52:40.074395 IP localhost > localhost: icmp 64: echo request seq 41
13:52:41.084449 IP localhost > localhost: icmp 64: echo request seq 42
13:52:42.094432 IP localhost > localhost: icmp 64: echo request seq 43
13:52:43.104456 IP localhost > localhost: icmp 64: echo request seq 44
13:52:44.114463 IP localhost > localhost: icmp 64: echo request seq 45
13:52:45.124472 IP localhost > localhost: icmp 64: echo request seq 46
13:52:46.134491 IP localhost > localhost: icmp 64: echo request seq 47
13:52:47.144502 IP localhost > localhost: icmp 64: echo request seq 48
med ved seq 37 gider (kernen?) bare ikke svare længere, og efter noget tid, jamen så begynder den igen at svare tilbage på pakkerne.
Her prøver jeg så at spørge den om google.com:
ns11# host google.com 127.0.0.1
Using domain server:
Name: 127.0.0.1
Address: 127.0.0.1#53
Aliases:
google.com has address 72.14.207.99
google.com has address 64.233.187.99
Using domain server:
Name: 127.0.0.1
Address: 127.0.0.1#53
Aliases:
Using domain server:
Name: 127.0.0.1
Address: 127.0.0.1#53
Aliases:
google.com mail is handled by 10 smtp1.google.com.
google.com mail is handled by 10 smtp2.google.com.
google.com mail is handled by 10 smtp3.google.com.
google.com mail is handled by 10 smtp4.google.com.
Der virkede det ligefrem, hvad siger tcpdump:
13:55:57.926627 IP localhost.60110 > localhost.domain: 27331+ A? google.com. (28)
13:55:58.301166 IP localhost.domain > localhost.60110: 27331 2/4/0 A 64.233.187.99, A 72.14.207.99 (132)
13:55:59.177736 IP localhost.62994 > localhost.domain: 59122+ PTR? 99.187.233.64.in-addr.arpa. (44)
13:56:00.146107 IP localhost.domain > localhost.62994: 59122 NXDomain 0/1/0 (104)
13:56:00.146381 IP localhost.63332 > localhost.domain: 59123+ PTR? 99.207.14.72.in-addr.arpa. (43)
13:56:00.481716 IP localhost.domain > localhost.63332: 59123 NXDomain 0/1/0 (103)
13:56:02.927605 IP localhost.60110 > localhost.domain: 27331+ A? google.com. (28)
13:56:02.928048 IP localhost.domain > localhost.60110: 27331 2/4/0 A 72.14.207.99, A 64.233.187.99 (132)
13:56:02.928988 IP localhost.55727 > localhost.domain: 16922+ AAAA? google.com. (28)
13:56:03.036945 IP localhost.domain > localhost.55727: 16922 0/1/0 (78)
13:56:03.037901 IP localhost.56564 > localhost.domain: 6827+ MX? google.com. (28)
13:56:03.146122 IP localhost.domain > localhost.56564: 6827 4/4/4 MX smtp1.google.com. 10, MX[|domain]
Okay så prøver jeg at gøre det igen her ½ minut efter:
ns11# host google.com 127.0.0.1
;; connection timed out; no servers could be reached
virker ikke tcpdump siger:
13:57:44.995543 IP localhost.65038 > localhost.domain: 61224+ A? google.com. (28)
13:57:44.996178 IP localhost.domain > localhost.65038: 61224 2/4/0 A 64.233.187.99, A 72.14.207.99 (132)
13:57:49.999235 IP localhost.65038 > localhost.domain: 61224+ A? google.com. (28)
13:57:49.999714 IP localhost.domain > localhost.65038: 61224 2/4/0 A 72.14.207.99, A 64.233.187.99 (132)
det ku godt se ud somom at den rent faktisk svare (named) men at mit host program ikke får dataerne. Det ser det jo også ud til i mit named log, hvor det er det samme der kommer frem, det virker bare somom at svaret aldrig kommer tilbage til host programmet.
On Thu, 5 Jan 2006 13:49:58 +0100
Michael Knudsen <none@e--molioner.dk.lh.bsd-dk.dk> wrote:
> Quoting Kristian M (kristian@struer.net):
> > Anyways, det forklare ikke mit mærkelige pakke tab :(
>
> Har du proevet at tcpdumpe paa lo0?
>
> Mvh. Michael.
> --
> Winter meant the coming of the lazy wind, which couldn't be bothered to
> blow around people and blew right through them instead.
> -- (Terry Pratchett, Wyrd Sisters)
This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:55 CET