[plug] Kernel 2.4.4 and accessing *some* SSL web sites.

James Bromberger james at rcpt.to
Tue May 22 20:27:38 WST 2001


Has anyone had any intermittent problems with accessing some HTTPS web 
sites (port 443)?  I have a pair of linux boxen (Debian, naturally) both 
of which have the 2.4 kernel series on them (as I described last week 
when I was looking at PPTP, which turned out to be my local firewall 
at home *cough*). I can't seem to telnet to port 443 on some web servers, 
yet surprisingly the hosts behind the masquerading firewall I am 
trying to get working have no trouble at all if they attempt to connect 
to port 443.

Now, this may seem insignificant, until one uses the Squid proxy that is 
sitting on one of these machines. I did a tcpdump on the gateway 
and tried to connect to the server I am trying to talk to, and can see 
my outgoing syn packets going out, but no response coming back in. I can 
connect to the same server with the same process from other boxes running 
2.2.19 and 2.0.36, but not from this machine (2.4.x) on different networks. 
I can connect fine from masqueraded workstations. I can connect to port 80 
(normal HTTP port) with no problems. 

My telnet session that I am using as a test is immediately rejected:

  $ telnet bob.bankwest.com.au 443
  Trying 203.19.158.31...
  telnet: Unable to connect to remote host: Connection refused


Which at a glance tells me that there is nothing listening on that port...

*shrug* 

TIA to anyone who cares to throw in their five cents...

  James
-- 
 James Bromberger <james_AT_rcpt.to> www.rcpt.to/~james

       * *  C u in Bordeaux - 1st Debian Conference, July 2001 * * 
 Remainder moved to http://www.rcpt.to/~james/james/sig.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <http://lists.plug.org.au/pipermail/plug/attachments/20010522/09d205b5/attachment.pgp>


More information about the plug mailing list