This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


[Xen-users] DNAT TCP checksum error

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] DNAT TCP checksum error
From: "jean-luc.voisin" <jean-luc.voisin@xxxxxxxxxxxxxxx>
Date: Fri, 31 Mar 2006 15:46:10 +0200 (CEST)
Delivery-date: Fri, 31 Mar 2006 13:48:00 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Reply-to: jean-luc.voisin@xxxxxxxxxxxxxxx
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx

Hi all,

I'm running xen on gentoo since few months without problems. I recently installed shorewall (firewall) on domU. This domain has 3 network interfaces. One (eth1) is connected to internet through a cable modem. other are dmz (eth2) and internal network (eth0). I configured shorewall to accept and nat http connections from net zone (internet) to my smtp gateway in DMZ. These kind of connections doesn't work with xen. I ran ethereal on my laptop which simulated http requests from eth1 subnet and I found that tcp packets (replies) sent by the firewall have checksums errors.

Then I checked in bugzilla and found a patch for a similar bug(447). Source code seems to be correct regarding this patch. The linux kernel is : linux, xen version 3.0.1, gentoo package : xen-sources- (02 Mar 2006)

Any ideas ?






Xen-users mailing list
<Prev in Thread] Current Thread [Next in Thread>