Re: [tkined] IP monitor

Aaron Dewell (dewell@woods.net)
Wed, 24 Sep 1997 12:16:58 -0800 (AKDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Erik Schoenfelder: "Re: [tkined] IP monitor"
Previous message: Juergen Schoenwaelder: "Re: [tkined] scotty ver"
In reply to: Erik Schoenfelder: "Re: [tkined] IP monitor"
Next in thread: Erik Schoenfelder: "Re: [tkined] IP monitor"

It happens the same with all targets. The .5 host happens to be
the one I'm running it from. So, I would presume it's ntping
that is broken.

It has actually not worked since at least 2.1.42 or something
like that. Possibly 2.1.48. I don't exactly recall, but it has
been a while since it hasn't worked.

tcpdump stuff, first for linux 2.0.27 target:

12:08:21.300784 209.112.190.5 > 209.112.190.3: icmp: echo request
12:08:21.301899 209.112.190.3 > 209.112.190.5: icmp: echo reply

this one is solaris 2.5.1:

12:08:25.785993 209.112.190.5 > 209.112.190.2: icmp: echo request
12:08:25.786504 209.112.190.2 > 209.112.190.5: icmp: echo reply (DF)

and this one is a cisco:

12:08:31.921276 209.112.190.5 > 209.112.190.1: icmp: echo request
12:08:31.923206 209.112.190.1 > 209.112.190.5: icmp: echo reply

All with the same result from ntping.

Erik Schoenfelder <schoenfr@gaertner.de> wrote:
> Well, I'd say ntping sends mangled packets or the 209.112.190.5 host
> sends mangled responses. (i understand ntping runs on a linux box, but
> the the target is a ???).
>
> One diagnostic would be: are other targets ping'albe with ntping and
> only this one target does not work (indicating the target is broken),
> or is ntping generally unable to ping other hosts from this linux
> platform (indicating ntping is broken) ?
>
> Another good try would be a tcpdump to check what packets are actual
> on the net. are 'echo requests' ok ? are the 'echo responses' ok ?
>
> And can additionally check ntping with linux kernel greater than
> ~2.1.50 at home (hopefully before the weekend), because it's sure
> possible something changed in the networking layer.

_______________________________________________________________________
|Aaron Dewell ===> dewell@woods.net |
|aka local guru ===> dewell@greatland.net |
|http://www.woods.net/~dewell http://www.woods.net/ |
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--
!! This message is brought to you via the `tkined & scotty' mailing list.
!! Please do not reply to this message to unsubscribe. To subscribe or
!! unsubscribe, send a mail message to <tkined-request@ibr.cs.tu-bs.de>.
!! See http://wwwsnmp.cs.utwente.nl/~schoenw/scotty/ for more information.

Next message: Erik Schoenfelder: "Re: [tkined] IP monitor"
Previous message: Juergen Schoenwaelder: "Re: [tkined] scotty ver"
In reply to: Erik Schoenfelder: "Re: [tkined] IP monitor"
Next in thread: Erik Schoenfelder: "Re: [tkined] IP monitor"