LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page how to forward port to interface
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
Page 2 of 2 1 2
  Search this Thread
Old 07-30-2015, 01:28 AM   #16
mfoley
Senior Member
 
Registered: Oct 2008
Location: Columbus, Ohio USA
Distribution: Slackware
Posts: 2,555

Original Poster
Rep: Reputation: 177Reputation: 177

Quote:
Originally Posted by lazydog View Post
Sounds like the problem is with your phone and not the network. For some reason your phone doesn't know how to get from point A to point B until you show it.
Except this isn't just my Android, it is that and all the iPhones in the office. When I plug the WAP into an off-the-shelf ASUS router, all the phones work.

More testing ...

First interesting bit is that my Android connected right away and had no problem getting mail or connecting to the Internet. The state I left the Android in 6 days ago was that I had connected to the firewall (using its public IP) via connectBot/ssh at which point mail and browser started working (see my previous post). The surprising part was the Android "remembered" that 6 days later and things still worked.

I restarted the android with tcpdump running on the firewall. No more mail/browser connection, of course, and I got the same messages as before (192.168.1.208 is the IP of the Android):

Code:
$ tcpdump -tttt -v -i eth2 host 192.168.1.208
2015-07-29 15:18:43.420516 IP (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto UDP (17), length 328)
    192.168.1.1.bootps > 192.168.1.208.bootpc: BOOTP/DHCP, Reply, length 300, xid 0x56967ac9, secs 65535, Flags [none]
          Your-IP 192.168.1.208
          Client-Ethernet-Address 78:d6:f0:c1:55:e7 (oui Unknown)
          Vendor-rfc1048 Extensions
            Magic Cookie 0x63825363
            DHCP-Message Option 53, length 1: ACK
            Server-ID Option 54, length 4: 192.168.1.1
            Lease-Time Option 51, length 4: 43200
            Subnet-Mask Option 1, length 4: 255.255.255.0
            Default-Gateway Option 3, length 4: 192.168.1.1
            Domain-Name-Server Option 6, length 8: dns-cac-lb-01.rr.com,dns-cac-lb-02.rr.com
2015-07-29 15:18:46.200837 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.1 tell 192.168.1.208, length 46
2015-07-29 15:18:46.200851 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.1.1 is-at c8:3a:35:d3:7a:7a (oui Unknown), length 28
2015-07-29 15:18:56.223717 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-01.rr.com tell 192.168.1.208, length 46
2015-07-29 15:18:57.223762 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-01.rr.com tell 192.168.1.208, length 46
2015-07-29 15:18:58.238012 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-01.rr.com tell 192.168.1.208, length 46
2015-07-29 15:19:01.216264 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-02.rr.com tell 192.168.1.208, length 46
2015-07-29 15:19:02.221702 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-02.rr.com tell 192.168.1.208, length 46
2015-07-29 15:19:03.223649 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has dns-cac-lb-02.rr.com tell 192.168.1.208, length 46
I never trapped that bootps part before, probably because I didn't have tcpdump running when the Android restarted. Interesting that it says "Domain-Name-Server Option 6, length 8: dns-cac-lb-01.rr.com,dns-cac-lb-02.rr.com". Why? I would have thought it would get the DNS from the DHCP server. That's probably why attached laptops work because they use the name server from the DHCP server. And why does it work when the WAP is connected to an off-the-shelf router? Does the router somehow know how to resolve dns-cac-lb-01.rr.com on the cell phone's behalf?

I did download a ping app to the Android and did successfully ping 192.168.1.1 - interestingly, nothing recorded by tcpdump during the ping. Does tcpdump need a special switch for icmp?

After connecting to the firewall using connectBot evertything (mail, browser) once again started working. Just for grins, this time I tried ssh'ing to 129.168.1.1 instead of the public IP -- worked the same.

The following is attempting to connect from an iPhone with DHCP assigned IP 192.168.1.158 with similar results:

Code:
    1 $ tcpdump -tttt -v -i eth2 host 192.168.1.158
    2 2015-07-29 15:13:07.663085 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.254 tell 192.168.1.158, length 46
    3 2015-07-29 15:13:07.698160 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.254 tell 192.168.1.158, length 46
    4 2015-07-29 15:13:07.701162 IP (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto UDP (17), length 328)
    5     192.168.1.1.bootps > 192.168.1.158.bootpc: BOOTP/DHCP, Reply, length 300, xid 0x43c9574f, Flags [none]
    6    Your-IP 192.168.1.158
    7    Client-Ethernet-Address f0:99:bf:49:b2:47 (oui Unknown)
    8    Vendor-rfc1048 Extensions
    9      Magic Cookie 0x63825363
   10      DHCP-Message Option 53, length 1: ACK
   11      Server-ID Option 54, length 4: 192.168.1.1
   12      Lease-Time Option 51, length 4: 86400
   13      Subnet-Mask Option 1, length 4: 255.255.255.0
   14      Default-Gateway Option 3, length 4: 192.168.1.1
   15      Domain-Name-Server Option 6, length 8: dns-cac-lb-01.rr.com,dns-cac-lb-02.rr.com
   16 2015-07-29 15:13:07.711882 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.158 tell 192.168.1.158, length 46
   17 2015-07-29 15:13:07.753795 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 169.254.255.255 tell 192.168.1.158, length 46
   18 2015-07-29 15:13:08.109485 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.1 tell 192.168.1.158, length 46
   19 2015-07-29 15:13:08.109507 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.1.1 is-at c8:3a:35:d3:7a:7a (oui Unknown), length 28
   20 2015-07-29 15:13:08.109510 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 169.254.255.255 tell 192.168.1.158, length 46
   21 2015-07-29 15:13:08.412607 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 169.254.255.255 tell 192.168.1.158, length 46
   22 2015-07-29 15:13:08.755464 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 169.254.255.255 tell 192.168.1.158, length 46
   23 2015-07-29 15:13:08.794090 IP (tos 0xc0, ttl 1, id 11882, offset 0, flags [DF], proto IGMP (2), length 40, options (RA))
   24     192.168.1.158 > igmp.mcast.net: igmp v3 report, 1 group record(s) [gaddr 224.0.0.251 to_ex, 0 source(s)]
   25 2015-07-29 15:13:09.111541 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 169.254.255.255 tell 192.168.1.158, length 46
   26 2015-07-29 15:13:09.111562 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.158 tell 192.168.1.158, length 46
   27 2015-07-29 15:13:09.122612 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.1 tell 192.168.1.158, length 46
   28 2015-07-29 15:13:09.122633 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.1.1 is-at c8:3a:35:d3:7a:7a (oui Unknown), length 28
   29 2015-07-29 15:13:09.294267 IP (tos 0x0, ttl 64, id 34622, offset 0, flags [none], proto UDP (17), length 44)
   30     192.168.1.158.16403 > commnat-nk11.gc.apple.com.16384: UDP, length 16
   31 2015-07-29 15:13:09.294301 IP (tos 0x0, ttl 64, id 21337, offset 0, flags [none], proto UDP (17), length 44)
   32     192.168.1.158.16403 > commnat-nk11.gc.apple.com.16385: UDP, length 16
   33 2015-07-29 15:13:09.294311 IP (tos 0x0, ttl 64, id 55482, offset 0, flags [none], proto UDP (17), length 44)
   34     192.168.1.158.16403 > cohort-nk11.gc.apple.com.16386: UDP, length 16
   35 2015-07-29 15:13:09.359809 IP (tos 0x0, ttl 47, id 0, offset 0, flags [DF], proto UDP (17), length 44)
   36     commnat-nk11.gc.apple.com.16385 > 192.168.1.158.16403: UDP, length 16
   37 2015-07-29 15:13:09.360121 IP (tos 0x0, ttl 47, id 0, offset 0, flags [DF], proto UDP (17), length 44)
   38     cohort-nk11.gc.apple.com.16386 > 192.168.1.158.16403: UDP, length 16
   39 2015-07-29 15:13:09.360903 IP (tos 0x0, ttl 47, id 0, offset 0, flags [DF], proto UDP (17), length 44)
   40     commnat-nk11.gc.apple.com.16384 > 192.168.1.158.16403: UDP, length 16
   41 2015-07-29 15:13:09.434559 IP (tos 0x0, ttl 64, id 25409, offset 0, flags [none], proto UDP (17), length 60)
   42     192.168.1.158.65331 > dns-cac-lb-01.rr.com.domain: 52455+ AAAA? imap.gmail.com. (32)
   43 2015-07-29 15:13:09.434593 IP (tos 0x0, ttl 64, id 38761, offset 0, flags [none], proto UDP (17), length 60)
   44     192.168.1.158.51700 > dns-cac-lb-01.rr.com.domain: 556+ A? imap.gmail.com. (32)
   45 2015-07-29 15:13:09.436947 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.1.1 tell 192.168.1.158, length 46
   46 2015-07-29 15:13:09.436968 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.1.1 is-at c8:3a:35:d3:7a:7a (oui Unknown), length 28
   47 2015-07-29 15:13:09.436972 IP (tos 0x0, ttl 64, id 30317, offset 0, flags [none], proto UDP (17), length 44)
   48     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   49 2015-07-29 15:13:09.436999 IP (tos 0xc0, ttl 64, id 15149, offset 0, flags [none], proto ICMP (1), length 72)
   50     rrcs-98-102-63-109.central.biz.rr.com > 192.168.1.158: ICMP rrcs-98-102-63-109.central.biz.rr.com udp port 16403 unreachable, length 52
   51  IP (tos 0x0, ttl 64, id 30317, offset 0, flags [none], proto UDP (17), length 44)
   52     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   53 2015-07-29 15:13:09.437280 IP (tos 0x0, ttl 64, id 13077, offset 0, flags [none], proto UDP (17), length 44)
   54     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   55 2015-07-29 15:13:09.437309 IP (tos 0xc0, ttl 64, id 15150, offset 0, flags [none], proto ICMP (1), length 72)
   56     rrcs-98-102-63-109.central.biz.rr.com > 192.168.1.158: ICMP rrcs-98-102-63-109.central.biz.rr.com udp port 16403 unreachable, length 52
   57  IP (tos 0x0, ttl 64, id 13077, offset 0, flags [none], proto UDP (17), length 44)
   58     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   59 2015-07-29 15:13:09.437313 IP (tos 0x0, ttl 64, id 38712, offset 0, flags [none], proto UDP (17), length 44)
   60     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   61 2015-07-29 15:13:09.437321 IP (tos 0xc0, ttl 64, id 15151, offset 0, flags [none], proto ICMP (1), length 72)
   62     rrcs-98-102-63-109.central.biz.rr.com > 192.168.1.158: ICMP rrcs-98-102-63-109.central.biz.rr.com udp port 16403 unreachable, length 52
   63  IP (tos 0x0, ttl 64, id 38712, offset 0, flags [none], proto UDP (17), length 44)
   64     192.168.1.158.16403 > rrcs-98-102-63-109.central.biz.rr.com.16403: UDP, length 16
   65 2015-07-29 15:13:09.439585 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 122)
   66     dns-cac-lb-01.rr.com.domain > 192.168.1.158.65331: 52455 2/0/0 imap.gmail.com. CNAME gmail-imap.l.google.com., gmail-imap.l.google.com. AAAA 2607:f8b0:4001:c06::6d (94)
   67 2015-07-29 15:13:09.439594 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 126)
   68     dns-cac-lb-01.rr.com.domain > 192.168.1.158.51700: 556 3/0/0 imap.gmail.com. CNAME gmail-imap.l.google.com., gmail-imap.l.google.com. A 209.85.147.108, gmail-imap.l.google.com. A 209.85.147.109 (98)
   69 2015-07-29 15:13:09.478561 IP (tos 0x0, ttl 64, id 49921, offset 0, flags [DF], proto TCP (6), length 64)
   70     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [S], cksum 0xc5af (correct), seq 1490980273, win 65535, options [mss 1460,nop,wscale 5,nop,nop,TS val 971136861 ecr 0,sackOK,eol], length 0
   71 2015-07-29 15:13:09.503580 IP (tos 0x0, ttl 42, id 1583, offset 0, flags [none], proto TCP (6), length 60)
   72     209.85.147.108.imaps > 192.168.1.158.50836: Flags [S.], cksum 0xffd6 (correct), seq 2344185002, ack 1490980274, win 42540, options [mss 1430,sackOK,TS val 1080424434 ecr 971136861,nop,wscale 7], length 0
   73 2015-07-29 15:13:09.610249 IP (tos 0x0, ttl 64, id 8489, offset 0, flags [DF], proto TCP (6), length 52)
   74     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xc3f7 (correct), ack 1, win 4121, options [nop,nop,TS val 971137022 ecr 1080424434], length 0
   75 2015-07-29 15:13:09.610630 IP (tos 0x0, ttl 64, id 14556, offset 0, flags [DF], proto TCP (6), length 217)
   76     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [P.], cksum 0x2f3b (correct), seq 1:166, ack 1, win 4121, options [nop,nop,TS val 971137024 ecr 1080424434], length 165
   77 2015-07-29 15:13:09.635651 IP (tos 0x0, ttl 42, id 1591, offset 0, flags [none], proto TCP (6), length 52)
   78     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0xd190 (correct), ack 166, win 341, options [nop,nop,TS val 1080424566 ecr 971137024], length 0
   79 2015-07-29 15:13:09.636931 IP (tos 0x0, ttl 42, id 1592, offset 0, flags [none], proto TCP (6), length 1470)
   80     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0x3724 (correct), seq 1:1419, ack 166, win 341, options [nop,nop,TS val 1080424567 ecr 971137024], length 1418
   81 2015-07-29 15:13:09.636946 IP (tos 0x0, ttl 42, id 1593, offset 0, flags [none], proto TCP (6), length 1470)
   82     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0x3efc (correct), seq 1419:2837, ack 166, win 341, options [nop,nop,TS val 1080424567 ecr 971137024], length 1418
   83 2015-07-29 15:13:09.636953 IP (tos 0x0, ttl 42, id 1594, offset 0, flags [none], proto TCP (6), length 735)
   84     209.85.147.108.imaps > 192.168.1.158.50836: Flags [P.], cksum 0x944d (correct), seq 2837:3520, ack 166, win 341, options [nop,nop,TS val 1080424567 ecr 971137024], length 683
   85 2015-07-29 15:13:09.646090 IP (tos 0x0, ttl 64, id 37426, offset 0, flags [DF], proto TCP (6), length 52)
   86     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xb7df (correct), ack 2837, win 4051, options [nop,nop,TS val 971137054 ecr 1080424567], length 0
   87 2015-07-29 15:13:09.777171 IP (tos 0x0, ttl 64, id 6647, offset 0, flags [DF], proto TCP (6), length 52)
   88     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xb518 (correct), ack 3520, win 4074, options [nop,nop,TS val 971137059 ecr 1080424567], length 0
   89 2015-07-29 15:13:09.782904 IP (tos 0x0, ttl 64, id 26733, offset 0, flags [DF], proto TCP (6), length 127)
   90     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [P.], cksum 0x7a96 (correct), seq 166:241, ack 3520, win 4096, options [nop,nop,TS val 971137074 ecr 1080424567], length 75
   91 2015-07-29 15:13:09.795697 IP (tos 0xc0, ttl 1, id 46834, offset 0, flags [DF], proto IGMP (2), length 40, options (RA))
   92     192.168.1.158 > igmp.mcast.net: igmp v3 report, 1 group record(s) [gaddr 224.0.0.251 to_ex, 0 source(s)]
   93 2015-07-29 15:13:09.847973 IP (tos 0x0, ttl 42, id 1627, offset 0, flags [none], proto TCP (6), length 52)
   94     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0xc280 (correct), ack 241, win 341, options [nop,nop,TS val 1080424778 ecr 971137074], length 0
   95 2015-07-29 15:13:09.940078 IP (tos 0x0, ttl 64, id 46438, offset 0, flags [DF], proto TCP (6), length 99)
   96     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [P.], cksum 0x4f09 (correct), seq 241:288, ack 3520, win 4096, options [nop,nop,TS val 971137349 ecr 1080424778], length 47
   97 2015-07-29 15:13:09.965120 IP (tos 0x0, ttl 42, id 1677, offset 0, flags [none], proto TCP (6), length 52)
   98     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0xc0c9 (correct), ack 288, win 341, options [nop,nop,TS val 1080424895 ecr 971137349], length 0
   99 2015-07-29 15:13:09.965169 IP (tos 0x0, ttl 42, id 1678, offset 0, flags [none], proto TCP (6), length 99)
  100     209.85.147.108.imaps > 192.168.1.158.50836: Flags [P.], cksum 0x77ed (correct), seq 3520:3567, ack 288, win 341, options [nop,nop,TS val 1080424895 ecr 971137349], length 47
  101 2015-07-29 15:13:09.966068 IP (tos 0x0, ttl 42, id 1679, offset 0, flags [none], proto TCP (6), length 144)
  102     209.85.147.108.imaps > 192.168.1.158.50836: Flags [P.], cksum 0x8876 (correct), seq 3567:3659, ack 288, win 341, options [nop,nop,TS val 1080424896 ecr 971137349], length 92
  103 2015-07-29 15:13:09.970986 IP (tos 0x0, ttl 64, id 484, offset 0, flags [DF], proto TCP (6), length 52)
  104     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xb1d5 (correct), ack 3567, win 4094, options [nop,nop,TS val 971137377 ecr 1080424895], length 0
  105 2015-07-29 15:13:09.971017 IP (tos 0x0, ttl 64, id 60895, offset 0, flags [DF], proto TCP (6), length 52)
  106     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xb17a (correct), ack 3659, win 4091, options [nop,nop,TS val 971137378 ecr 1080424896], length 0
  107 2015-07-29 15:13:09.985525 IP (tos 0x0, ttl 64, id 50498, offset 0, flags [DF], proto TCP (6), length 91)
  108     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [P.], cksum 0x7a2a (correct), seq 288:327, ack 3659, win 4096, options [nop,nop,TS val 971137394 ecr 1080424896], length 39
  109 2015-07-29 15:13:10.011226 IP (tos 0x0, ttl 42, id 1713, offset 0, flags [none], proto TCP (6), length 277)
  110     209.85.147.108.imaps > 192.168.1.158.50836: Flags [P.], cksum 0xd86d (correct), seq 3659:3884, ack 327, win 341, options [nop,nop,TS val 1080424941 ecr 971137394], length 225
  111 2015-07-29 15:13:10.121692 IP (tos 0x0, ttl 64, id 51806, offset 0, flags [DF], proto TCP (6), length 52)
  112     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [.], cksum 0xafb3 (correct), ack 3884, win 4088, options [nop,nop,TS val 971137527 ecr 1080424941], length 0
  113 2015-07-29 15:13:10.122334 IP (tos 0x0, ttl 64, id 21339, offset 0, flags [DF], proto TCP (6), length 229)
  114     192.168.1.158.50836 > 209.85.147.108.imaps: Flags [P.], cksum 0x9a97 (correct), seq 327:504, ack 3884, win 4096, options [nop,nop,TS val 971137530 ecr 1080424941], length 177
  115 2015-07-29 15:13:10.187978 IP (tos 0x0, ttl 42, id 1861, offset 0, flags [none], proto TCP (6), length 52)
  116     209.85.147.108.imaps > 192.168.1.158.50836: Flags [.], cksum 0xbce8 (correct), ack 504, win 350, options [nop,nop,TS val 1080425118 ecr 971137530], length 0
  117 2015-07-29 15:13:10.282195 IP (tos 0x0, ttl 64, id 47993, offset 0, flags [none], proto UDP (17), length 74)
  118     192.168.1.158.59446 > dns-cac-lb-02.rr.com.domain: 6406+ AAAA? feelinsonice-hrd.appspot.com. (46)
  119 2015-07-29 15:13:10.282221 IP (tos 0x0, ttl 64, id 39981, offset 0, flags [none], proto UDP (17), length 74)
  120     192.168.1.158.61388 > dns-cac-lb-02.rr.com.domain: 51667+ A? feelinsonice-hrd.appspot.com. (46)
  121 2015-07-29 15:13:10.282230 IP (tos 0x0, ttl 64, id 24392, offset 0, flags [none], proto UDP (17), length 59)
  122     192.168.1.158.61713 > dns-cac-lb-02.rr.com.domain: 45937+ AAAA? instagram.com. (31)
  123 2015-07-29 15:13:10.282237 IP (tos 0x0, ttl 64, id 7584, offset 0, flags [none], proto UDP (17), length 59)
  124     192.168.1.158.63562 > dns-cac-lb-02.rr.com.domain: 40628+ A? instagram.com. (31)
  125 2015-07-29 15:13:10.282243 IP (tos 0x0, ttl 64, id 25566, offset 0, flags [none], proto UDP (17), length 63)
  126     192.168.1.158.63070 > dns-cac-lb-02.rr.com.domain: 18803+ AAAA? www.usekahuna.com. (35)
  127 2015-07-29 15:13:10.282249 IP (tos 0x0, ttl 64, id 3423, offset 0, flags [none], proto UDP (17), length 63)
  128     192.168.1.158.55358 > dns-cac-lb-02.rr.com.domain: 1579+ A? www.usekahuna.com. (35)
  129 2015-07-29 15:13:10.282254 IP (tos 0x0, ttl 64, id 15899, offset 0, flags [none], proto UDP (17), length 68)
  130     192.168.1.158.50668 > dns-cac-lb-02.rr.com.domain: 45724+ AAAA? edge-mqtt.facebook.com. (40)
  131 2015-07-29 15:13:10.282260 IP (tos 0x0, ttl 64, id 55705, offset 0, flags [none], proto UDP (17), length 59)
  132     192.168.1.158.51502 > dns-cac-lb-02.rr.com.domain: 35346+ AAAA? www.apple.com. (31)
  133 2015-07-29 15:13:10.282265 IP (tos 0x0, ttl 64, id 17256, offset 0, flags [none], proto UDP (17), length 68)
  134     192.168.1.158.57610 > dns-cac-lb-02.rr.com.domain: 51889+ A? edge-mqtt.facebook.com. (40)
  135 2015-07-29 15:13:10.283695 IP (tos 0x0, ttl 64, id 60418, offset 0, flags [none], proto UDP (17), length 59)
  136     192.168.1.158.62957 > dns-cac-lb-02.rr.com.domain: 34630+ A? www.apple.com. (31)
  137 2015-07-29 15:13:10.283728 IP (tos 0x0, ttl 64, id 6661, offset 0, flags [none], proto UDP (17), length 55)
  138     192.168.1.158.55375 > dns-cac-lb-02.rr.com.domain: 40773+ AAAA? apple.com. (27)
  139 2015-07-29 15:13:10.283738 IP (tos 0x0, ttl 64, id 10643, offset 0, flags [none], proto UDP (17), length 55)
  140     192.168.1.158.54737 > dns-cac-lb-02.rr.com.domain: 30832+ A? apple.com. (27)
  141 2015-07-29 15:13:10.283746 IP (tos 0x0, ttl 64, id 2463, offset 0, flags [none], proto UDP (17), length 63)
  142     192.168.1.158.57402 > dns-cac-lb-02.rr.com.domain: 30531+ AAAA? guzzoni.apple.com. (35)
  143 2015-07-29 15:13:10.287087 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 108)
  144     dns-cac-lb-02.rr.com.domain > 192.168.1.158.57610: 51889 2/0/0 edge-mqtt.facebook.com. CNAME mqtt.c10r.facebook.com., mqtt.c10r.facebook.com. A 31.13.74.3 (80)
  145 2015-07-29 15:13:10.287100 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 187)
  146     dns-cac-lb-02.rr.com.domain > 192.168.1.158.63562: 40628 8/0/0 instagram.com. A 54.173.92.138, instagram.com. A 54.236.117.198, instagram.com. A 54.173.128.255, instagram.com. A 54.165.64.33, instagram.com. A 54.165.77.89, instagram.com. A 54.236.151.170, instagram.com. A 54.165.99.95, instagram.com. A 54.173.191.198 (159)
  147 2015-07-29 15:13:10.287106 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 120)
  148     dns-cac-lb-02.rr.com.domain > 192.168.1.158.50668: 45724 2/0/0 edge-mqtt.facebook.com. CNAME mqtt.c10r.facebook.com., mqtt.c10r.facebook.com. AAAA 2a03:2880:f00b:3:face:b00c:0:1 (92)
  149 2015-07-29 15:13:10.287130 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 181)
  150     dns-cac-lb-02.rr.com.domain > 192.168.1.158.59446: 6406 3/0/0 feelinsonice-hrd.appspot.com. CNAME feelinsonice.appspot.l.google.com.appspot.com., feelinsonice.appspot.l.google.com.appspot.com. CNAME appspot.l.google.com., appspot.l.google.com. AAAA 2607:f8b0:4001:c0d::8d (153)
  151 2015-07-29 15:13:10.287135 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 136)
  152     dns-cac-lb-02.rr.com.domain > 192.168.1.158.63070: 18803 3/0/0 www.usekahuna.com. CNAME ghs.google.com., ghs.google.com. CNAME ghs.l.google.com., ghs.l.google.com. AAAA 2607:f8b0:4001:c05::79 (108)
  153 2015-07-29 15:13:10.287139 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 140)
  154     dns-cac-lb-02.rr.com.domain > 192.168.1.158.61713: 45937 0/1/0 (112)
  155 2015-07-29 15:13:10.287237 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 169)
  156     dns-cac-lb-02.rr.com.domain > 192.168.1.158.61388: 51667 3/0/0 feelinsonice-hrd.appspot.com. CNAME feelinsonice.appspot.l.google.com.appspot.com., feelinsonice.appspot.l.google.com.appspot.com. CNAME appspot.l.google.com., appspot.l.google.com. A 74.125.201.141 (141)
  157 2015-07-29 15:13:10.287242 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 124)
  158     dns-cac-lb-02.rr.com.domain > 192.168.1.158.55358: 1579 3/0/0 www.usekahuna.com. CNAME ghs.google.com., ghs.google.com. CNAME ghs.l.google.com., ghs.l.google.com. A 74.125.202.121 (96)
  159 2015-07-29 15:13:10.287486 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 229)
  160     dns-cac-lb-02.rr.com.domain > 192.168.1.158.51502: 35346 5/0/0 www.apple.com. CNAME www.isg-apple.com.akadns.net., www.isg-apple.com.akadns.net. CNAME www.apple.com.edgekey.net., www.apple.com.edgekey.net. CNAME e3191.dscc.akamaiedge.net., e3191.dscc.akamaiedge.net. AAAA 2600:1408:1d:283::c77, e3191.dscc.akamaiedge.net. AAAA 2600:1408:1d:29a::c77 (201)
  161 2015-07-29 15:13:10.288690 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 189)
  162     dns-cac-lb-02.rr.com.domain > 192.168.1.158.62957: 34630 4/0/0 www.apple.com. CNAME www.isg-apple.com.akadns.net., www.isg-apple.com.akadns.net. CNAME www.apple.com.edgekey.net., www.apple.com.edgekey.net. CNAME e3191.dscc.akamaiedge.net., e3191.dscc.akamaiedge.net. A 23.207.24.80 (161)
  163 2015-07-29 15:13:10.288703 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 199)
  164     dns-cac-lb-02.rr.com.domain > 192.168.1.158.57402: 30531 2/1/0 guzzoni.apple.com. CNAME origin.guzzoni-apple.com.akadns.net., origin.guzzoni-apple.com.akadns.net. CNAME nk32p01sa.guzzoni-apple.com.akadns.net. (171)
  165 2015-07-29 15:13:10.288710 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 103)
  166     dns-cac-lb-02.rr.com.domain > 192.168.1.158.54737: 30832 3/0/0 apple.com. A 17.142.160.59, apple.com. A 17.178.96.59, apple.com. A 17.172.224.47 (75)
  167 2015-07-29 15:13:10.288726 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 116)
  168     dns-cac-lb-02.rr.com.domain > 192.168.1.158.55375: 40773 0/1/0 (88)
  169 2015-07-29 15:13:10.289676 IP (tos 0x0, ttl 64, id 23564, offset 0, flags [none], proto UDP (17), length 63)
  170     192.168.1.158.58870 > dns-cac-lb-02.rr.com.domain: 37463+ A? guzzoni.apple.com. (35)
  171 2015-07-29 15:13:10.289710 IP (tos 0x0, ttl 64, id 33916, offset 0, flags [none], proto UDP (17), length 60)
  172     192.168.1.158.52421 > dns-cac-lb-02.rr.com.domain: 29536+ AAAA? ads.flurry.com. (32)
  173 2015-07-29 15:13:10.289719 IP (tos 0x0, ttl 64, id 38157, offset 0, flags [none], proto UDP (17), length 60)
  174     192.168.1.158.51914 > dns-cac-lb-02.rr.com.domain: 1601+ A? ads.flurry.com. (32)
  175 2015-07-29 15:13:10.289727 IP (tos 0x0, ttl 64, id 27191, offset 0, flags [none], proto UDP (17), length 76)
  176     192.168.1.158.59266 > dns-cac-lb-02.rr.com.domain: 46276+ AAAA? p21-keyvalueservice.icloud.com. (48)
  177 2015-07-29 15:13:10.289734 IP (tos 0x0, ttl 64, id 45879, offset 0, flags [none], proto UDP (17), length 76)
  178     192.168.1.158.61061 > dns-cac-lb-02.rr.com.domain: 23837+ A? p21-keyvalueservice.icloud.com. (48)
  179 2015-07-29 15:13:10.289740 IP (tos 0x0, ttl 64, id 48604, offset 0, flags [none], proto UDP (17), length 51)
  180     192.168.1.158.63783 > dns-cac-lb-02.rr.com.domain: 40794+ SOA? local. (23)
  181 2015-07-29 15:13:10.294631 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 76)
  182     dns-cac-lb-02.rr.com.domain > 192.168.1.158.51914: 1601 1/0/0 ads.flurry.com. A 216.52.203.14 (48)
  183 2015-07-29 15:13:10.294644 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 126)
  184     dns-cac-lb-02.rr.com.domain > 192.168.1.158.63783: 40794 NXDomain 0/1/0 (98)
  185 2015-07-29 15:13:10.294659 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 194)
  186     dns-cac-lb-02.rr.com.domain > 192.168.1.158.59266: 46276 1/1/0 p21-keyvalueservice.icloud.com. CNAME p21-keyvalueservice.icloud.com.akadns.net. (166)
  187 2015-07-29 15:13:10.294666 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 152)
  188     dns-cac-lb-02.rr.com.domain > 192.168.1.158.58870: 37463 3/0/0 guzzoni.apple.com. CNAME origin.guzzoni-apple.com.akadns.net., origin.guzzoni-apple.com.akadns.net. CNAME nk32p01sa.guzzoni-apple.com.akadns.net., nk32p01sa.guzzoni-apple.com.akadns.net. A 17.151.229.4 (124)
  189 2015-07-29 15:13:10.294966 IP (tos 0x0, ttl 57, id 0, offset 0, flags [DF], proto UDP (17), length 117)
  190     dns-cac-lb-02.rr.com.domain > 192.168.1.158.52421: 29536 0/1/0 (89)
iPhone is also Verizon, but appears to be "looking for" 169.254.255.255, not dns-cac-lb-02.rr.com -- difference in how iPhone and Android do things?

I've posted most of the lines of that tcpdump capture because it seemed to get some different responses at line 23, moreso beginning at line 29. Not sure what it's doing here but it looks like it talking to commnat-nk11.gc.apple.com. A ping to RoadRunner at line 50 was unreachable. It does not appear (to me) that the connection to the imap.gmail.com server failed (line 65), but the iPhone never did appear to connect to the mail server -- just kept trying.

Does any of this shed more light?
 
  


Reply
Page 2 of 2 1 2

Tags
iptables



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] iptables port forward not working for port range mapping to anohter Port range in Linux 2.6.39 kinghong66 Linux - Networking 2 06-17-2015 07:17 PM
[SOLVED] Forward port 2201 on VM host to port 22 on VM guest oliverkinne Linux - Networking 9 08-06-2014 09:07 AM
iptable port forward between two lan interface chuikingman Linux - Server 5 05-21-2012 09:04 AM
Iptables can't port forward (PAT Port address translation) sfrederiksen Linux - Networking 7 12-20-2011 10:47 AM
Forward port port 80 to lan web server dulaus Linux - Networking 9 10-04-2002 03:45 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 08:40 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration