ping reply

Hallo, I have the following problem: After an upgrade to kernel 2.6.16
from 2.4.32 my connection over tunnel is broken.

I try ping, i doesn't receive reply. The reply packets are lost
somewhere in kernel now..

but when I use tcpdump I can see that crypted packet retruns to me.
Tcpdump is able to show me decrypted packet ICMP REPLY.

The same problem with TCP connection.
When another host try ping me - I can see ICMP request, no reply,
(contrack shows connection as UNREPLIED)


I turns off any firewall, (iptables -L [-t nat] shows nothing)
ip_forward = 1
rp_filter=0
send_redirects = 0
accept_redirects = 0
kernel 2.6.15

Is any way to find out why kernel silently drops icmp packet?
Is anyone who can help me pleaseeeeeeee?
Any idea, any suggestion...



Pawel

I forgot:

It is IPSEC tunnel host to net
Ping without tunnel works correctly.


(E-Mail Removed) napisa³(a):
> Hallo, I have the following problem: After an upgrade to kernel 2.6.16
> from 2.4.32 my connection over tunnel is broken.
>
> I try ping, i doesn't receive reply. The reply packets are lost
> somewhere in kernel now..
>
> but when I use tcpdump I can see that crypted packet retruns to me.
> Tcpdump is able to show me decrypted packet ICMP REPLY.
>
> The same problem with TCP connection.
> When another host try ping me - I can see ICMP request, no reply,
> (contrack shows connection as UNREPLIED)
>
>
> I turns off any firewall, (iptables -L [-t nat] shows nothing)
> ip_forward = 1
> rp_filter=0
> send_redirects = 0
> accept_redirects = 0
> kernel 2.6.15
>
> Is any way to find out why kernel silently drops icmp packet?
> Is anyone who can help me pleaseeeeeeee?
> Any idea, any suggestion...
>
>
>
> Pawel