Strange networking problem - possibly MTU size

On one system I admin, I'm having a really strange intermittent
problem.

After a period ranging from days, to weeks, the system will
start failing to access some http sites, such as www.google.ca,
while it can still access others, such as www.rogers.com.

Once it starts to fail, it continues until the system is
rebooted, after which it works fine.

The system is running Mandriva 2010.1, 32 bit. Other computers
(running windows) on the same router continue working fine during
this period.

Running service network restart does not fix the problem. Whatever
it is, only seems to be fixable by rebooting.

This problem only developed after the connection was switched from
a cable connection, to a dsl connection. Researching this problem
led me to think it was an MTU size problem, so I reduced the MTU
to 1412, but that has not stopped the problem from occurring.

I can ssh into the system, and transfer files using scp. It only
seems to be http traffic that is failing, and only for some sites.

The system is using a wired connection to the dsl router.

I'm appending the output of Bit Twisters network_dump script,
which was run while http://www.google.ca was unaccessible,
from that system.

Thanks, Dave Hodgins

Thu Nov 11 19:19:47 EST 2010
======== cat /etc/release ========
Mandriva Linux release 2010.1 (Official) for i586
======== end of /etc/release ========


======== lsb_release -a ==========
LSB Version: lsb-4.0-ia32:lsb-4.0-noarch:core-3.0-ia32:core-3.0-noarch:core-3.2-ia32:core-3.2-noarch:core-4.0-ia32:core-4.0-noarch:cxx-3.2-ia32:cxx-3.2-noarch:graphics-3.2-ia32:graphics-3.2-noarch:lsb-3.0-ia32:lsb-3.0-noarch:lsb-3.2-ia32:lsb-3.2-noarch:lsb-4.0-ia32:lsb-4.0-noarch:qt4-3.1-ia32:qt4-3.1-noarch
Distributor ID: MandrivaLinux
Description: Mandriva Linux 2010.1
Release: 2010.1
Codename: Henry_Farman

======== uname -rvi =============
2.6.33.7-server-1mnb #1 SMP Fri Aug 27 21:38:29 UTC 2010 i386
i686

==== grep BASE_LEVEL /etc/security/msec/security.conf ====
BASE_LEVEL=standard

model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
cpu MHz : 1600.000
cpu MHz : 1600.000
cpu MHz : 1600.000
cpu MHz : 1600.000
i686


======== cat /etc/urpmi/urpmi.cfg ========
{
resume: 1
verify-rpm: 1
xml-info: always
}

Main {
key-ids: 70771ff3
mirrorlist: $MIRRORLIST
with-dir: media/main/release
}

Main\ Updates {
key-ids: 22458a98
mirrorlist: $MIRRORLIST
update
with-dir: media/main/updates
}

Main\ Testing {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/main/testing
}

Main\ Backports {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/main/backports
}

Main\ debug {
ignore
key-ids: 70771ff3
mirrorlist: $MIRRORLIST
with-dir: media/debug_main/release
}

Main\ Updates\ debug {
ignore
key-ids: 22458a98
mirrorlist: $MIRRORLIST
with-dir: media/debug_main/updates
}

Main\ Testing\ debug {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_main/testing
}

Main\ Backports\ debug {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_main/backports
}

Contrib {
key-ids: 78d019f5
mirrorlist: $MIRRORLIST
with-dir: media/contrib/release
}

Contrib\ Updates {
key-ids: 26752624
mirrorlist: $MIRRORLIST
update
with-dir: media/contrib/updates
}

Contrib\ Testing {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/contrib/testing
}

Contrib\ Backports {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/contrib/backports
}

Contrib\ debug {
ignore
key-ids: 78d019f5
mirrorlist: $MIRRORLIST
with-dir: media/debug_contrib/release
}

Contrib\ Updates\ debug {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_contrib/updates
}

Contrib\ Testing\ debug {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_contrib/testing
}

Contrib\ Backports\ debug {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_contrib/backports
}

Non-free {
key-ids: 70771ff3
mirrorlist: $MIRRORLIST
with-dir: media/non-free/release
}

Non-free\ Updates {
key-ids: 26752624
mirrorlist: $MIRRORLIST
update
with-dir: media/non-free/updates
}

Non-free\ Testing {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/non-free/testing
}

Non-free\ Backports {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/non-free/backports
}

debug_non-free_release {
ignore
key-ids: 70771ff3
mirrorlist: $MIRRORLIST
with-dir: media/debug_non-free/release
}

debug_non-free_updates {
ignore
key-ids: 22458a98
mirrorlist: $MIRRORLIST
with-dir: media/debug_non-free/updates
}

debug_non-free_testing {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_non-free/testing
}

debug_non-free_backports {
ignore
key-ids: 26752624
mirrorlist: $MIRRORLIST
with-dir: media/debug_non-free/backports
}

PLF\ Free {
key-ids: caba22ae
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
update
with-dir: media/../../../../2010.1/free/release/binary/i586
}

PLF\ Free\ debug {
ignore
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/free/release/debug/i586
}

PLF\ Free\ backports {
ignore
key-ids: caba22ae
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/free/backports/binary/i586
}

PLF\ Free\ backports\ debug {
ignore
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/free/backports/debug/i586
}

PLF\ Non-free {
key-ids: caba22ae
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
update
with-dir: media/../../../../2010.1/non-free/release/binary/i586
}

PLF\ Non-free\ debug {
ignore
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/non-free/release/debug/i586
}

PLF\ Non-free\ backports {
ignore
key-ids: caba22ae
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/non-free/backports/binary/i586
}

PLF\ Non-free\ backports\ debug {
ignore
mirrorlist: http://plf.zarb.org/mirrors/$RELEASE.$ARCH.list
with-dir: media/../../../../2010.1/non-free/backports/debug/i586
}
======== end of /etc/urpmi/urpmi.cfg ========

======== free ==========
total used free shared buffers cached
Mem: 4140224 2116700 2023524 0 457960 994884
-/+ buffers/cache: 663856 3476368
Swap: 5237148 0 5237148


Default run level is 5


======== chkconfig --list ==========
Double check if /avahi/ needs to be disabled on boot
avahi-daemon 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
Double check if /named/ needs to be disabled on boot
named 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
acpid 0ff 1ff 2ff 3n 4n 5n 6ff 7n
alsa 0ff 1ff 2n 3n 4n 5n 6ff 7ff
atd 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
atop 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
avahi-daemon 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
bootlogd 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
crond 0ff 1ff 2n 3n 4n 5n 6ff 7ff
ct_sync 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
cups 0ff 1ff 2n 3n 4n 5n 6ff 7ff
dm 0ff 1ff 2ff 3ff 4ff 5n 6ff 7n
dovecot 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
flumotion 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
g15daemon 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
haldaemon 0ff 1ff 2ff 3n 4n 5n 6ff 7n
hddtemp 0ff 1ff 2n 3n 4n 5n 6ff 7ff
httpd 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
ip6tables 0ff 1ff 2n 3n 4n 5n 6ff 7ff
iptables 0ff 1ff 2n 3n 4n 5n 6ff 7ff
irqbalance 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
jabber 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
jexec 0n 1n 2n 3n 4n 5n 6n 7ff
lm_sensors 0ff 1ff 2n 3n 4n 5n 6ff 7ff
lpd 0ff 1ff 2n 3n 4n 5n 6ff 7ff
lvm2-monitor 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
mandi 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
mdadm 0ff 1ff 2n 3n 4n 5n 6ff 7ff
messagebus 0ff 1ff 2n 3n 4n 5n 6ff 7n
mpd 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
msec 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
mtinkd 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
mysqld 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
named 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
netconsole 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
netfs 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
network 0ff 1ff 2n 3n 4n 5n 6ff 7ff
network-auth 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
network-up 0ff 1ff 2n 3n 4n 5n 6ff 7ff
nfs-common 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
nfs-server 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
nscd 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
ntpd 0ff 1ff 2n 3n 4n 5n 6ff 7ff
numlock 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
oki4daemon 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
partmon 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
pktcdvd 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
portreserve 0ff 1ff 2n 3n 4n 5n 6ff 7ff
postfix 0ff 1ff 2n 3n 4n 5n 6ff 7ff
preload 0ff 1ff 2ff 3ff 4ff 5n 6ff 7ff
proftpd 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
resolvconf 0ff 1ff 2n 3n 4n 5n 6ff 7ff
rpcbind 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
rsyslog 0ff 1ff 2n 3n 4n 5n 6ff 7n
shorewall 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
smartd 0ff 1ff 2n 3n 4n 5n 6ff 7ff
smb 0ff 1ff 2ff 3n 4n 5n 6ff 7ff
sound 0ff 1ff 2n 3n 4n 5n 6ff 7ff
sshd 0ff 1ff 2n 3n 4n 5n 6ff 7ff
stop-bootlogd 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
ucarp 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
udev-post 0ff 1n 2n 3n 4n 5n 6ff 7ff
usermin 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
vboxdrv 0ff 1ff 2n 3n 4n 5n 6ff 7ff
vboxweb-service 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
vdr 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
vnstat 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
webcam_server 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
webmin 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
wine 0ff 1ff 2ff 3ff 4ff 5ff 6ff 7ff
xinetd 0ff 1ff 2ff 3n 4n 5n 6ff 7ff

xinetd based services:
chargen: off
chargen-udp: off
cups-lpd: off
cvs: off
daytime: off
daytime-udp: off
echo: off
echo-udp: off
leafnode: off
nullidentd: on
proftpd-xinetd: off
rsync: off
saned: on
services: off
sshd-xinetd: off
swat: off
time: off
time-udp: off

======== grep hosts: /etc/nsswitch.conf ==========
#hosts: mdns4_minimal files nis dns mdns4 wins
hosts: files dns

======== grep -i options /etc/mod*.conf ==========

======== grep alias /etc/mod*.conf ==========
alias pci:v000010ECd00008168sv00001458sd0000E000bc02sc00 i00 r8169
alias eth0 r8169
alias net-pf-10 off
======== grep -v '^#' /etc/host.conf ==========
order hosts,bind
multi on
nospoof on
spoofalert on
======== end of /etc/host.conf ========

================ ifconfig -a ==============
eth0 Link encap:Ethernet HWaddr 00:24:1D:85:86:A2
inet addr:192.168.1.200 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::224:1dff:fe85:86a2/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1412 Metric:1
RX packets:2572353 errors:0 dropped:0 overruns:0 frame:0
TX packets:1821744 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:3390412898 (3.1 GiB) TX bytes:219919711 (209.7 MiB)
Interrupt:28 Base address:0x4000

eth1 Link encap:Ethernet HWaddr 00:80:C9:00:01:92
BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:1895894 errors:0 dropped:0 overruns:0 frame:0
TX packets:1895894 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:987375339 (941.6 MiB) TX bytes:987375339 (941.6 MiB)

vboxnet0 Link encap:Ethernet HWaddr 0A:00:27:00:00:00
BROADCAST MULTICAST MTU:1412 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)


dmesg has eth0 eth1

======== cat /etc/iftab ========
eth0 mac 00:24:1d:85:86:a2
eth1 mac 00:80:c9:00:01:92
======== end of /etc/iftab ========

============= cd /etc/udev/rules.d/ =========
============= grep eth * | grep -v ethe | grep -v weth | grep -v veth ==================
70-persistent-net.rules:# Drakx-net rule for eth0 (00:24:1d:85:86:a2)
70-persistent-net.rules:SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:24:1d:85:86:a2", ATTR{type}=="1", KERNEL=="eth*", NAME="eth0"
70-persistent-net.rules:SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:80:c9:00:01:92", ATTR{type}=="1", KERNEL=="eth*", NAME="eth1"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="413c", ENV{ID_CLASS}=="mouse", ATTRS{bmAttributes}=="e0", KERNEL=="mouse*", RUN+="/usr/sbin/hid2hci --method dell -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c703" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c704" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c705" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c70a" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c70b" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c70c" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c70e" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c713" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c714" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c71b" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="046d", ENV{ID_MODEL}=="c71c" RUN+="/usr/sbin/hid2hci --method logitech -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="0a12", ENV{ID_MODEL}=="1000" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="0458", ENV{ID_MODEL}=="1000" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="05ac", ENV{ID_MODEL}=="1000" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"
97-bluetooth-hid2hci.rules:#ACTION=="add", ENV{ID_VENDOR}=="0a12", ENV{ID_MODEL}=="0001" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hid"
97-bluetooth-hid2hci.rules:#ACTION=="add", ENV{ID_VENDOR}=="0458", ENV{ID_MODEL}=="003f" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hid"
97-bluetooth-hid2hci.rules:#ACTION=="add", ENV{ID_VENDOR}=="05ac", ENV{ID_MODEL}=="8203" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hid"
97-bluetooth-hid2hci.rules:#ACTION=="add", ENV{ID_VENDOR}=="05ac", ENV{ID_MODEL}=="8204" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hid"
97-bluetooth-hid2hci.rules:#ACTION=="add", ENV{ID_VENDOR}=="05ac", ENV{ID_MODEL}=="8207" RUN+="/usr/sbin/hid2hci --method csr -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hid"
======== grep -v '^#' /etc/hosts.allow ==========

======== end of /etc/hosts.allow ========

======== grep -v '^#' /etc/hosts.deny ==========

======== end of /etc/hosts.deny ========

============== route -n =================
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.1.0 0.0.0.0 255.255.255.0 U 10 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 10 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.1.1 0.0.0.0 UG 10 0 0 eth0

======== cat /etc/sysconfig/network ========
HOSTNAME=munged.homeip.net
NETWORKING=yes
NETWORKING_IPV6=no
CRDA_DOMAIN=CA
======== end of /etc/sysconfig/network ========

======== grep -v '^#' /etc/resolv.conf ==========
nameserver 127.0.0.1
nameserver 8.8.8.8
nameserver 8.8.8.4
======== end of /etc/resolv.conf ========

======== grep -v '^#' /etc/resolvconf/resolv.conf.d/head ==========
nameserver 127.0.0.1
======== end of /etc/resolvconf/resolv.conf.d/head ========

======== hostname --fqdn ==========
munged.homeip.net

======== grep -v '^#' /etc/hosts ==========
127.0.0.1 munged.homeip.net munged
127.0.0.1 localhost
192.168.1.200 kitchen.munged.homeip.net
192.168.1.201 virtualbox.munged.homeip.net
======== end of /etc/hosts ========

========== grep -v '^#' /etc/ifplugd/ifplugd.conf ========




INTERFACES="eth0"

ARGS="-fwI -u0 -d10"


========== ls /etc/sysconfig/network-scripts/ifcfg-* ===
/etc/sysconfig/network-scripts/ifcfg-eth0
/etc/sysconfig/network-scripts/ifcfg-eth0~
/etc/sysconfig/network-scripts/ifcfg-eth1
/etc/sysconfig/network-scripts/ifcfg-lo

======== mii-tool -v eth0 ==========
eth0: negotiated 100baseTx-FD flow-control, link ok
product info: vendor 00:07:32, model 17 rev 2
basic mode: autonegotiation enabled
basic status: autonegotiation complete, link ok
capabilities: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD
advertising: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD flow-control
link partner: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD flow-control

======== ethtool eth0 ==========
Settings for eth0:
Supported ports: [ TP MII ]
Supported link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Half 1000baseT/Full
Supports auto-negotiation: Yes
Advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Half 1000baseT/Full
Advertised auto-negotiation: Yes
Speed: 100Mb/s
Duplex: Full
Port: MII
PHYAD: 0
Transceiver: internal
Auto-negotiation: on
Supports Wake-on: pumbg
Wake-on: g
Current message level: 0x00000033 (51)
Link detected: yes

=== dmesg | grep eth0: ========
eth0: RTL8168c/8111c at 0xf89d4000, 00:24:1d:85:86:a2, XID 1c4000c0 IRQ 28
r8169: eth0: link up
r8169: eth0: link up
eth0: no IPv6 routers present

=== grep eth0 /var/log/messages | grep -v SRC= | grep -v =eth | tail -10 ===
Nov 9 04:08:10 munged msec: Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Nov 9 16:08:33 munged kernel: device eth0 entered promiscuous mode
Nov 9 16:22:17 munged kernel: device eth0 left promiscuous mode
Nov 9 16:33:21 munged kernel: device eth0 entered promiscuous mode
Nov 9 16:41:54 munged kernel: device eth0 left promiscuous mode
Nov 10 01:13:20 munged msec: Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Nov 10 04:08:24 munged msec: Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Nov 11 01:13:06 munged msec: Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Nov 11 04:08:12 munged msec: Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Nov 11 19:02:03 munged named[10573]: listening on IPv4 interface eth0, 192.168.1.200#53
======== cat /etc/sysconfig/network-scripts/ifcfg-eth0 ========
DEVICE=eth0
BOOTPROTO=static
IPADDR=192.168.1.200
NETMASK=255.255.255.0
GATEWAY=192.168.1.1
ONBOOT=yes
METRIC=10
MII_NOT_SUPPORTED=yes
USERCTL=yes
MTU=1412
DNS1=8.8.8.8
DNS2=8.8.8.4
RESOLV_MODS=no
LINK_DETECTION_DELAY=6
IPV6INIT=no
IPV6TO4INIT=no
ACCOUNTING=yes
======== end of /etc/sysconfig/network-scripts/ifcfg-eth0 ========


======== mii-tool -v eth1 ==========
eth1: no link
product info: vendor 00:00:20, model 32 rev 1
basic mode: autonegotiation enabled
basic status: no link
capabilities: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD
advertising: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD flow-control

======== ethtool eth1 ==========
Settings for eth1:
Supported ports: [ TP MII ]
Supported link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
Supports auto-negotiation: Yes
Advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
Advertised auto-negotiation: Yes
Speed: 10Mb/s
Duplex: Half
Port: MII
PHYAD: 3
Transceiver: internal
Auto-negotiation: on
Supports Wake-on: pg
Wake-on: d
Current message level: 0x00000007 (7)
Link detected: no

=== dmesg | grep eth1: ========
eth1: register 'asix' at usb-0000:00:1d.7-6.4.2, ASIX AX8817x USB 2.0 Ethernet, 00:80:c9:00:01:92

=== grep eth1 /var/log/messages | grep -v SRC= | grep -v =eth | tail -10 ===
Nov 7 16:09:10 munged kernel: eth1: register 'asix' at usb-0000:00:1d.7-6.4.2, ASIX AX8817x USB 2.0 Ethernet, 00:80:c9:00:01:92
======== cat /etc/sysconfig/network-scripts/ifcfg-eth1 ========
DEVICE=eth1
BOOTPROTO=dhcp
ONBOOT=no

======== end of /etc/sysconfig/network-scripts/ifcfg-eth1 ========

========= cd /etc/NetworkManager/dispatcher.d ; ls -al ========
total 16
drwxr-xr-x 2 root root 4096 2010-08-21 18:13 .
drwxr-xr-x 3 root root 4096 2009-09-14 12:38 ..
-rwxr-xr-x 1 root root 175 2009-09-14 12:38 00-netreport
-rwxr-xr-x 1 root root 345 2009-09-14 12:38 05-netfs


===== cd /etc/sysconfig/network-scripts/ifdown.d ; ls -al ====
total 20
drwxr-xr-x 2 root root 4096 2010-08-21 21:30 .
drwxr-xr-x 8 root root 4096 2010-10-01 18:23 ..
-rwxr-xr-x 1 root root 264 2010-06-14 14:23 netmonitor_down
-rwxr-xr-x 1 root root 370 2010-01-03 05:38 vnstat_ip-down
-rwxr-xr-x 1 root root 224 2010-06-23 05:56 vpn

===== cd /etc/sysconfig/network-scripts/ifup.d ; ls -al ====
total 24
drwxr-xr-x 2 root root 4096 2010-08-21 21:30 .
drwxr-xr-x 8 root root 4096 2010-10-01 18:23 ..
-rwxr-xr-x 1 root root 262 2010-06-14 14:23 netmonitor_up
-rwxr-xr-x 1 root root 683 2010-04-27 09:54 netprofile
-rwxr-xr-x 1 root root 369 2010-01-03 05:38 vnstat_ip-up
-rwxr-xr-x 1 root root 225 2010-06-23 05:56 vpn
========= cd /etc/resolvconf/update.d ; ls -al ========
total 24
drwxr-xr-x 2 root root 4096 2010-08-21 18:13 .
drwxr-xr-x 5 root root 4096 2010-08-21 18:13 ..
-rwxr-xr-x 1 root root 3542 2006-08-09 09:36 bind
-rwxr-xr-x 1 root root 3195 2008-12-06 04:17 dnscache
-rwxr-xr-x 1 root root 4589 2010-03-17 10:23 libc

==== end of config/network data dump =======


--
Change nomail.afraid.org to ody.ca to reply by email.
(nomail.afraid.org has been set up specifically for
use in usenet. Feel free to use it yourself.)

On Thu, 11 Nov 2010 19:43:39 -0500, David W. Hodgins wrote:
>

> After a period ranging from days, to weeks, the system will
> start failing to access some http sites, such as www.google.ca,
> while it can still access others, such as www.rogers.com.

That would point me towards DNS/router problems.

> Once it starts to fail, it continues until the system is
> rebooted, after which it works fine.

Now I would guess just DNS.


>
> Running service network restart does not fix the problem. Whatever
> it is, only seems to be fixable by rebooting.

I would do a service named restart to see if problem goes away.


> I can ssh into the system, and transfer files using scp. It only
> seems to be http traffic that is failing, and only for some sites.

I assume you are telling us it is browser connections failing.


> The system is using a wired connection to the dsl router.
>
> I'm appending the output of Bit Twisters network_dump script,
> which was run while http://www.google.ca was unaccessible,
> from that system.
>
>
> ======== lsb_release -a ==========
> LSB Version:
>lsb-4.0-ia32:lsb-4.0-noarch:core-3.0-ia32:core-3.0-noarch
>:core-3.2-ia32:core-3.2-noarch:core-4.0-ia32:core-4.0-noarch:cxx-3.2-ia32
>:cxx-3.2-noarch:graphics-3.2-ia32:graphics-3.2-noarch:lsb-3.0-ia32
>:lsb-3.0-noarch:lsb-3.2-ia32:lsb-3.2-noarch:lsb-4.0-ia32:lsb-4.0-noarch
>:qt4-3.1-ia32:qt4-3.1-noarch
> Distributor ID: MandrivaLinux
> Description: Mandriva Linux 2010.1
> Release: 2010.1
> Codename: Henry_Farman

Weird lsb_release dump you have there.
Going to guess it is because you have 4 and I have 1 cpu.

# lsb_release -a
LSB Version: lsb-4.0-ia32:lsb-4.0-noarch:*
Distributor ID: MandrivaLinux
Description: Mandriva Linux 2010.1
Release: 2010.1
Codename: Henry_Farman

>
> ======== uname -rvi =============
> 2.6.33.7-server-1mnb #1 SMP Fri Aug 27 21:38:29 UTC 2010 i386
> i686

Would have thought you would be running a 2.6.33.7-server-2mnb kernel. :-(

> model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
> model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
> model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
> model name : Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
> cpu MHz : 1600.000
> cpu MHz : 1600.000
> cpu MHz : 1600.000
> cpu MHz : 1600.000
> i686

4 cpus, must be nice.




> ======== grep alias /etc/mod*.conf ==========
> alias pci:v000010ECd00008168sv00001458sd0000E000bc02sc00 i00 r8169
> alias eth0 r8169
> alias net-pf-10 off

net-pf-10 is obsolete, and did not disable ipv6. Use
options ipv6 disable=1



> ============= grep eth * | grep -v ethe | grep -v weth | grep -v veth ==

> 97-bluetooth-hid2hci.rules:ACTION=="add", ENV{ID_VENDOR}=="413c", ENV{ID_CLASS}=="mouse", ATTRS{bmAttributes}=="e0", KERNEL=="mouse*", RUN+="/usr/sbin/hid2hci --method dell -v $env{ID_VENDOR} -p $env{ID_MODEL} --mode hci"

You need a new copy of my dump net script. Added it to bottom of reply.
>
> ======== cat /etc/sysconfig/network ========
> HOSTNAME=munged.homeip.net
> NETWORKING=yes
> NETWORKING_IPV6=no
> CRDA_DOMAIN=CA


NETWORKING_IPV6=no is obsolete and did not disable ipv6. Add
options ipv6 disable=1
to /etc/modprobe.conf

>
> ========== ls /etc/sysconfig/network-scripts/ifcfg-* ===
> /etc/sysconfig/network-scripts/ifcfg-eth0
> /etc/sysconfig/network-scripts/ifcfg-eth0~

I always delete the *~ in /etc/sysconfig/network-scripts/


Latest dump_net.txt file follows:






----- standard debug network problem text/script follows: version 5.2 -----
dump_net.txt

First assumption is, you have installed ALL updates and have rebooted.

Note: This script does not dump wireless settings.

If you read http://www.catb.org/~esr/faqs/smart-questions.html
it will suggest you provide any information about your setup which might
help troubleshoot your problem.

Examples:
o Internet connection type, (cable, adsl,,,),
o Internet hardware, (vendor/model of the modem).
o What is your type of hookup, (Ethernet, usb, wireless,...).
o Maybe your system is hooked to a hub/switch/router,
o Your distribution, version, config file values,... .

We need to know about your network hardware setup.
This script will dump your config settings.

If something does not start up, try
dmesg
and/or look through /var/log/messages for an error message.
and/or cat /var/log/prcsys.log

If your problem is slow network give us a URL so we can try it.

Once you get your network running, you may want to run xx one last time
and save the output file for disk crash/new installs

Might not hurt to save xx for one of a network debugging checklist steps.

The following ambidextrous script is for mandriva, *buntu. debian,
slackware, pclinux, fedora, suse, and will dump your hardware status,
network settings and config files used in network setup. We need that
information to troubleshoot your problem.

If you are having to use windows to access Usenet:
Format a diskette on the windows system.

Copy the following xx.txt script into xx.txt using notepad.exe
then save xx.txt to the diskette/cd/usb stick.

To get the script results back to Windows and
none of the above hardware works, you can use http://www.fs-driver.org/

If you do not want some malware writing to linux. You can replace it
with http://www.diskinternals.com/linux-reader/ which does not
provide write access to linux.

The above assumes you have not created a FAT partition to exchange
files between OSs. If you did, copy dosa.txt to it from linux and read
it from windows.

I do recommend remove/un-installing the windows/linux file system
driver after you get the linux network up.
Makes your Windows Anti Virus scanner run much faster after removal.

Also, if logged into windows, it would be nice to include your windows
network settings. Click up a Prompt/cmd/terminal and add in contents from
ipconfig /all
when you reply with linux settings.


If using linux for Usenet access, su - root, copy script text into xx
chmod +x xx
./xx

and include a.txt (if on linux) or dosa.txt (if on windows) in your reply.
Do not attach it.

NOTE: to become root, you need to do a
su - root
not su root

For the suse, ubuntu, kubuntu users,
sudo -i
chmod +x xx
../xx

exit will exit the sudo -i command.

Do not change text formatting of the output file.
If you want to hide something like domain name, use an editor to do a global
substitution of .yourdomain.com to .invalid.com

Do not worry about showing your LAN ip addresses because
nobody is going to be able to connect to 198.162.x.x from the Internet.

You dinking with ip addresses could hide the problem or send us off on a
snipe hunt.

If xx is not in your home directory, you will have to provide the full
path in place of $HOME. Example:
sudo -i
chmod +x /some/where/xx
/some/where/xx



------------------ Script starts below this line ---------
#!/bin/bash
#************************************************* ************
#*
#* xx - Dump network config files and network hardware status
#*
#*
#* Output: a.txt is the linux file
#* dosa.txt is the Windows file
#*
#************************************************* ************

_fn=a.txt
_out_fn=$PWD/$_fn
_dos_fn=$PWD/dos${_fn}
_home=$PWD
_version="5.2"

function cat_fn
{
_fn=$1
if [ "$_fn" = "/etc/urpmi/urpmi.cfg" ] ; then
_cmd="head -30"
else
_cmd=cat
fi

if [ -f $_fn ] ; then
_count=$(stat -c %s $_fn )
if [ $_count -gt 0 ] ; then
echo " " >> $_out_fn
echo "======== $_cmd $_fn ========" >> $_out_fn
$_cmd $_fn >> $_out_fn
echo "======== end of $_fn ========" >> $_out_fn
echo " " >> $_out_fn
fi
fi
} # end cat_fn

function grep_fn
{
_fn=$1
if [ -e $_fn ] ; then
_count=$(stat -c %s $_fn )
if [ $_count -gt 0 ] ; then
_count=$(grep -v '^#' $_fn | wc -l)
if [ $_count -gt 0 ] ; then
echo " " >> $_out_fn
echo "======== grep -v '^#' $_fn ==========" >> $_out_fn
if [ "$_fn" != "shorewall.conf" ] ; then
grep -v '^#' $_fn >> $_out_fn
else
awk 'empty{if (!/^#/) print; empty=0} /^$/{empty=1}' $_fn >> $_out_fn
fi
echo "======== end of $_fn ========" >> $_out_fn
echo " " >> $_out_fn
fi
fi
fi
} # end grep_fn

function ls_dir
{
_dr=$1
if [ -d $_dr ] ; then
echo "========= cd $_dr ; ls -al ========" >> $_out_fn
cd $_dr
ls -al >> $_out_fn
echo " " >> $_out_fn
fi
} # end ls_dir

function tail_fn
{
_fn=$1
if [ -e $_fn ] ; then
echo "======== tail -20 $_fn ==========" >> $_out_fn
tail -20 $_fn >> $_out_fn
echo " " >> $_out_fn
fi
} # end tail_fn

#********************************
# check if commands are in $PATH
# and if not add them to PATH
#********************************

_path=""
type ifconfig > /dev/null 2>&1
if [ $? -ne 0 ] ; then
_path="${_path}/sbin:"
fi

type cat > /dev/null 2>&1
if [ $? -ne 0 ] ; then
_path="${_path}/bin:"
fi

type id > /dev/null 2>&1
if [ $? -ne 0 ] ; then
_path="${_path}/usr/bin:"
fi

if [ -n "$_path" ] ; then
PATH=${_path}$PATH
export PATH
fi

#*****************************************
# check if root and logged in correctly
#*****************************************

_uid=$(id --user)

if [ $_uid -ne 0 ] ; then
echo " "
echo "You need to be root to run $0"
echo "Click up a terminal and do the following:"
echo " "
echo "su - root"
echo "$PWD/xx"
echo " "
echo "or "
echo " "
echo "sudo -i"
echo "$PWD/xx"
echo " "
exit 1
fi

root_flg=1

if [ -n "$LOGNAME" ] ; then
if [ "$LOGNAME" != "root" ] ; then
root_flg=0
fi
fi

if [ -n "$USER" ] ; then
if [ "$USER" != "root" ] ; then
root_flg=0
fi
fi

if [ $root_flg -eq 0 ] ; then
echo " "
echo "Guessing you did a su root"
echo "instead of a su - root"
echo "please exit/logout of this session and do the following:"
echo " "
echo "su - root"
echo "$PWD/xx"
echo " "
echo "or "
echo " "
echo "sudo -i"
echo "$PWD/xx"
echo " "
exit 1
fi


#********************************
# main code starts here
#********************************


echo "Working, output will be in $_out_fn "

date > $_out_fn
chmod 666 $_out_fn
echo "dump_net.txt version $_version" >> $_out_fn

_nic_list=""
for n in eth0: eth1: eth2: eth3: ; do
dmesg | grep -c $n > /dev/null 2>&1
if [ $? -eq 0 ] ; then
_nic_list="$_nic_list ${n:0:4}"
fi
done

_nic_count=$(echo $_nic_list | wc -w )

if [ -n "$_path" ] ; then
echo "======== echo $PATH ==========" >> $_out_fn
echo "$PATH" >> $_out_fn 2>&1
fi


type lsb_release > /dev/null 2>&1
if [ $? -eq 0 ] ; then
cat_fn /etc/release
echo " " >> $_out_fn
echo "======== lsb_release -a ==========" >> $_out_fn
lsb_release -a >> $_out_fn 2>&1
else

for _d in /etc/*release ; do
if [ ! -d $_d ] ; then
if [ $_d != "/etc/lsb-release" ] ; then
cat_fn $_d
break
fi
fi
done

for _d in /etc/*version ; do
if [ ! -d $_d ] ; then
cat_fn $_d
break
fi
done

cat_fn /proc/*version
fi


cat_fn /etc/product.id
cat_fn /etc/sysconfig/speedboot

echo " " >> $_out_fn
echo "======== uname -rvi =============" >> $_out_fn
uname -rvi >> $_out_fn
uname -m >> $_out_fn

_fn=/etc/security/msec/security.conf
if [ -e $_fn ] ; then
echo " " >> $_out_fn
echo "==== grep BASE_LEVEL $_fn ====" >> $_out_fn
grep BASE_LEVEL $_fn >> $_out_fn
fi

if [ -n "$SECURE_LEVEL" ] ; then
echo " " >> $_out_fn
echo "msec security level is $SECURE_LEVEL" >> $_out_fn
fi

echo "========== cpu info =======================" >> $_out_fn
echo "
$(grep 'model name' /proc/cpuinfo)
$(grep 'cpu MHz' /proc/cpuinfo)
$(uname -m)

" >> $_out_fn


cat_fn /proc/cmdline

cat_fn /etc/urpmi/urpmi.cfg

echo "======== free ==========" >> $_out_fn
free >> $_out_fn 2>&1
echo " " >> $_out_fn

if [ -e /etc/inittab ] ; then
_line=$(grep :initdefault /etc/inittab)
set -- $(IFS=':'; echo $_line)
echo " " >> $_out_fn
echo "Default run level is $2" >> $_out_fn
echo " " >> $_out_fn
echo "Current level " >> $_out_fn
runlevel >> $_out_fn
echo " " >> $_out_fn
fi


type chkconfig > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo " " >> $_out_fn
for _serv in avahi named tmdns dhcpd ; do
chkconfig --list | grep -i $_serv > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo "Double check if /$_serv/ needs to be disabled on boot" >> $_out_fn
chkconfig --list | grep -i $_serv | tr "\t" ' ' >> $_out_fn
fi
done

echo "


" >> $_out_fn
echo "======== chkconfig --list ==========" >> $_out_fn

chkconfig --list | tr "\t" ' ' >> $_out_fn

else
echo " " >> $_out_fn
for _serv in avahi named tmdns ; do
ls /etc/rcS.d/S* | grep $_serv > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo "Double check if /$_serv/ needs to be disabled on boot" >> $_out_fn
fi
done

echo "


" >> $_out_fn
echo "======== ls -o /etc/rcS.d/ ==========" >> $_out_fn
ls -o /etc/rcS.d >> $_out_fn
fi

_fn=/etc/nsswitch.conf
if [ -e $_fn ] ; then
echo " " >> $_out_fn
echo "======== grep hosts: $_fn ==========" >> $_out_fn
grep hosts: $_fn >> $_out_fn
fi

ls /etc/mod*.conf > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo " " >> $_out_fn
echo "======== grep -i options /etc/mod*.conf ==========" >> $_out_fn
grep -i options /etc/mod*.conf >> $_out_fn
echo " " >> $_out_fn
echo "======== grep alias /etc/mod*.conf ==========" >> $_out_fn
grep -i alias /etc/mod*.conf >> $_out_fn
fi


cat_fn /etc/dhclient-enter-hooks
cat_fn /etc/dhclient-exit-hooks
cat_fn /etc/dhcp*/dhclient-enter-hooks
cat_fn /etc/dhcp*/dhclient-exit-hooks

grep_fn /etc/host.conf

echo "================ ifconfig -a ==============" >> $_out_fn
ifconfig -a >> $_out_fn

echo " " >> $_out_fn
echo "dmesg has $_nic_list" >> $_out_fn
echo " " >> $_out_fn
cat_fn /etc/iftab
echo "============= cd /etc/udev/rules.d/ =========" >> $_out_fn
cd /etc/udev/rules.d/
echo "============= grep eth * | grep -v ethe | grep -v bluetooth | grep -v weth | grep -v veth ==================" >> $_out_fn
grep eth * | grep -v ethe | grep -v bluetooth | grep -v weth | grep -v veth >> $_out_fn
cd

grep_fn /etc/hosts.allow
grep_fn /etc/hosts.deny

echo "============== route -n =================" >> $_out_fn
route -n >> $_out_fn
echo " " >> $_out_fn

echo "===== dig +short rs.dns-oarc.net txt | grep EDNS ======" >> $_out_fn
dig +short rs.dns-oarc.net txt | grep EDNS >> $_out_fn
dig +short @4.2.2.2 rs.dns-oarc.net txt | grep EDNS >> $_out_fn
echo " " >> $_out_fn

cat_fn /etc/sysconfig/network/routes
cat_fn /etc/sysconfig/network
grep_fn /etc/mkinitramfs/initramfs.conf

grep_fn /etc/resolv.conf

grep_fn /etc/resolvconf/resolv.conf.d/head
cat_fn /etc/resolvconf/resolv.conf.d/base
cat_fn /etc/resolvconf/resolv.conf.d/tail


echo "======== hostname --fqdn ==========" >> $_out_fn
hostname --fqdn >> $_out_fn
echo " " >> $_out_fn

cat_fn /etc/hostname
cat_fn /etc/HOSTNAME

grep_fn /etc/hosts

cat_fn /etc/network/interfaces
cat_fn /var/run/network/ifstate
cat_fn /etc/dhclient.conf

if [ -e /etc/ifplugd/ifplugd.conf ] ; then
echo "========== grep -v '^#' /etc/ifplugd/ifplugd.conf ========" >> $_out_fn
grep -v '^#' /etc/ifplugd/ifplugd.conf >> $_out_fn
fi


ethtool_flg=0
type ethtool > /dev/null 2>&1
if [ $? -eq 0 ] ; then
ethtool_flg=1
fi

mii_tool_flg=0
type mii-tool > /dev/null 2>&1
if [ $? -eq 0 ] ; then
mii_tool_flg=1
fi

cat_fn /etc/rc.d/rc.inet1.conf
for _d in \
"/etc/sysconfig/networking/profiles/default" \
"/etc/sysconfig/network-scripts" \
"/etc/sysconfig/network" \
"/etc/sysconfig/networking/devices"
do
if [ -d $_d ] ; then
_cnt=$(ls $_d/ifcfg-* 2> /dev/null | wc -l )
if [ "$_cnt" -gt 1 ] ; then
_dir=$_d
echo " " >> $_out_fn
echo "========== ls $_d/ifcfg-* ===" >> $_out_fn
ls $_d/ifcfg-* >> $_out_fn
fi
fi
done


for nic in $_nic_list ; do
if [ $mii_tool_flg -eq 1 ] ; then
mii-tool -v $nic > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo " " >> $_out_fn
echo "======== mii-tool -v $nic ==========" >> $_out_fn
mii-tool -v $nic >> $_out_fn
fi
fi

if [ $ethtool_flg -eq 1 ] ; then
ethtool $nic > /dev/null 2>&1
if [ $? -eq 0 ] ; then
echo " " >> $_out_fn
echo "======== ethtool $nic ==========" >> $_out_fn
ethtool $nic >> $_out_fn
fi
fi

echo " " >> $_out_fn
echo "=== dmesg | grep ${nic}: ========" >> $_out_fn
dmesg | grep ${nic}: >> $_out_fn

echo " " >> $_out_fn
echo "=== grep $nic /var/log/messages | grep -v SRC= | grep -v =eth | tail -10 ===" >> $_out_fn
grep $nic /var/log/messages | grep -v SRC= | grep -v =eth | tail -10 >> $_out_fn

cat_fn /etc/sysconfig/network-scripts/ifcfg-$nic
cat_fn /etc/sysconfig/network/ifcfg-$nic
cat_fn /etc/sysconfig/networking/devices/ifcfg-$nic
cat_fn /etc/sysconfig/networking/profiles/default/ifcfg-$nic

ifconfig $nic > /dev/null 2>&1
if [ $? -eq 0 ] ; then
set $(ifconfig $nic | tr [A-Z] [a-z])
cat_fn /etc/sysconfig/network/ifcfg-eth-id-$5
fi

tail_fn /var/lib/dhcp*/dhclient.${nic}.leases
tail_fn /var/lib/dhcp*/dhclient-${nic}.leases
tail_fn /var/lib/dhcp*/dhclient-${nic}.lease
tail_fn /var/lib/dhclient/dhclient-${nic}.leases
tail_fn /var/lib/dhclient/dhclient-*-${nic}.lease
tail_fn /etc/dhcpc/dhcpcd-${nic}.info

done # end for nic in $_nic_list


_dir=/etc/NetworkManager/dispatcher.d
if [ -d $_dir ] ; then
ls_dir $_dir

for _d in "if-up.d" "if-down.d" "if-pre-up.d" "if-post-down.d" ; do
if [ -e /etc/network/${_d} ] ; then
echo "==== cd /etc/network/${_d} ; ls -al ===" >> $_out_fn
cd /etc/network/${_d}
ls -al >> $_out_fn
fi
done
fi

if [ -d /etc/sysconfig/network-scripts ] ; then
for _d in "ifdown.d" "ifup.d" ; do
if [ -e /etc/sysconfig/network-scripts/${_d} ] ; then
_cmd="cd /etc/sysconfig/network-scripts/${_d} ; ls -al "
echo " " >> $_out_fn
echo "===== $_cmd ====" >> $_out_fn
cd /etc/sysconfig/network-scripts/${_d}
ls -al >> $_out_fn
fi
done
fi

ls_dir /etc/dhcp*/dhclient-exit-hooks.d
ls_dir /etc/resolvconf/update.d


if [ -d /etc/shorewall ] ; then
_count=$(chkconfig --list shorewall | grep -c n )
if [ $_count -gt 0 ] ; then
echo " " >> $_out_fn
echo "======= Shorewall settings =========" >> $_out_fn
cd /etc/shorewall
for _f in $(ls) ; do
echo "======= $_f =========" >> $_out_fn
grep_fn $_f
done
fi
fi


cd $_home

echo "==== end of config/network data dump =======" >> $_out_fn

awk '{print $0 "\r" }' $_out_fn > $_dos_fn
chmod 666 $_dos_fn


echo "

CAUTION: review contents of $_out_fn and verify no sensitive WIRELESS key
information is in the output. If so just change the value to _REMOVED_

If posting via linux, post contents of $_out_fn
You might want to copy it to your account with the command
cp $_out_fn ~your_login

If posting via windows, post contents of $_dos_fn

If using diskette,
Copy $_dos_fn to diskette with the following commands:

mkdir -p /floppy
mount -t auto /dev/fd0 /floppy
cp $_dos_fn /floppy
umount /floppy

and $_dos_fn is ready for windows from diskette
"

#*********** end of dump xx.txt script *********
#----------- script ends above this line ------------------------



echo "

and then copy xx.txt to the diskette.

On some linux distributions, you may need to get into the User/Group
screen, show all users, double click root, create the password, and
enable root. Root's password should never be the same as anyone else's.

To move xx.txt from diskette to the linux box, click up a linux terminal
su - root
(root's passwd)

mkdir -p /floppy
mount -t auto /dev/fd0 /floppy
tr -d '\015' < /floppy/xx.txt > xx
chmod +x xx
../xx

Back on the windows OS, you can cut/paste the a:\dosa.txt into your reply
under windows.
Do not attach it.

When you do reply, please remove/trim my response/text/script from your reply
before you add in the results/output of the script.

If you are dual booting the box, you can copy xx.txt to linux from windows.

Note: The following assumes /dev/hda1 is where windows is installed on the
first partition on the C: drive
If you have sata drive, you may have to use /dev/sda1 instead of /dev/hda1.

cat /etc/fstab to see which value will be required.
Do keep quotes used in the following:
mkdir -p /doze
mount -t auto /dev/hda1 /doze
tr -d '\015' < /doze/wherever/you_saved/xx.txt > xx
umount /doze


On windows you can read dosa.txt from a linux partition if you installed
windows linux file system driver from
http://uranus.it.swin.edu.au/~jn/linux/explore2fs.htm

Remember to remove/uninstall it to allow your Windows Anti Virus
scanner to run faster.
"

On Thu, 11 Nov 2010 20:49:03 -0500, Bit Twister <(E-Mail Removed)> wrote:

> On Thu, 11 Nov 2010 19:43:39 -0500, David W. Hodgins wrote:
>> After a period ranging from days, to weeks, the system will
>> start failing to access some http sites, such as www.google.ca,
>> while it can still access others, such as www.rogers.com.
>
> That would point me towards DNS/router problems.

Should have been clearer. The dns lookups still work. For
example, after I ssh into the system, I run

$ host www.google.ca
www.google.ca is an alias for www.google.com.
www.google.com is an alias for www.l.google.com.
www.l.google.com has address 173.194.32.104

I've rebooted the system since my prior post, so it is currently
working, however when it does fail, the host command still
returns the same ip address.

wget http://www.google.ca fails, as does
wget http://173.194.32.104

Yet lynx http://www.rogers.com still works (as does wget).
"service named restart" does not fix it.

I should note that ping www.google.ca does work.

>> I can ssh into the system, and transfer files using scp. It only
>> seems to be http traffic that is failing, and only for some sites.
>
> I assume you are telling us it is browser connections failing.

lynx, firefox, opera, wget, urpmi all fail trying to establish
the tcp connections to tcp port 80, on some sites, such as
http://www.google.ca and http://carroll.cac.psu.edu.

> Weird lsb_release dump you have there.
> Going to guess it is because you have 4 and I have 1 cpu.

I get the same on my single core system ...

$ lsb_release -a
LSB Version: lsb-4.0-ia32:lsb-4.0-noarch:core-3.0-ia32:core-3.0-noarch:core-3.2-ia32:core-3.2-noarch:core-4.0-ia32:core-4.0-noarch:cxx-3.2-ia32:cxx-3.2-noarch:graphics-3.2-ia32:graphics-3.2-noarch:lsb-3.0-ia32:lsb-3.0-noarch:lsb-3.2-ia32:lsb-3.2-noarch:lsb-4.0-ia32:lsb-4.0-noarch
Distributor ID: MandrivaLinux
Description: Mandriva Linux 2010.1
Release: 2010.1
Codename: Henry_Farman

I suspect this is because this is a 2009.1 clean install that
was then updated to 2010.0, and then 2010.1, using mdkapplet.
My sister's system started as a copy of my 2009.1 system, and
was also updated using mdkapplet.

>> ======== uname -rvi =============
>> 2.6.33.7-server-1mnb #1 SMP Fri Aug 27 21:38:29 UTC 2010 i386
>> i686
>
> Would have thought you would be running a 2.6.33.7-server-2mnb kernel. :-(

Thanks for catching that. Just modified /etc/lilo.conf to go to
the newer kernel, next reboot. Missed that step last kernel update.
Ran lilo after updating it. :-)

> 4 cpus, must be nice.

My sister's system. Also nice that it has two 1.5TB drives, and
is using lvm volumes that are striped across both drives. Running
hdparm -t on an individual drive shows 126.35 MB/sec, while reading
a large file from a striped logical volume gives around 180 MB/sec.

Much nicer to work on, than the system it replaced (pentium 2,
running w98).

Had some problems when I first set it up, as the video card was
drawing more from the +12V rail, than the power supply was rated
for, and the system would spontaneously crash every few days, until
I figured out what the problem was, and upgraded the power supply.
Since then, it's been running fine for a year, until the switch
from cable to dsl. Now, every week or two, it has to be rebooted,
to get the networking working properly. Very annoying. I only
found out that rebooting worked, as I'd explained to my nephew,
who I was on the phone with, that rebooting linux is only needed
when installing a new kernel, and that rebooting would not fix the
problem. To satisfy him, I rebooted the system, and to my great
surprise, the problem stopped.

Note that this is rebooting the computer only, not the dsl router.

>> ======== grep alias /etc/mod*.conf ==========
>> alias pci:v000010ECd00008168sv00001458sd0000E000bc02sc00 i00 r8169
>> alias eth0 r8169
>> alias net-pf-10 off
>
> net-pf-10 is obsolete, and did not disable ipv6. Use
> options ipv6 disable=1

Does that go in /etc/modprobe.conf, in addition to the alias,
or in place of it?

I've added it, and updated lilo to pick up the new kernel, on the
next reboot.

> You need a new copy of my dump net script. Added it to bottom of reply.

I'll post the output of that script after I reboot the system
when it's not in use.

Regards, Dave Hodgins

--
Change nomail.afraid.org to ody.ca to reply by email.
(nomail.afraid.org has been set up specifically for
use in usenet. Feel free to use it yourself.)

On Thu, 11 Nov 2010 21:01:14 -0500, Jim Beard <(E-Mail Removed)> wrote:

> Are you running your own dns? If 127.0.0.1 is your first
> nameserver, I would speculate that it might acquire a bad value
> for an ip (e.g. should a name resolve to any of several servers
> depending on load, some ip might go away).

I tried restarting named, stopping it and using their isp's dns
servers, and then switched to google's public name servers.
No affect, so I went back to running bind on that system.

Note that dns lookups continued to work, and the laptops, which
use that server as their first dns server, also continued to
work ok. It's only outgoing http connections to some sites,
that were failing, from that system.
>
> Oddities that should not cause your problem: nfs-common off but
> nfs-server running, IPV6INIT not running but ip6tables running,
> eth1 at 10 Mb/s half-duplex (does it connect to an IPV6 router?)

It's the only linux system on that lan, so I guess nfs isn't
needed. I've turned on nfs-common anyway. Thanks for catching
that.

Only eth0 is being used, which is 100Mbs, full-Duplex. eth1
is not connected to anything.

I just checked. /etc/rc.d/init.d/ip6tables doesn't do anything if
/etc/sysconfig/ip6tables does not exist, and it doesn't, so that
has no impact. I'll turn it off, now that I know that. Again,
thanks for the catch.

Regards, Dave Hodgins

--
Change nomail.afraid.org to ody.ca to reply by email.
(nomail.afraid.org has been set up specifically for
use in usenet. Feel free to use it yourself.)

On Thu, 11 Nov 2010 22:52:06 -0500, David W. Hodgins wrote:
> On Thu, 11 Nov 2010 20:49:03 -0500, Bit Twister <(E-Mail Removed)> wrote:
>
> Should have been clearer.

I would agree. :-D

> The dns lookups still work. For
> example, after I ssh into the system, I run
>
> $ host www.google.ca
> www.google.ca is an alias for www.google.com.
> www.google.com is an alias for www.l.google.com.

Hopefully, mine is different since I am in the USA.

$ host www.google.ca
www.google.ca is an alias for www.google.com.
www.google.com is an alias for www.l.google.com.
www.l.google.com has address 74.125.227.50
www.l.google.com has address 74.125.227.51
www.l.google.com has address 74.125.227.52
www.l.google.com has address 74.125.227.48
www.l.google.com has address 74.125.227.49

> www.l.google.com has address 173.194.32.104

But this did not look good to me.

$ host 173.194.32.104
104.32.194.173.in-addr.arpa domain name pointer yyz06s05-in-f104.1e100.net.

> I've rebooted the system since my prior post, so it is currently
> working, however when it does fail, the host command still
> returns the same ip address.

I am not satisfied that your www.google.ca ip address is valid.

> wget http://www.google.ca fails, as does
> wget http://173.194.32.104

Ok, that works for me and appears to be google.com's web page.
Tried firefox 173.194.32.104
and it converted to http://173.194.32.104/ and displayed the page.

> Yet lynx http://www.rogers.com still works (as does wget).
> "service named restart" does not fix it.
>
> I should note that ping www.google.ca does work.

Yep, apps like curl, wget, axel,... can be stopped by settings on the
web site. You can add arguments to bypass some of the tests depending
on the website restrictions.

> lynx, firefox, opera, wget, urpmi all fail trying to establish
> the tcp connections to tcp port 80, on some sites, such as
> http://www.google.ca and http://carroll.cac.psu.edu.

firefox has it's own cache and I have disabled firefox's ipv6 usage.

Last 2 WAGs that I can think of is you have the Use Interactive
Firewall/Port scan detection features set and port 80 is being disabled.

grep 80 /var/log/messages and see what you can see.

or other Micro$not systems are poisoning your linux DNS cache.

>> Weird lsb_release dump you have there.
>> Going to guess it is because you have 4 and I have 1 cpu.
>
> I get the same on my single core system ...

Well, that is different and weird.


> I suspect this is because this is a 2009.1 clean install that
> was then updated to 2010.0, and then 2010.1, using mdkapplet.
> My sister's system started as a copy of my 2009.1 system, and
> was also updated using mdkapplet.

Ok, I never do upgrades, just clean installs.

>>
>> net-pf-10 is obsolete, and did not disable ipv6. Use
>> options ipv6 disable=1
>
> Does that go in /etc/modprobe.conf, in addition to the alias,
> or in place of it?

In place of. Snippet from my unix help file.


disable ipv6 (obsolete) echo "install ipv6 /bin/true" >> /etc/modprobe.conf
disable ipv6 (obsolete) echo "alias net-pf-10 off" >> /etc/modprobe.conf
disable ipv6 (obsolete) echo "alias ipv6 off" >> /etc/modprobe.conf
disable ipv6 echo "options ipv6 disable=1" >> /etc/modprobe.conf
disable ipv6 (obsolete) echo NETWORKING_IPV6=no >> /etc/sysconfig/network


>
>> You need a new copy of my dump net script. Added it to bottom of reply.
>
> I'll post the output of that script after I reboot the system
> when it's not in use.

No need for repost of output because nothing new will show up in the output to
speak of except the ifconfig should no longer show ipv6 addresses.

What is the output from
$ grep forward /var/lib/named/etc/named.conf

David W. Hodgins <(E-Mail Removed)> wrote:
> Should have been clearer. The dns lookups still work. For
> example, after I ssh into the system, I run

> $ host www.google.ca
> www.google.ca is an alias for www.google.com.
> www.google.com is an alias for www.l.google.com.
> www.l.google.com has address 173.194.32.104

> I've rebooted the system since my prior post, so it is currently
> working, however when it does fail, the host command still returns
> the same ip address.

> wget http://www.google.ca fails, as does
> wget http://173.194.32.104

> Yet lynx http://www.rogers.com still works (as does wget).
> "service named restart" does not fix it.

> I should note that ping www.google.ca does work.

Ping up to what size request/response packet?

Transparent http proxy somewhere?

rick jones
--
I don't interest myself in "why." I think more often in terms of
"when," sometimes "where;" always "how much." - Joubert
these opinions are mine, all mine; HP might not want them anyway...
feel free to post, OR email to rick.jones2 in hp.com but NOT BOTH...

On Fri, 12 Nov 2010 15:47:49 -0500, Rick Jones <(E-Mail Removed)> wrote:

> David W. Hodgins <(E-Mail Removed)> wrote:
>> I should note that ping www.google.ca does work.

> Ping up to what size request/response packet?

Up to 1384 works. Anything over gets no response.

The symptoms are consistent with the MTU being too large, but
I've already set it to 1412, as shown in the ifconfig output.

I'm wondering if there is some sysctl value that needs to be
change, that I'm missing. What really confuses me, is that
rebooting the system clears the problem for a week or two,
even though the ip address of www.google.ca does not change
after the reboot, and neither the router, or the dsl modem
have been restarted.

> Transparent http proxy somewhere?

No, unless the isp is using one. teksavvy.com is their isp.

Regards, Dave Hodgins

--
Change nomail.afraid.org to ody.ca to reply by email.
(nomail.afraid.org has been set up specifically for
use in usenet. Feel free to use it yourself.)

David W. Hodgins <(E-Mail Removed)> wrote:
> On Fri, 12 Nov 2010 15:47:49 -0500, Rick Jones <(E-Mail Removed)> wrote:

> > David W. Hodgins <(E-Mail Removed)> wrote:
> >> I should note that ping www.google.ca does work.

> > Ping up to what size request/response packet?

> Up to 1384 works. Anything over gets no response.

I just love ICMP filtering... is there a ping option to tell it to
not set the DF bit in the IP header? (Or, I suppose one could set
net.ipv4.ip_no_pmtu_disc to one if that hasn't already been
suggested).

> The symptoms are consistent with the MTU being too large, but I've
> already set it to 1412, as shown in the ifconfig output.

If you take a packet trace do you see the TCP connections actually
succeeding to the "broken" sites? PMTU problems would still have the
connection establishement segments get through, just not the data
segments.

> I'm wondering if there is some sysctl value that needs to be
> change, that I'm missing. What really confuses me, is that
> rebooting the system clears the problem for a week or two,
> even though the ip address of www.google.ca does not change
> after the reboot, and neither the router, or the dsl modem
> have been restarted.

PathMTU routes added in that have bad PTMUs?

rick jones
--
I don't interest myself in "why." I think more often in terms of
"when," sometimes "where;" always "how much." - Joubert
these opinions are mine, all mine; HP might not want them anyway...
feel free to post, OR email to rick.jones2 in hp.com but NOT BOTH...

On Fri, 12 Nov 2010 18:46:46 -0500, David W. Hodgins wrote:

> I'm wondering if there is some sysctl value that needs to be
> change, that I'm missing.

Get a dump of sysctl on a working linux and compare when broke. Hint,
sysctl -a

> What really confuses me, is that
> rebooting the system clears the problem for a week or two,
> even though the ip address of www.google.ca does not change
> after the reboot, and neither the router, or the dsl modem
> have been restarted.

You may also want to get a "traceroute -In" dump for ip address comparison.

On 2010-11-12, Moe Trin <(E-Mail Removed)> wrote:
>
> Hit your favorite search engine, and look up the number 1e100 (10^100
> or 1 followed by a hundred zeros) - it's a googolplex. The domain
> name has been in use around a year. You could also look up the domain
> name - it's registered via MarkMonitor.
>
> Old guy

Atcually, 10^100 is a googol. A googolplex is 10^googol.


--
Year, n.:
A period of three hundred and sixty-five disappointments.
-- Ambrose Bierce, "The Devil's Dictionary"