Linux 2.6.8.1 networking problems
I run an OpenBSD bridging packet filter to protect my network and I make use of pf's "scrub" facility to normalize the traffic I accept and also the traffic I send. Recently I've been receiving complaints from Linux users, or users who sit behind Linux routers, that they were unable to receive traffic from websites I host.
After a few days of debugging I think I've isolated the incompatibility to bugs within the Linux kernel version 2.6.8.1. All users who report problems have been using that version of the kernel. 2.6.9 seems to resolve the problems. this LJ entry contains some of the debugging we did.
I'd encourage anyone using 2.6.8.1 to upgrade to 2.6.9 -- it seems that 2.6.8.1 has some showstopping problems dealing with fragmented IPV4 traffic, particularly where it has passed through a scrubbing firewall.
After a few days of debugging I think I've isolated the incompatibility to bugs within the Linux kernel version 2.6.8.1. All users who report problems have been using that version of the kernel. 2.6.9 seems to resolve the problems. this LJ entry contains some of the debugging we did.
I'd encourage anyone using 2.6.8.1 to upgrade to 2.6.9 -- it seems that 2.6.8.1 has some showstopping problems dealing with fragmented IPV4 traffic, particularly where it has passed through a scrubbing firewall.
