Be the first to know about special offers and new products for web developers and Internet business owners.
I will never share your email address with the bad boys. Period.
Grab the feedRead This If You Can't Access Some Websites From Ubuntu Gutsy Gibbon
Submitted by alexis on Tue, 2007-10-30 22:50.
Once I fixed my wireless connection problem with Ubuntu Gutsy Gibbon I had to figure out why one website was not loading: Campaign Monitor.
I found a few articles mentioning the IPv6 problems with Ubuntu Gutsy Gibbon, tried the suggested fixes but still had the problem. The IPv6 issue causes slow connections, but there's a connection at the end, I couldn't even connect, my browser was timing out.
It wasn't a problem related to DNS resolution either, I was already using OpenDNS.
After a huge headache and lots of sweating I found bug 59331: a change in kernel 2.6.17 (Gutsy runs 2.6.22-14) caused many websites to stop loading.
One user reported one website not loading and giving the same error I had with Campaign Monitor, the site was Ohio State University.
If you've read till here and you can't load either site, Campaign Monitor and Ohio State University, I'm almost sure you have the same problem I had, keep reading for the solution.
You need to disable tcp_window_scaling following these steps:
- sudo vi /etc/sysctl.conf
- Add the line: net.ipv4.tcp_window_scaling = 0
- sudo sysctl -p
Update: It seems that disabling window_scaling is too drastic, instead you can add these lines to sysctl.conf:
net.ipv4.tcp_wmem = 4096 16384 131072
net.ipv4.tcp_rmem = 4096 87380 174760
And then run sudo sysctl -p to activate the change.
After the change I could access Ohio State University and thought my problem with Campaign Monitor should be fixed too, I was wrong. In my laptop I was able to access Campaign Monitor site but not their members and API site, which runs at a subdomain, and my desktop couldn't even see their home page.
I needed to read a comment by Michael Doube, in the discussion of bug 59331, to get the definitive fix:
An alternative solution is to install Firestarter, which I think works by using this iptables line: sudo iptables -t mangle -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS -clamp-mss-to-pmtu
So I did that, installed Firestarter:
sudo apt-get install firestarter
Then I opened Firestarter from Applications > Internet, followed the instructions to enable the firewall and got the change in TCP.
Neat! Campaign Monitor's site is loading now and I can continue with my job. Not bad for almost 8 hours lost in this damn thing.
I hope Canonical releases a bugfix soon, there are many users, and I guess many websites too, having this problem.
Some additional data: It seems the problem is not an Ubuntu problem after all, but something related to some routers not conrrectly working when used with some Linux kernels, anyway, Ubuntu and other distributions should find a workaround while routers manufacturer fix their hardware or release updated firmware.
Trackback URL for this post:
http://ventanazul.com/webzine/trackback/74
Duplicated on SuSE 10.3
The Ohio State non-fetch was duplicated on opensuse 10.3 kernel 2.6.22.8.4 on a HP Broadcom BCM4318 [Air Force One 54G].
I duplicated adding lines to sysctl.conf then using midnight commander as root and Ohio state was reachable.
I have not compiled Firestarter for testing. Naturally this is on a Comcast Cable Modem in Houston so I am sure the routers to here have issues since Comcast is not a highly tuned network.
I was having the same
I was having the same problem with a number of sites, including the ones you mentioned and also http://drupal.org .The problem started a few weeks ago, when I changed to a new physical network in a new house.
The problem happens in ubuntu 8.04 with 2.6.24-19-generic Kernel, Ubuntu 7.04, OpenSUSE 11.0 and even on Knoppix (I forgot the version). Basically, I tried all my live cds without success.
At first, I thought it's a network connection problem. But I found it works from Window$ 2003. Then I thought it's Ubuntu problem. I tried OpenSUSE 11.0 to get the same error. Then I thought it's a driver problem, or may be a firewall problem. But couldn't find anything. I tried with wireshark and captured the packets, but nothing came out.
Following your suggestion, I have installed and started firestarter, and the websites are available now.
Thank you so much!!!
Wow. I have been having
Wow.
I have been having trouble with random OSU sites for a while and all I had to do was install Firestarter to fix it. Thanks!
Post new comment