search

galaxy001 / scholarzhang

Automatically exported from code.google.com/p/scholarzhang
1 stars 1 forks source link

Ubuntu ADSL 部分功能无法使用 #25

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
系统是Ubuntu,ADSL拨号上网,编译安装之后可以解析到大部分�
��确的IP,但浏览器访
问时由reset变成timeout。使用的是networkmanager拨号,ADSL 
Modem没有启用路由功
能。

iptables 1.4.4
ipset 4.2
linux 2.6.32-15-generic x86_64

Original issue reported on code.google.com by btre...@gmail.com on 13 Mar 2010 at 9:42

GoogleCodeExporter commented 9 years ago 
run "/sbin/ifconfig ppp0" and paste its output here.

Original comment by yingyingcui.scholarzhang@gmail.com on 13 Mar 2010 at 9:44

GoogleCodeExporter commented 9 years ago 
[deleted comment]
GoogleCodeExporter commented 9 years ago 
ppp0      Link encap:Point-to-Point Protocol  
          inet addr:IP1  P-t-P:IP2  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1492  Metric:1
          RX packets:77532 errors:0 dropped:0 overruns:0 frame:0
          TX packets:79710 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3 
          RX bytes:49051811 (49.0 MB)  TX bytes:23846657 (23.8 MB)

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:01

GoogleCodeExporter commented 9 years ago 
IP1 is not a ip address. Prefered format: 203.208.*.*

Original comment by yingyingcui.scholarzhang@gmail.com on 13 Mar 2010 at 10:03

GoogleCodeExporter commented 9 years ago 
hi, just hide the real IP, :) IP1 is my real IP, and IP2 is the P-t-P's.

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:07

GoogleCodeExporter commented 9 years ago 
Prefered format: 203.208.*.*

Original comment by yingyingcui.scholarzhang@gmail.com on 13 Mar 2010 at 10:16

GoogleCodeExporter commented 9 years ago 
Well, it's an IP addr, and I guess it doesn't matter, now I file in a random IP 
there.

ppp0      Link encap:Point-to-Point Protocol  
          inet addr:203.208.123.101  P-t-P:203.208.125.21  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1492  Metric:1
          RX packets:77532 errors:0 dropped:0 overruns:0 frame:0
          TX packets:79710 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3 
          RX bytes:49051811 (49.0 MB)  TX bytes:23846657 (23.8 MB)

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:23

GoogleCodeExporter commented 9 years ago 
Here is several lines generated in /var/log/syslog when I perform an attempt to 
visit 
http://youtube.com

Mar 13 18:20:08 ubuntu-desktop kernel: [28846.562710] gfw: IN=ppp0 OUT= MAC= 
SRC=74.125.153.139 DST=203.208.123.101 LEN=40 TOS=0x00 PREC=0x00 TTL=91 
ID=58645 DF 
PROTO=TCP SPT=80 DPT=40966 WINDOW=52 RES=0x00 ACK RST URGP=0
Mar 13 18:20:08 ubuntu-desktop kernel: [28846.563101] gfw: IN=ppp0 OUT= MAC= 
SRC=74.125.153.139 DST=203.208.123.101 LEN=40 TOS=0x00 PREC=0x00 TTL=91 
ID=58645 DF 
PROTO=TCP SPT=80 DPT=40966 WINDOW=52 RES=0x00 ACK RST URGP=0
Mar 13 18:20:08 ubuntu-desktop kernel: [28846.563585] gfw: IN=ppp0 OUT= MAC= 
SRC=74.125.153.139 DST=203.208.123.101 LEN=40 TOS=0x00 PREC=0x00 TTL=91 
ID=58645 DF 
PROTO=TCP SPT=80 DPT=40966 WINDOW=52 RES=0x00 ACK RST URGP=0
Mar 13 18:20:08 ubuntu-desktop kernel: [28846.587527] gfw: IN=ppp0 OUT= MAC= 
SRC=74.125.153.139 DST=1203.208.123.101 LEN=40 TOS=0x00 PREC=0x00 TTL=97 
ID=58171 DF 
PROTO=TCP SPT=80 DPT=40966 WINDOW=58 RES=0x00 ACK RST URGP=0

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:25

GoogleCodeExporter commented 9 years ago 
the DST section is still changed to 203.208.123.10, I don't want to be kuasheng 
-ed, :P

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:26

GoogleCodeExporter commented 9 years ago 
Model of the ADSL Modem is HUAWEI SmartAX MT800.

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:32

GoogleCodeExporter commented 9 years ago 
You are probably in intranet.

Original comment by yingyingcui.scholarzhang@gmail.com on 13 Mar 2010 at 10:39

GoogleCodeExporter commented 9 years ago 
$sudo ipset -L

Name: CHINA
Type: nethash
References: 1
Header: hashsize: 20000 probes: 2 resize: 50
Members:
59.64.0.0/12
210.76.0.0/15
119.253.0.0/16
116.212.160.0/20
119.27.160.0/19
202.92.252.0/22
203.175.192.0/18
111.0.0.0/10
202.38.158.0/23
203.191.64.0/18
60.200.0.0/13
122.64.0.0/11
118.84.0.0/15
222.32.0.0/11
218.185.192.0/19
118.66.0.0/16
113.44.0.0/14
203.86.0.0/18
119.128.0.0/12
123.180.0.0/14
119.0.0.0/15
219.224.0.0/12
118.192.0.0/12
115.85.192.0/18
211.96.0.0/13
202.38.146.0/23
122.204.0.0/14
115.180.0.0/14
60.232.0.0/15
118.89.0.0/16
124.108.8.0/21
219.242.0.0/15
202.38.176.0/23
203.114.244.0/22
166.111.0.0/16
202.20.120.0/24
202.90.252.0/22
114.135.0.0/16
58.32.0.0/11
218.56.0.0/13
221.136.0.0/15
122.156.0.0/14
114.110.64.0/18
114.208.0.0/12
202.8.128.0/19
112.64.0.0/14
119.42.224.0/19
121.255.0.0/16
119.32.0.0/13
202.164.25.0/24
203.187.160.0/19
203.119.24.0/21
58.68.128.0/17
202.127.12.0/22
117.112.0.0/13
202.38.160.0/23
218.108.0.0/15
202.130.0.0/19
113.130.96.0/20
113.58.0.0/16
118.124.0.0/15
118.64.0.0/15
222.240.0.0/13
121.79.128.0/18
122.48.0.0/16
116.213.64.0/18
202.22.248.0/21
119.112.0.0/12
202.90.224.0/20
117.53.48.0/20
202.143.16.0/20
119.28.0.0/15
114.54.0.0/15
119.48.0.0/13
113.132.0.0/14
202.122.32.0/21
202.91.0.0/22
123.56.0.0/13
120.94.0.0/15
198.17.7.0/24
115.224.0.0/12
117.53.176.0/20
202.43.144.0/20
220.242.0.0/15
124.151.0.0/16
111.192.0.0/12
116.128.0.0/10
123.108.128.0/20
202.122.112.0/21
203.110.160.0/19
203.152.64.0/19
58.192.0.0/11
124.47.0.0/18
211.80.0.0/12
219.216.0.0/13
113.24.0.0/14
114.28.0.0/16
60.63.0.0/16
61.128.0.0/10
220.112.0.0/14
222.192.0.0/11
122.0.128.0/17
58.100.0.0/15
202.38.149.0/24
202.122.64.0/19
221.133.224.0/19
203.184.80.0/20
113.16.0.0/15
202.136.208.0/20
112.112.0.0/14
119.63.32.0/19
203.88.32.0/19
60.160.0.0/11
122.224.0.0/12
118.67.112.0/20
122.102.0.0/20
110.152.0.0/14
220.152.128.0/17
202.189.80.0/20
119.75.208.0/20
121.224.0.0/12
110.173.64.0/18
119.19.0.0/16
113.128.0.0/15
202.96.0.0/12
125.216.0.0/13
123.136.80.0/20
58.66.0.0/15
218.192.0.0/12
180.188.0.0/17
211.160.0.0/13
118.126.0.0/16
202.38.150.0/23
113.200.0.0/15
203.175.128.0/19
112.132.0.0/16
116.244.0.0/14
115.84.192.0/19
60.55.0.0/16
220.231.128.0/17
119.2.128.0/17
117.64.0.0/13
202.14.88.0/24
113.194.0.0/15
203.94.0.0/19
122.200.64.0/18
60.247.0.0/16
180.148.224.0/19
203.166.160.0/19
203.130.32.0/19
180.136.0.0/13
203.100.32.0/20
120.76.0.0/14
58.16.0.0/13
110.6.0.0/15
202.123.96.0/20
203.190.96.0/20
222.16.0.0/12
202.38.156.0/24
124.254.0.0/18
120.192.0.0/10
115.100.0.0/14
122.152.192.0/18
124.72.0.0/13
116.208.0.0/14
210.22.0.0/16
125.61.128.0/17
119.232.0.0/15
180.233.64.0/19
113.214.0.0/15
113.52.160.0/19
124.31.0.0/16
203.93.0.0/16
210.26.0.0/15
113.224.0.0/12
202.142.16.0/20
203.99.80.0/20
121.52.224.0/19
203.83.56.0/21
203.209.224.0/19
122.192.0.0/14
221.199.224.0/19
123.244.0.0/14
116.193.16.0/20
111.208.0.0/13
202.141.160.0/19
61.232.0.0/14
121.48.0.0/15
122.144.128.0/17
119.16.0.0/16
122.102.64.0/19
118.242.0.0/16
119.96.0.0/13
218.64.0.0/11
113.8.0.0/15
118.180.0.0/14
222.248.0.0/15
110.173.32.0/20
222.64.0.0/11
117.44.0.0/15
116.60.0.0/14
114.141.128.0/18
125.58.128.0/17
110.166.0.0/15
119.248.0.0/14
118.212.0.0/15
118.178.0.0/16
110.51.0.0/16
58.87.64.0/18
112.73.0.0/16
110.156.0.0/15
203.207.128.0/17
61.4.80.0/22
113.12.0.0/14
117.24.0.0/13
111.224.0.0/13
115.24.0.0/14
221.208.0.0/12
123.232.0.0/14
110.40.0.0/14
203.100.96.0/19
115.120.0.0/14
111.85.0.0/16
167.139.0.0/16
112.224.0.0/11
111.91.192.0/19
124.240.128.0/18
116.58.208.0/20
119.88.0.0/14
121.32.0.0/13
180.150.160.0/19
114.104.0.0/14
112.124.0.0/14
180.95.128.0/17
180.149.128.0/19
210.87.128.0/18
119.40.64.0/20
210.192.96.0/19
124.42.0.0/16
122.240.0.0/13
119.148.160.0/20
180.202.0.0/15
124.249.0.0/16
202.14.235.0/24
119.254.0.0/15
111.235.160.0/19
120.0.0.0/12
116.90.80.0/20
220.160.0.0/11
203.99.16.0/20
123.4.0.0/14
58.144.0.0/16
60.252.0.0/16
117.120.64.0/18
125.64.0.0/11
202.131.208.0/20
120.136.128.0/18
115.32.0.0/14
203.156.192.0/18
221.199.192.0/20
59.108.0.0/14
61.8.160.0/20
118.112.0.0/13
121.8.0.0/13
202.120.0.0/15
112.74.0.0/15
122.51.0.0/16
203.161.180.0/24
123.178.0.0/15
116.116.0.0/15
115.84.0.0/18
60.208.0.0/12
111.116.0.0/15
116.112.0.0/14
202.165.96.0/20
210.78.0.0/16
122.119.0.0/16
210.14.112.0/20
58.14.0.0/15
123.249.0.0/16
192.188.170.0/24
110.228.0.0/14
202.90.0.0/22
202.149.224.0/19
60.253.128.0/17
123.128.0.0/13
121.0.16.0/20
202.165.176.0/20
202.14.238.0/24
210.79.224.0/19
123.49.128.0/17
116.90.184.0/21
119.62.0.0/16
202.38.168.0/21
202.127.192.0/20
118.120.0.0/14
120.88.8.0/21
117.32.0.0/13
116.193.32.0/19
116.248.0.0/15
59.107.0.0/16
219.244.0.0/14
125.112.0.0/12
119.15.136.0/21
134.196.0.0/16
192.83.169.0/24
116.255.128.0/17
110.77.0.0/17
122.248.48.0/20
221.130.0.0/15
123.96.0.0/15
124.172.0.0/14
124.147.128.0/17
202.136.224.0/20
121.100.128.0/17
117.59.0.0/16
202.4.252.0/22
124.64.0.0/15
61.236.0.0/15
203.79.0.0/20
119.20.0.0/14
124.40.112.0/20
125.215.0.0/18
202.0.176.0/22
121.51.0.0/16
117.121.0.0/17
116.194.0.0/15
202.91.224.0/19
110.64.0.0/15
60.255.0.0/16
123.196.0.0/15
121.16.0.0/12
210.5.0.0/19
123.101.0.0/16
117.103.128.0/20
124.29.0.0/17
202.38.164.0/22
111.160.0.0/13
110.173.192.0/19
202.130.224.0/19
192.83.122.0/24
119.2.0.0/19
121.40.0.0/14
202.125.176.0/20
118.239.0.0/16
202.149.160.0/19
122.4.0.0/14
202.127.16.0/20
203.222.192.0/20
123.177.0.0/16
114.112.0.0/13
202.168.160.0/19
117.74.64.0/20
203.100.192.0/20
113.0.0.0/13
202.93.0.0/22
210.56.192.0/19
124.68.0.0/14
125.32.0.0/12
203.174.96.0/19
113.202.0.0/16
202.148.96.0/19
120.32.0.0/12
124.14.0.0/15
60.235.0.0/16
180.235.64.0/19
203.208.16.0/22
118.184.0.0/13
113.62.0.0/15
203.119.32.0/22
123.144.0.0/12
113.220.0.0/14
162.105.0.0/16
202.41.240.0/20
117.122.128.0/17
113.18.0.0/16
121.52.160.0/19
116.192.0.0/16
203.95.0.0/21
180.84.0.0/15
123.0.128.0/18
117.100.0.0/15
116.216.0.0/14
203.135.160.0/20
125.254.128.0/17
180.210.224.0/19
110.56.0.0/13
180.222.224.0/19
120.92.0.0/16
123.176.80.0/20
117.103.16.0/20
115.28.0.0/15
59.192.0.0/10
121.52.208.0/20
210.14.128.0/17
116.13.0.0/16
202.43.76.0/22
114.196.0.0/15
180.178.192.0/18
220.231.0.0/18
202.122.0.0/21
119.27.192.0/18
112.192.0.0/14
119.42.0.0/19
119.84.0.0/14
202.160.176.0/20
125.213.0.0/17
124.250.0.0/15
116.224.0.0/12
114.224.0.0/11
220.234.0.0/16
203.91.96.0/20
183.64.0.0/13
123.98.0.0/17
202.0.110.0/24
125.210.0.0/15
124.242.0.0/16
203.196.0.0/21
221.0.0.0/13
59.191.0.0/17
116.198.0.0/16
202.41.152.0/21
220.101.192.0/18
110.16.0.0/14
202.38.128.0/21
180.129.128.0/17
125.169.0.0/16
113.59.0.0/17
110.172.192.0/18
202.127.48.0/20
119.162.0.0/15
123.138.0.0/15
116.207.0.0/16
218.96.0.0/14
58.82.0.0/15
121.58.0.0/17
122.8.0.0/13
211.144.0.0/12
218.240.0.0/13
180.208.0.0/15
112.111.0.0/16
210.15.128.0/18
220.248.0.0/14
117.57.0.0/16
203.132.32.0/19
203.95.96.0/19
113.136.0.0/13
203.192.0.0/19
117.80.0.0/12
202.91.176.0/20
61.87.192.0/18
203.158.16.0/21
113.240.0.0/13
203.171.224.0/20
183.0.0.0/10
124.67.0.0/16
121.60.0.0/14
116.8.0.0/14
203.207.64.0/18
124.160.0.0/13
203.191.144.0/20
116.254.128.0/17
58.99.128.0/17
117.58.0.0/17
124.112.0.0/13
60.245.128.0/17
116.95.0.0/16
124.200.0.0/13
220.252.0.0/16
110.48.0.0/16
110.192.0.0/11
59.191.240.0/20
125.98.0.0/16
119.8.0.0/15
58.154.0.0/15
120.137.0.0/17
124.156.0.0/16
61.4.176.0/20
221.12.0.0/17
202.38.184.0/21
221.14.0.0/15
110.176.0.0/12
117.121.192.0/21
125.31.192.0/18
203.223.0.0/20
203.128.32.0/19
202.192.0.0/12
210.21.0.0/16
202.165.208.0/20
222.168.0.0/13
115.192.0.0/11
125.214.96.0/19
211.64.0.0/13
202.158.160.0/19
119.4.0.0/14
116.70.0.0/17
203.81.16.0/20
119.176.0.0/12
111.128.0.0/11
119.30.48.0/20
124.220.0.0/14
120.80.0.0/13
119.108.0.0/15
116.56.0.0/15
119.60.0.0/15
121.59.0.0/16
120.64.0.0/13
122.49.0.0/18
202.74.8.0/21
118.132.0.0/14
123.99.128.0/17
119.27.64.0/18
112.122.0.0/15
221.199.128.0/18
116.66.0.0/17
221.12.128.0/18
118.88.32.0/19
110.240.0.0/12
202.150.16.0/20
111.170.0.0/16
210.25.0.0/16
112.116.0.0/15
118.102.16.0/20
159.226.0.0/16
202.127.208.0/23
111.72.0.0/13
203.100.80.0/20
202.70.0.0/19
113.248.0.0/14
123.52.0.0/14
116.214.128.0/17
202.95.252.0/22
210.14.64.0/19
221.192.0.0/14
115.48.0.0/12
110.72.0.0/15
116.69.0.0/16
210.23.32.0/19
180.201.0.0/16
124.6.64.0/18
222.176.0.0/12
124.108.40.0/21
116.76.0.0/14
202.122.128.0/24
202.127.128.0/19
58.240.0.0/12
203.128.96.0/19
116.1.0.0/16
111.120.0.0/14
117.106.0.0/15
203.90.192.0/19
59.155.0.0/16
116.252.0.0/15
59.32.0.0/11
210.185.192.0/18
117.120.128.0/17
203.118.192.0/19
203.135.96.0/19
121.55.0.0/18
124.240.0.0/17
123.64.0.0/11
120.128.0.0/13
203.91.120.0/21
118.91.240.0/20
58.128.0.0/13
115.104.0.0/14
203.212.0.0/20
58.30.0.0/15
180.212.0.0/15
119.18.208.0/21
118.224.0.0/14
222.160.0.0/14
116.213.128.0/17
121.201.0.0/16
203.134.240.0/21
218.104.0.0/14
116.16.0.0/12
203.92.0.0/22
180.86.0.0/16
61.29.128.0/17
59.172.0.0/14
117.8.0.0/13
111.68.64.0/19
180.96.0.0/11
221.172.0.0/14
125.96.0.0/15
123.242.0.0/17
202.170.216.0/21
118.24.0.0/13
202.69.16.0/20
122.112.0.0/14
124.20.0.0/14
115.168.0.0/13
202.127.160.0/21
221.196.0.0/15
120.72.128.0/17
119.18.224.0/19
202.46.224.0/20
222.125.0.0/16
119.41.0.0/16
203.212.80.0/20
61.48.0.0/13
210.72.0.0/14
202.38.152.0/22
111.119.128.0/19
218.0.0.0/11
110.232.32.0/19
202.38.0.0/20
119.57.0.0/16
202.112.0.0/13
113.31.0.0/16
116.199.0.0/17
116.4.0.0/14
113.212.0.0/18
203.92.160.0/19
202.131.48.0/20
123.184.0.0/13
119.40.0.0/18
124.28.192.0/18
125.208.0.0/18
115.124.16.0/20
222.126.128.0/17
113.208.96.0/19
110.76.0.0/18
124.196.0.0/16
118.144.0.0/14
124.243.192.0/18
180.184.0.0/14
115.44.0.0/14
203.176.168.0/21
111.176.0.0/13
210.82.0.0/15
114.68.0.0/16
121.248.0.0/14
202.180.128.0/19
123.199.128.0/17
124.192.0.0/15
61.240.0.0/14
119.44.0.0/15
61.45.128.0/18
111.112.0.0/14
114.110.0.0/20
112.0.0.0/10
119.40.128.0/17
116.199.128.0/19
180.94.96.0/20
119.42.136.0/21
123.160.0.0/12
119.80.0.0/15
112.128.0.0/14
125.62.0.0/18
180.76.0.0/14
221.199.0.0/17
192.124.154.0/24
117.76.0.0/14
59.80.0.0/14
113.218.0.0/15
202.127.112.0/20
117.22.0.0/15
180.130.0.0/16
121.68.0.0/14
118.88.128.0/17
119.144.0.0/14
202.173.8.0/21
113.54.0.0/15
202.179.240.0/20
210.32.0.0/12
114.132.0.0/16
119.10.0.0/17
111.172.0.0/14
121.56.0.0/15
122.0.64.0/18
123.206.0.0/15
125.104.0.0/13
123.108.208.0/20
119.3.0.0/16
116.58.128.0/20
221.200.0.0/13
211.136.0.0/13
180.94.56.0/21
114.111.0.0/19
210.5.144.0/20
203.91.32.0/19
161.207.0.0/16
202.153.48.0/20
203.18.50.0/24
117.40.0.0/14
117.74.128.0/17
203.90.0.0/22
113.204.0.0/14
116.242.0.0/15
168.160.0.0/16
202.127.212.0/22
203.89.0.0/22
210.28.0.0/14
222.128.0.0/12
110.236.0.0/15
202.93.252.0/22
221.224.0.0/12
202.38.140.0/22
118.244.0.0/14
210.79.64.0/18
121.76.0.0/15
210.16.128.0/18
119.164.0.0/14
60.194.0.0/15
119.161.128.0/17
112.109.128.0/17
218.249.0.0/16
114.80.0.0/12
121.46.128.0/17
110.173.0.0/19
203.90.128.0/18
202.69.4.0/22
202.60.112.0/20
202.95.0.0/19
221.122.0.0/15
120.24.0.0/14
61.47.128.0/18
202.46.32.0/19
111.67.192.0/20
210.51.0.0/16
221.176.0.0/13
117.48.0.0/14
124.66.0.0/17
219.72.0.0/16
203.86.64.0/19
119.31.192.0/19
180.223.0.0/16
111.222.0.0/16
115.148.0.0/14
202.10.64.0/20
118.80.0.0/15
110.88.0.0/14
121.46.0.0/18
59.151.0.0/17
117.124.0.0/14
122.198.0.0/16
120.52.0.0/14
118.248.0.0/13
116.2.0.0/15
202.38.64.0/18
121.204.0.0/14
203.148.0.0/18
202.38.192.0/18
219.82.0.0/16
221.129.0.0/16
202.131.16.0/21
203.118.248.0/22
122.96.0.0/15
121.4.0.0/15
123.137.0.0/16
221.198.0.0/16
202.92.0.0/22
110.94.0.0/15
116.215.0.0/16
202.4.128.0/19
114.111.160.0/19
116.214.32.0/19
220.232.64.0/18
121.89.0.0/16
117.21.0.0/16
203.80.144.0/20
110.75.0.0/16
117.75.0.0/16
113.208.128.0/17
122.136.0.0/13
121.101.208.0/20
117.72.0.0/15
202.75.208.0/20
60.0.0.0/11
119.78.0.0/15
202.91.128.0/22
111.119.64.0/18
113.56.0.0/15
114.96.0.0/13
118.72.0.0/13
123.112.0.0/12
210.15.0.0/17
117.121.128.0/18
116.214.64.0/20
118.88.64.0/18
120.90.0.0/15
61.28.0.0/17
110.76.192.0/18
123.100.0.0/19
124.40.128.0/18
202.170.128.0/19
110.96.0.0/11
111.186.0.0/15
220.154.0.0/15
110.80.0.0/13
180.152.0.0/13
112.96.0.0/13
124.88.0.0/13
113.209.0.0/16
113.213.0.0/17
118.228.0.0/15
221.13.0.0/16
121.192.0.0/13
202.14.236.0/23
202.164.0.0/20
202.152.176.0/20
203.161.192.0/19
117.128.0.0/10
123.8.0.0/13
210.52.0.0/15
113.130.112.0/21
114.60.0.0/14
124.126.0.0/15
58.116.0.0/14
119.235.128.0/18
110.52.0.0/15
121.47.0.0/16
111.126.0.0/15
202.127.40.0/21
120.48.0.0/15
203.191.16.0/20
114.138.0.0/15
111.66.0.0/16
219.128.0.0/11
202.181.112.0/20
116.196.0.0/16
113.11.192.0/19
202.127.216.0/21
202.173.224.0/19
202.38.138.0/24
113.64.0.0/10
124.224.0.0/12
121.58.144.0/20
180.160.0.0/12
118.230.0.0/16
117.60.0.0/14
119.59.128.0/17
124.128.0.0/13
124.248.0.0/17
113.48.0.0/14
114.64.0.0/14
120.72.32.0/19
111.221.128.0/17
203.174.7.0/24
202.136.48.0/20
119.18.192.0/20
203.208.32.0/19
115.152.0.0/13
203.88.192.0/19
111.124.0.0/16
210.12.0.0/15
116.204.0.0/15
119.58.0.0/16
202.127.224.0/19
116.52.0.0/14
116.89.144.0/20
124.16.0.0/15
202.85.208.0/20
203.208.0.0/20
202.63.248.0/22
112.80.0.0/12
202.127.0.0/21
180.88.0.0/14
210.2.0.0/19
180.189.148.0/22
220.192.0.0/12
111.235.96.0/19
202.38.136.0/23
123.103.0.0/17
58.24.0.0/15
221.8.0.0/14
125.171.0.0/16
120.30.0.0/15
180.233.0.0/18
123.253.0.0/16

Name: GOOGLE
Type: nethash
References: 1
Header: hashsize: 100 probes: 1 resize: 50
Members:
209.85.128.0/17
64.68.80.0/21
64.68.88.0/21
216.239.32.0/19
8.8.4.0/24
64.233.160.0/19
173.194.0.0/16
66.102.0.0/20
8.8.8.0/24
74.125.0.0/16
66.249.64.0/19
8.6.48.0/21
4.3.2.0/24
72.14.192.0/18

Name: NOCLIP
Type: setlist
References: 1
Header: size: 4
Members:
GOOGLE

Name: YOUTUBE
Type: nethash
References: 0
Header: hashsize: 50 probes: 1 resize: 50
Members:
64.15.112.0/20
208.65.152.0/22
82.129.37.0/24
208.117.224.0/19
213.146.171.0/24

$sudo iptables -L

$ sudo iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
ZHANG      tcp  --  anywhere             anywhere            tcp spt:www 
flags:FIN,SYN,RST,ACK/SYN,ACK state ESTABLISHED match-set NOCLIP src /* 
client-side 
connection obfuscation */ 
LOG        tcp  --  anywhere             anywhere            tcp spt:www state 
ESTABLISHED gfw /* log gfw tcp resets */ LOG level info prefix `gfw: ' 
DROP       udp  --  anywhere             anywhere            udp spt:domain 
state 
ESTABLISHED gfw /* drop gfw dns hijacks */ 
CUI        tcp  --  anywhere             anywhere            tcp dpt:www 
flags:FIN,SYN,RST,ACK/SYN state NEW match-set CHINA src /* server-side 
connection 
obfuscation */ 

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain fail2ban-ssh (0 references)
target     prot opt source               destination

$cat /etc/resolv.conf 
# Generated by NetworkManager
nameserver 8.8.8.8
nameserver 8.8.4.4

$lsmod
Module                  Size  Used by
xt_CUI                  1724  1 
xt_comment              1032  4 
ipt_LOG                 5338  1 
xt_gfw                  1884  2 
xt_ZHANG                1858  1 
compat_xtables          3654  2 xt_CUI,xt_ZHANG
ipt_set                 1543  2 
ip_set_setlist          4039  1 
ip_set_nethash          8704  3 
xt_multiport            2762  0 
ip_set                 15548  5 ipt_set,ip_set_setlist,ip_set_nethash
pppoe                  11069  2 
pppox                   2694  1 pppoe
binfmt_misc             7960  1 
ipt_MASQUERADE          1863  0 
iptable_nat             5219  0 
nf_nat                 19501  2 ipt_MASQUERADE,iptable_nat
nf_conntrack_ipv4      12948  7 iptable_nat,nf_nat
nf_defrag_ipv4          1481  1 nf_conntrack_ipv4
xt_state                1490  4 
nf_conntrack           73966  5 
ipt_MASQUERADE,iptable_nat,nf_nat,nf_conntrack_ipv4,xt_state
ipt_REJECT              2384  0 
xt_tcpudp               2667  4 
iptable_filter          2791  1 
ip_tables              18422  2 iptable_nat,iptable_filter
x_tables               22397  12 
xt_comment,ipt_LOG,xt_gfw,compat_xtables,ipt_set,xt_multiport,ipt_MASQUERADE,ipt
able_nat,
xt_state,ipt_REJECT,xt_tcpudp,ip_tables
bridge                 53184  0 
stp                     2139  1 bridge
kvm_amd                36388  0 
kvm                   284996  1 kvm_amd
snd_hda_codec_realtek   278794  1 
snd_hda_intel          25453  4 
snd_hda_codec          85855  2 snd_hda_codec_realtek,snd_hda_intel
snd_hwdep               6924  1 snd_hda_codec
snd_pcm_oss            41362  0 
snd_mixer_oss          16267  1 snd_pcm_oss
ppdev                   6375  0 
snd_pcm                87978  4 snd_hda_intel,snd_hda_codec,snd_pcm_oss
snd_seq_dummy           1782  0 
snd_seq_oss            31187  0 
snd_seq_midi            5829  0 
snd_rawmidi            23388  1 snd_seq_midi
snd_seq_midi_event      7267  2 snd_seq_oss,snd_seq_midi
snd_seq                57417  6 
snd_seq_dummy,snd_seq_oss,snd_seq_midi,snd_seq_midi_event
snd_timer              23521  2 snd_pcm,snd_seq
snd_seq_device          6824  5 
snd_seq_dummy,snd_seq_oss,snd_seq_midi,snd_rawmidi,snd_seq
snd                    71010  19 
snd_hda_codec_realtek,snd_hda_intel,snd_hda_codec,snd_hwdep,snd_pcm_oss,snd_mixe
r_oss,snd
_pcm,snd_seq_oss,snd_rawmidi,snd_seq,snd_timer,snd_seq_device
fbcon                  39270  71 
tileblit                2487  1 fbcon
font                    8053  1 fbcon
bitblit                 5779  1 fbcon
softcursor              1565  1 bitblit
parport_pc             30118  1 
soundcore               8052  1 snd
psmouse                64288  0 
serio_raw               4886  0 
nvidia              10783166  38 
vga16fb                12693  1 
vgastate                9857  1 vga16fb
edac_core              45455  0 
edac_mce_amd            9182  0 
k8temp                  3912  0 
snd_page_alloc          8660  2 snd_hda_intel,snd_pcm
i2c_nforce2             6099  0 
lp                      9336  0 
parport                37160  3 ppdev,parport_pc,lp
sky2                   48579  0

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:40

GoogleCodeExporter commented 9 years ago 
No, not intranet but a public ADSL, with a public IP address.

Original comment by btre...@gmail.com on 13 Mar 2010 at 10:41

GoogleCodeExporter commented 9 years ago 
No configuration problem found. Maybe your ISP set some firewall rules. You may 
try
to launch ./scholarzhang in svn/branch/scholarzhang-0.3.2/ . If it fails too, 
neither
can west-chamber.

Original comment by yingyingcui.scholarzhang@gmail.com on 13 Mar 2010 at 10:59

GoogleCodeExporter commented 9 years ago 
compiled and try it with:
$ sudo ./scholarzhang -i ppp0
but there isn't showing anything then, but not quit.

Original comment by btre...@gmail.com on 13 Mar 2010 at 11:24

GoogleCodeExporter commented 9 years ago 
Futher more, I can get this:
$ wget http://youtube.com
--2010-03-13 19:26:55--  http://youtube.com/
Resolving youtube.com... 74.125.127.100, 74.125.67.100, 74.125.45.100
Connecting to youtube.com|74.125.127.100|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: http://www.youtube.com/ [following]
--2010-03-13 19:26:56--  http://www.youtube.com/
Resolving www.youtube.com... 72.14.203.100, 72.14.203.113, 72.14.203.102, ...
Connecting to www.youtube.com|72.14.203.100|:80... connected.
HTTP request sent, awaiting response... Read error (Connection reset by peer) 
in 
headers.
Retrying.

Original comment by btre...@gmail.com on 13 Mar 2010 at 11:27

GoogleCodeExporter commented 9 years ago 
你加上这两行试试:

iptables -t raw -A PREROUTING -p tcp --sport 80 -j NOTRACK
iptables -t raw -A OUTPUT -p tcp --dport 80 -j NOTRACK

并替换相关以下的:
iptables -A INPUT -t filter -i ppp+ -p tcp --sport 80 --tcp-flags 
FIN,SYN,RST,ACK
SYN,ACK -m state --state UNTRACKED -m set --match-set NOCLIP src -j ZHANG

Original comment by nirvana...@gmail.com on 15 Mar 2010 at 4:14

GoogleCodeExporter commented 9 years ago 
Hi nirvana117,
实在抱歉没明白后面说的替换的是怎么回事。我不懂 
iptables。原来我是按照 
http://code.google.com/p/scholarzhang/wiki/USAGE 里4个命令设置的 
iptables,请问现在我应该用哪些命令呢?烦请把该怎么做
的步骤写一下,谢谢。

Original comment by btre...@gmail.com on 15 Mar 2010 at 7:33

GoogleCodeExporter commented 9 years ago 
重启机子, 然后只执行下面的, 不需要用USAGE里面的命令了:

cd examples

ipset -R < YOUTUBE
ipset -R < GOOGLE
ipset -R < NOCLIP

iptables -t raw -A PREROUTING -p tcp --sport 80 -j NOTRACK
iptables -t raw -A OUTPUT -p tcp --dport 80 -j NOTRACK

iptables -A INPUT -p tcp --sport 80 --tcp-flags FIN,SYN,RST,ACK SYN,ACK -m set
--match-set NOCLIP src -j ZHANG

iptables -A PREROUTING -t mangle -i ppp+ -p udp --sport 53  -m gfw -j DROP

echo nameserver 8.8.4.4 > /etc/resolv.conf

Original comment by nirvana...@gmail.com on 15 Mar 2010 at 8:12

GoogleCodeExporter commented 9 years ago 
开始有用,但是看了一段之后再打开别的页面就又reset了:

$ wget youtube.com
--2010-03-15 16:22:40--  http://youtube.com/
Resolving youtube.com... 74.125.127.100, 74.125.67.100, 74.125.45.100
Connecting to youtube.com|74.125.127.100|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: http://www.youtube.com/ [following]
--2010-03-15 16:22:41--  http://www.youtube.com/
Resolving www.youtube.com... 74.125.153.138, 74.125.153.139, 74.125.153.102, ...
Connecting to www.youtube.com|74.125.153.138|:80... connected.
HTTP request sent, awaiting response... Read error (Connection reset by peer) 
in headers.
Retrying.

Original comment by btre...@gmail.com on 15 Mar 2010 at 8:24

GoogleCodeExporter commented 9 years ago 
sudo tcpdump -Kpq -s0 -wcap -ippp0 port 80
然后用firefox访问youtube.com

Original comment by btre...@gmail.com on 15 Mar 2010 at 1:52

Attachments:

GoogleCodeExporter commented 9 years ago 
你先贴一下iptables-save输出的内容(最好在你用任何iptables命令�
��前).

不知道是不是与iptables 1.4.4的版本有关系?

我的情况比较复杂, 我用的是debian 
squeeze当防火墙(2.6.32-trunk-686, iptables 1.4.6),
防火墙拨ADSL号上网(4条线), 局域网都通过防火墙的NAT上网, 
然后在防火墙上用squid开启透明
代理, 用iptables重定向所有访问web的包到squid代理上, 
然后在防火墙上安装西厢, 先开始的
时候也经常被RST, 不过我在raw table里面加了NOTRACK后, 
就非常稳定了, 100%不会被RST, 具
体原因也不知?

Original comment by nirvana...@gmail.com on 15 Mar 2010 at 3:12

GoogleCodeExporter commented 9 years ago 
$ sudo iptables-save
# Generated by iptables-save v1.4.4 on Tue Mar 16 08:41:03 2010
*nat
:PREROUTING ACCEPT [1022:61112]
:POSTROUTING ACCEPT [1542:99529]
:OUTPUT ACCEPT [1542:99529]
COMMIT
# Completed on Tue Mar 16 08:41:03 2010
# Generated by iptables-save v1.4.4 on Tue Mar 16 08:41:03 2010
*filter
:INPUT ACCEPT [9597:4923775]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [10114:1654869]
COMMIT
# Completed on Tue Mar 16 08:41:03 2010

Original comment by btre...@gmail.com on 16 Mar 2010 at 12:41

GoogleCodeExporter commented 9 years ago 
除开iptables的原因的话, 可能跟ADSL的pppoe有关系? 
这是我pppd(/etc/ppp/options)的配置: 

gateway:~# grep  ^\[^#\] /etc/ppp/options
asyncmap 0
crtscts
local
lock
modem
debug
lcp-echo-interval 40
lcp-echo-failure 6
lcp-max-failure 1
lcp-restart 1
lcp-max-configure 1
lcp-max-terminate 1
nodefaultroute
noauth
persist
mtu 1492
ipcp-max-configure 1
ipcp-max-failure 1
ipcp-max-terminate 1
ipcp-restart 1
chap-max-challenge 1
chap-restart 1
eap-max-rreq 1
maxfail 1
noipx
persist

用来拨852这条线的配置:

gateway:~# grep  ^\[^#\] /etc/ppp/peers/ppp852
unit 852
noproxyarp
plugin rp-pppoe.so eth0
user "4351852"

Original comment by nirvana...@gmail.com on 16 Mar 2010 at 6:00

GoogleCodeExporter commented 9 years ago 
$ grep  ^\[^#\] /etc/ppp/options
asyncmap 0
noauth
crtscts
lock
hide-password
modem
proxyarp
lcp-echo-interval 30
lcp-echo-failure 4
noipx

Original comment by btre...@gmail.com on 16 Mar 2010 at 8:17

GoogleCodeExporter commented 9 years ago 
今天尝试打开了adsl 
modem的路由功能,然后又和comment20类似,看一段之后被reset。

Original comment by btre...@gmail.com on 16 Mar 2010 at 8:19

GoogleCodeExporter commented 9 years ago 
抓包不全没有上下文。
只能看出74.125.153.138处在继发状态。是什么导致第一次触发的
?

Original comment by yingyingcui.scholarzhang@gmail.com on 4 Apr 2010 at 7:59

GoogleCodeExporter commented 9 years ago

Original comment by yingyingcui.scholarzhang@gmail.com on 18 Aug 2010 at 7:17

GoogleCodeExporter commented 9 years ago

Original comment by kiz...@gmail.com on 17 Sep 2011 at 2:41