On Wed, 30 Oct 2002 rich+ml@lclogic.com wrote: > If you're using ipchains/tables I'd say you have tcp/25 allowed in > forwarding chain but denied in the output chain == Rich Turns out that the remote sites were rejecting TCP packets with ECN headers in them. Setting tcp_ecn to 0 fixed the problem. Masqueraded hosts don't have the ECN fields set. James Rich - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
