Yes, and if it were a DNS problem you'd (sorry, *I'd*) think I'd see DNS-related traffic from the XP box. But... Nothing. At all. Zip. Zilch. Nada. No web-related traffic whatsoever originating from the XP box when the proxy settings in IE are de-selected. -----Original Message----- From: Edmundo Carmona [mailto:eantoranz@xxxxxxxxx] Sent: December 24, 2005 2:06 PM To: Dave Beach Subject: Re: Networking question and say... if you ping a host outside of your network, the ping is routed through the GW box? It could be a DNS problem, because IE will try to resolve a domain name before sending a HTTP request. On 12/24/05, Dave Beach <drbeach@xxxxxxxxxx> wrote: > Thanks for the reply. The default gateway for the internal network is > the firewall box. > > -----Original Message----- > From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx > [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Edmundo > Carmona > Sent: December 24, 2005 1:59 PM > To: netfilter@xxxxxxxxxxxxxxxxxxx > Subject: Re: Networking question > > Probably there's no gateway in the XP box setup... or the gateway is > plain wrong. > > Merry Xorg-mas to everyone around! ;-) > > On 12/24/05, Dave Beach <drbeach@xxxxxxxxxx> wrote: > > > > This is undoubtedly off-topic in oh-so-many ways; I'd be quite happy > > to be redirected to another, more appropriate mailing list should > > someone be so kind as to suggest one. > > > > Internal, home, private network, WinXP boxen and a Squid proxy, > > connecting through an iptables box to my router and cable modem. > > Everything works peachy. > > > > While trying to poke bittorrent holes through my iptables setup (see? > > Some vague evidence of relevance), I encountered problems and > > decided to take the proxy out of the picture. VERY much to my > > surprise, when I reconfigured IE to not use the proxy (and > > configured iptables to allow for a direct connection), I see no HTTP > > traffic whatsoever leaving the XP box destined for the firewall. In > > fact, no TCP traffic either (all traffic analysis done with ethereal > > on the XP box). I can ping to/from the XP box, and see THAT via ethereal. > > > > I am considerably confused by this. My presumption was that IE would > > just happily send HTTP traffic directly to the firewall, but this is > > NOT the behaviour I'm seeing. > > > > I know it's Christmas Eve day, and I was out a bit late last night, > > but there's clearly something VERY obvious I'm missing. > > > > > > > > >
