RSS FeedsExplicit Congestion Notification by Bruce Garlock
I was driving myself nuts over the weekend with another strange problem, but I figured it out. I picked up a Sun Sparc 20 off of ebay (so I can mess with Solaris), and when I went to PayPal to pay for it, PayPal kept saying "connection refused". All other sites seemed to work fine, and I used one of those free proxy servers to access it too. I also noticed that I couldn't get to Adaptec! Those were the only two sites. Everything else worked fine. Since I made the jump to kernel 2.4.1, I figured I try 2.2.18, and see if I could get there. No problem when I booted to 2.2.18! I finally went on IRC and had someone send me their .config file for the kernel options, and it showed me that I had CONFIG_INET_ECN enabled:
CONFIG_INET_ECN: Explicit Congestion Notification (ECN) allows routers to notify clients about network congestion, resulting in fewer dropped packets and increased network performance. This option adds ECN support to the Linux kernel, as well as a sysctl (/proc/sys/net/ipv4/tcp_ecn) which allows ECN support to be disabled at runtime. Note that, on the Internet, there are many broken firewalls which refuse connections from ECN-enabled machines, and it may be a while before these firewalls are fixed. Until then, to access a site behind such a firewall (some of which are major sites, at the time of this writing) you will have to disable this option, either by saying N now or by using the sysctl. If in doubt, say N.
After I echoed a "0" to /proc/sys/net/ipv4/tcp_ecn, I was able to get to the sites again! More information at http://eltoday.com/article.php3?ltsn=2001-04-17-001-14-PS.
Publish your articles, comments, book reviews or opinions here!
© March 2001 Bruce Garlock. All rights reservedIf this page was useful to you, please help others find it:
Inexpensive and informative Apple related e-books:
Maintaining Your Mac
Macworld Total Lion Superguide
iPhone OS 3
Users & Accounts in Snow Leopard
iKey 2
More Articles by Bruce Garlock
Have you tried Searching this site?
Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates
This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more. We appreciate comments and article submissions.
Many of the products and books I review are things I purchased for my own use. Some were given to me specifically for the purpose of reviewing them. I resell or can earn commissions from the sale of some of these items. Links within these pages may be affiliate links that pay me for referring you to them. That's mostly insignificant amounts of money; whenever it is not I have made my relationship plain. I also may own stock in companies mentioned here. If you have any question, please do feel free to contact me.
Specific links that take you to pages that allow you to purchase the item I reviewed are very likely to pay me a commission. Many of the books I review were given to me by the publishers specifically for the purpose of writing a review. These gifts and referral fees do not affect my opinions; I often give bad reviews anyway.
We use Google third-party advertising companies to serve ads when you visit our website. These companies may use information (not including your name, address, email address, or telephone number) about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, click here.
This post tagged:
Buy Kerio from a dealer
who knows tech:
I sell and support
Kerio Connect Mail server, Control, Workspace and Operator licenses and subscription renewals
Click here to add your comments
Don't miss responses! Subscribe to Comments by RSS or by Email
Click here to add your comments
If you want a picture to show with your comment, go get a Gravatar