Login or Register to Ask a Question and Join Our Community


Solaris

SYN_SENT does not receive reset from closed ports

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Solaris SYN_SENT does not receive reset from closed ports
# 1  
Old 06-16-2011
SYN_SENT does not receive reset from closed ports
Dear all,
I have a Solaris 10 system with a bunch of zones on it. My issue is the following:

- I have application A and B running in the same zone: i.e. they communicate via loopback interface. Application A tries to connect to application B, usually listening on port X. If application B is down, i.e. the port X is not listening, Application A hangs for a while, until eventually a timeout occurs.

If I issue a "netstat -an | grep X" during the communication attempt I can see the SYN_SENT status of the communication.

My guess is that app A is not receiving any RST packet from the OS, but why? The timeout I observe is in fact the SYN_SENT one.

You might say this is a classic firewall issue, but ipf is down and I checked the hosts.deny and hosts.allow files and everything is fine. I even flushed them (and restarted inetd) without luck. Smilie

Since I cannot snoop loopback interface on Solaris, I cannot be sure the issue is that, but I have no other ideas.

Do you have any suggestion?

Thank you in advance
# 2  
Old 06-16-2011
After few minutes of googling I found this DTrace script posted by Sanjeev Bagewadi. It seems to show network traffic going through loopback interface.
Re: [dtrace-discuss] Capture of loopback interface messages
# 3  
Old 06-17-2011
thank you, I'll give it a try tomorrow. In the meantime, assuming the RST is not sent back to the app... What could be the cause?

---------- Post updated 17-06-11 at 02:39 PM ---------- Previous update was 16-06-11 at 11:38 PM ----------

The snoop results are the following:

Code:
/root# telnet localhost 805
Trying 127.0.0.1... 
telnet: connect to address 127.0.0.1: Connection timed out
Trying ::1...
telnet: Unable to connect to remote host: Network is unreachable

In the meanwhile the snoop output is:

Code:
Using device nxge3 (promiscuous mode)
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
source -> dest TELNET C port=46234
 
...

Doing the same on a system where I have no issues:
Code:
$telnet localhost 805
Trying 127.0.0.1...
telnet: connect to address 127.0.0.1: Connection refused
Trying ::1...
telnet: Unable to connect to remote host: Network is unreachable

the snoop output is:

Code:
source -> dest TELNET C port=60535
dest -> source TELNET R port=60535

At the moment I am looking into nddconfig params...
# 4  
Old 06-17-2011
I am curious. Maybe I am missing something. Why are you expecting the OS to sent a RST to application A if application B is not up? My expectation is that application A simply times out as seems to be the case.
# 5  
Old 06-17-2011
Thanks for your interest.
I believe if no port filtering (or similar) is active the connection attempt should be immediately refused (as it happens on other systems I have, see the example I posted) and should not go in timeout.

I hope this clarifies the situation.

Update: I tried to modify nddconfig params and I eventually disabled the service (and rebooted) in both the local and the global zones. Still no joy Smilie
# 6  
Old 06-22-2011
SOLVED!

Solaris patch IDR147303-02 was creating the issue. Removing that solved my problem
# 7  
Old 06-22-2011
Thank you for the update. Glad you found a solution!
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Can ping out but cannot receive

Hi there, I am able to ping google.com However, I am able to see like google.com (172.xx.xx.xx). When the ping is done, like 5 packet transmitted but zero packet recieved. How do I go about re-mediating it? (6 Replies)
Discussion started by: alvinoo
6 Replies

2. IP Networking

Debian ports reporting closed. Refused connection

Hey guys, I'm having trouble with checking what ports are open on my Debian distro, which is reporting all ports closed, though they are clearly open I am checking to see if ports are open with netcat: nc 127.0.0.1 80 localhost 80 (http) : Connection refusedAs an example but on all ports... (0 Replies)
Discussion started by: 3therk1ll
0 Replies

3. Shell Programming and Scripting

Notification from another server need to receive.

I have two application server appserver1 and appserver 2. A script will run from appserver1 which main activity is 1. Connect with the apserver 2 and run a script which saved on appserver2 2. the saved script will in appserver 2 will complete its task and generate a log Problem i need to... (0 Replies)
Discussion started by: Imtiaz43
0 Replies

4. UNIX for Dummies Questions & Answers

Can send but not receive email

Hi, One of the users in our company can send but not receive email. We are using SENDMAIL in conjunction with procmail. The funny thing is that all his sent email is in his /var/spool/mail but the email client does not pick anything up! He is using IMAP. Anyone see have any ideas? (2 Replies)
Discussion started by: mojoman
2 Replies

5. UNIX for Dummies Questions & Answers

ssh_exchange_identification: Connection closed by remote host Connection closed

Hi Everyone, Good day. Scenario: 2 unix servers -- A (SunOS) and B (AIX) I have an ftp script to sftp 30 files from A to B which happen almost instantaneously i.e 30 sftp's happen at the same time. Some of these sftp's fail with the following error: ssh_exchange_identification: Connection... (1 Reply)
Discussion started by: jeevan_fimare
1 Replies

6. UNIX for Advanced & Expert Users

Are ports above 1024 closed by default ?

Hi guys, Just needed to know if all the ports above 1024 are closed by default. I know that below 1024 the ports are reserved for the kernel and ports above 1024 are reserved for user applications. But by default, if I do not have a rule in my firewall to block ports above 1024, Will my... (4 Replies)
Discussion started by: firefox211
4 Replies

7. Forum Support Area for Unregistered Users & Account Problems

Did not receive activation mail

Hi Administrators, I've registered myself yesterday and have been waiting for my account to be activated. I've followed the instructions in the 'See this if you have an account but cannot post ' thread to request for an activation mail to be sent to my other email address, but still did not... (0 Replies)
Discussion started by: pl_cyber
0 Replies

8. UNIX for Dummies Questions & Answers

Closed ports

Hello I need to close some ports on a box Solaris 8, which command I need to use. Thanks for your replies (2 Replies)
Discussion started by: lo-lp-kl
2 Replies

9. UNIX for Dummies Questions & Answers

Syn_sent

Dear Guys , I have linux - redhat 6.1 and it is on the internet , works as email server forworder . when i execute netstat -a command i got a strange output that i want to ask about it and how can i control it or drop it plz : the output looks like : tcp 0 1... (5 Replies)
Discussion started by: tamemi
5 Replies
Login or Register to Ask a Question