You (Manuel Bouyer) said:
> 
> On Feb 11, Nate Bohlmann wrote
> > [problems with NAT on i386 box]
> 
> Could'nt this be the now traditional "icmp filetred" problem ?
> I checked, and www.weather.com sends datas with the 'DF' (Don't Fragment) flag
> set. This is for path mtu discovery, and is the default behavior of Bill
> Gates's (modern:) OSes.
> Now, as you're behind a ppp link, I assume your MTU (ifconfig will tell you
> that) is 576 or even maybe 296. These 'DF' packets will be rejected by your
> ISP (greater than the MTU) with an ICMP message "need fragment" back to
> www.weather.com, When www.weather.com get this ICMP message, it will decrease
> its packet size and retry.

You nailed the problem right on.  After upping my MTU to 1500 (standard
ethernet packet size) everything is fine and dandy.  I remember the 
good old days when ICMP bombing wasn't a problem and hardly anyone set
DF on their packets.. Oh well.

Thanks for the help.

Nate

-- 
Nathan Bohlmann                                        njb@elfwerks.com   
Elfwerks Consulting                        http://www.elfwerks.com/~njb