1

We're having a very strange problem where 2 macbooks running osx 10.8.2 can't connect to our public facing server on any port.

Attempting to ssh or navigate to the web server fails, but every other site works for them. They can not connect to any server running on our ip range (which is quite small), which would rule out iptables rules with fail2ban blocking them.

DNS is resolving (running host server.com shows ip) and connecting directly to the ip fails.

The firewall on the macbooks appears to be off. I am unable to ping right now as we are behind a protected network. Both macbooks are unable to connect when at home (ie. completely different ip, completely different routes/firewall). /etc/hosts is clean.

We are not aware of anyone else with this issue. We are running proxmox on the host, debian and ubuntu server on the vms.

An example of one of the urls that doesn't connect is http://mikeserv.me/. Other macbooks can connect fine, it's just these 2.

So I'm all out of ideas:

- not a dns problem (connecting directly to ip doesn't work)

- not an ip being blocked problem (other machines work on same ip)

- not a general network problem (can connect to other websites)

Mike Gallagher
  • 31

1 Answers1

2

##networking on freenode solved the problem.

See https://superuser.com/questions/461825/cannot-access-pear-php-net-from-osx-lion

Both macbooks had hamachi vpn installed by coincidence.

This is the hamachi interface. When Hamachi started their service, they chose the 5.0.0.0/8 network as their pool of addresses to avoid conflicting with any existing ranges. However, hamachi were never allocated this range.

In the past couple of months, RIPE (who are responsible for this range) have started selling blocks in the 5/8 network. This was inevitable with the quickly depleting numbers of ipv4 addresses, yet hamachi are still using this block.

Our servers ips are in that range.

On a sidenote, everyone involved in finding the problem is finding this hilarious.

Community
  • 1
Mike Gallagher
  • 31