From owner-freebsd-questions Tue Apr 10 20:53:49 2001 Delivered-To: freebsd-questions@freebsd.org Received: from grumpy.dyndns.org (user-24-214-76-236.knology.net [24.214.76.236]) by hub.freebsd.org (Postfix) with ESMTP id A14A837B422 for ; Tue, 10 Apr 2001 20:53:46 -0700 (PDT) (envelope-from dkelly@grumpy.dyndns.org) Received: from localhost (localhost [127.0.0.1]) by grumpy.dyndns.org (8.11.3/8.11.3) with ESMTP id f3B3rXP12859; Tue, 10 Apr 2001 22:53:33 -0500 (CDT) (envelope-from dkelly@grumpy.dyndns.org) Message-Id: <200104110353.f3B3rXP12859@grumpy.dyndns.org> X-Mailer: exmh version 2.3.1 01/18/2001 with nmh-1.0.4 To: Trevin Chow Cc: Lowell Gilbert , freebsd-questions@FreeBSD.ORG Subject: Re: Firewall rules causing SSH disconects? In-Reply-To: Message from Trevin Chow of "Tue, 10 Apr 2001 17:14:35 PDT." <5.0.2.1.2.20010410170717.02dc5d18@popserver.sfu.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 10 Apr 2001 22:53:33 -0500 From: David Kelly Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Trevin Chow writes: > At 07:48 PM 4/10/2001 -0400, Lowell Gilbert wrote: > >The thing to check is probably whether the connection is being shut > >down by the other side (with a FIN or RST), by a lack of ACKs coming > >back, or for some reason internal to your own host. > > I doubt the remote side is causing the problems, as I"m able to connect to > other remote hosts okay with the same SSH client. FWIW, the client is a > Windows 2K box using SecureCRT. However, I get the same behaviour out of a > simple ssh connection from my University's Solaris boxes. > > It seems that everything points to my actual server being the problem, but > I can't figure out for the life of me what it might be. Considering I'm > now runnign a completely open firewall (allow ip from any to any), I think > I've completely eliminated the possibility of a firewall rule causing > this... I'm open to field any other possibilties. What is the length of time involved? You say you have replicated the problem from both W2K and Solaris clients but I'm still curious as to what is between those systems and your FreeBSD system. Guessing the FreeBSD system is at home on DSL or cable modem? A number of ISPs have what are supposed to be transparent caches between their users and the internet. Sometimes they really are transparent. Sometimes not. A friend had a heck of a time with ftp and ssh into his home computer on @home, then magically one day the problems disappeared. -- David Kelly N4HHE, dkelly@hiwaay.net ===================================================================== The human mind ordinarily operates at only ten percent of its capacity -- the rest is overhead for the operating system. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message