From owner-freebsd-stable Mon Jul 3 0:57:23 2000 Delivered-To: freebsd-stable@freebsd.org Received: from deborah.paradise.net.nz (deborah.paradise.net.nz [203.96.152.32]) by hub.freebsd.org (Postfix) with ESMTP id 7CEAE37B80A for ; Mon, 3 Jul 2000 00:57:14 -0700 (PDT) (envelope-from marki@paradise.net.nz) Received: from evileye (203-79-95-76.apx0.paradise.net.nz [203.79.95.76]) by deborah.paradise.net.nz (8.10.1/8.10.1) with SMTP id e637uxE14358; Mon, 3 Jul 2000 19:56:59 +1200 (NZST) Message-ID: <006a01bfe4c4$40db4ca0$0101a8c0@rf.org> From: "Mark Ibell" To: "Sean O'Connell" , "Chad R. Larson" Cc: References: <200007030318.UAA18920@freeway.dcfinc.com> <20000702234118.N65450@stat.Duke.EDU> Subject: Re: [Fwd: telnet/tcp problems in 4.0-RELEASE] Date: Mon, 3 Jul 2000 19:56:18 +1200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I appreciate all the help folks but in the end restarting 'named' on our broken RH Linux box fixed the problem immediately. Still interesting that nslookup and the like worked though. Cheers, Mark ----- Original Message ----- From: Sean O'Connell To: Chad R. Larson Cc: ; Sent: Monday, July 03, 2000 3:41 PM Subject: Re: [Fwd: telnet/tcp problems in 4.0-RELEASE] > Chad R. Larson stated: > : As I recall, Alexander Nazarenko wrote: > : > I think you have ftpd with identd support on local machine, and there > : > is no identd running on it and kernel compilled with "dropping" rst > : > packets. Try to turn on identd. > : > : Anyone know off the top of their heads the timeout for ident, and > : for a DNS lookup? > > The more I think about this problem, it might prove useful to > enable the log-in-vain feature and then maybe we can see if it > is a problem with something expecting an identd or similar. > > Adding > > log_in_vain="YES" > > to /etc/rc.conf will keep it across reboots, and running > > sysctl -w net.inet.tcp.log_in_vain=1 > sysctl -w net.inet.udp.log_in_vain=1 > > will enable it. This is also useful for watching port scans :) > > Also, another thing that will cause a goodly hang is if you have > enabled the blackhole feature on either tcp or udp. > > Hope any/some of this is helpful. > S > -- > 1--------01---------01--------01--------01--------01--------01--------0 > Sean O'Connell sean@stat.Duke.EDU > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message