From owner-freebsd-isp  Wed Sep 26  8:47:12 2001
Delivered-To: freebsd-isp@freebsd.org
Received: from atlas.rccn.net (atlas.rccn.net [193.136.7.1])
	by hub.freebsd.org (Postfix) with SMTP id 73E2637B40E
	for <freebsd-isp@freebsd.org>; Wed, 26 Sep 2001 08:47:08 -0700 (PDT)
Received: (qmail 92435 invoked from network); 26 Sep 2001 15:46:54 -0000
Received: (ofmipd unknown); 26 Sep 2001 15:46:32 -0000
Date: 26 Sep 2001 16:46:45 +0100
Message-ID: <0ca401c146a2$723de5f0$dc0788c1@jpsp2>
From: "=?iso-8859-1?Q?Jo=E3o_Pagaime?=" <jpsp@fccn.pt>
To: freebsd-isp@freebsd.org
Subject: Fw: SSH2 dies when idle
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4522.1200
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org


Hello all,

I remember someone set a call-back for me
to reply to his email, if I got to solve this problem,
but I deleted his email, so here it is anyhow.

The problem was a statefull firewall that closed
idle connections older than one hour.

The solution was to make the server start the
TCP keep-alive algorithm earlier (75 seconds for instance
instead of 2 hours), through a sysctl command, like this:

    $ sysctl -w net.inet.tcp.keepinit=75000

The bad network channel was just a coincidence
(after the firewall, all network channels aren't so
great...)

--jp


----- Original Message -----
From: "Joćo Pagaime" <jpsp@fccn.pt>
To: <Sent: Friday, September 14, 2001 11:01 AM
Subject: SSH2 dies when idle


> Hello all,
>
> My idle SSH sessions sometimes die out, when connected
> to some servers reachable through a not-so-good
> network channel (1% packet loss and big jitter)
>
> I wouldn't like to totally desconfigure TCP Keep
> alives on those SSH sessions, but would like
> to decrease it's sensibly.
>
> Has anybody had the same problem and come up
> with a solution?
>
> Thanks,
> Joao
>
> PS: SSH version is 2.0.13
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message