From owner-freebsd-net@FreeBSD.ORG Fri Apr 19 09:22:37 2013 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id D49C0BBB for ; Fri, 19 Apr 2013 09:22:37 +0000 (UTC) (envelope-from carlopmart@gmail.com) Received: from mail-wi0-x230.google.com (mail-wi0-x230.google.com [IPv6:2a00:1450:400c:c05::230]) by mx1.freebsd.org (Postfix) with ESMTP id 6FD176CE for ; Fri, 19 Apr 2013 09:22:37 +0000 (UTC) Received: by mail-wi0-f176.google.com with SMTP id hj19so489014wib.15 for ; Fri, 19 Apr 2013 02:22:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type; bh=E7rrnJN1nDf3Nz8McyGjUHAtRaa8tj2nsv3XY18GOuE=; b=T++vxPBxLOyjcm7C/p/juS/a8LLfanfb2l1Qgx4Kmwymz+k7EWK1NPWbdMYDssmVyN aBA4yjYf5Gqmb2Bm9hTWEgf6Z8tpbXoLVHWuA6pgFIb+9TC8QtZH99NyTISx5vVvTzS1 wawi+hBq65PFQAlQ/SEmMddCTnOEBlPL4SOMmnWctpyaowQOUF2qv29tOhDj5cQ81zOQ GQ4zJe3IvSHNQtpkZI6XRkGk8L5aTtXuGCxM5jxMlhqBnlqcA240XPNEb/EBqCg7HNfR AO8paBdqAWPjXfWUmKKvqYQZKcioRnIW+67TWSxvt3d1JD9Vr52DWT0FwVdhgU77Lgu5 9KeA== MIME-Version: 1.0 X-Received: by 10.180.188.3 with SMTP id fw3mr23528139wic.33.1366363356587; Fri, 19 Apr 2013 02:22:36 -0700 (PDT) Received: by 10.194.20.227 with HTTP; Fri, 19 Apr 2013 02:22:36 -0700 (PDT) In-Reply-To: References: Date: Fri, 19 Apr 2013 09:22:36 +0000 Message-ID: Subject: Re: Network connections are lost from time to time From: "C. L. Martinez" To: freebsd-net@freebsd.org Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Apr 2013 09:22:37 -0000 On Fri, Apr 19, 2013 at 7:11 AM, C. L. Martinez wrote: > Hi all, > > I have a strange problem with my FreeBSD 9.1 (fully patched): I loose ssh > sessions from time to time frequently. > > This fbsd box is installed in an ESXi 5.1 server and I have another three > fbsd 9.1 in the same ESXi host that do not have this problem, but maybe the > problem is with my sysctl.conf and loader.conf settings: > > sysctl.conf > > # $FreeBSD: release/9.1.0/etc/sysctl.conf 112200 2003-03-13 18:43:50Z mux $ > # > # This file is read when going to multi-user and its contents piped thru > # ``sysctl'' to adjust kernel values. ``man 5 sysctl.conf'' for details. > # > > # Uncomment this to prevent users from seeing information about processes > that > # are being run under another UID. > security.bsd.see_other_uids=0 > security.bsd.see_other_gids=0 > > # Refresh arp table entries in 2 minutes > net.link.ether.inet.max_age=120 > > # Drop tcp/udp packets destined for closed ports > net.inet.tcp.blackhole=2 > net.inet.udp.blackhole=1 > > # Use the H-TCP congestion control algorithm which is more aggressive > ##net.inet.tcp.cc.algorithm=htcp > > # Host cache is used to cache connection details and metrics > ##net.inet.tcp.hostcache.expire=5400 > > # Maximum segment size (MSS) specifies the largest amount of data in a > single TCP segment > net.inet.tcp.mssdflt=1440 > > # Make sure time stamps are enabled for slowstart_flightsize > net.inet.tcp.rfc1323=1 > > # Make sure rfc3390 is DISABLED so the slowstart flightsize values are > used. > net.inet.tcp.rfc3390=0 > > # Size of the TCP transmit and receive buffer. > net.inet.tcp.sendspace=262144 > > # Increase auto-tuning TCP step size of the TCP transmit and receive > buffers. > net.inet.tcp.recvbuf_inc=524288 > > # Somaxconn is the buffer or backlog queue depth for accepting new TCP > connections. > kern.ipc.somaxconn=1024 > > # Reduce the amount of SYN/ACKs we will _retransmit_ to an unresponsive > initial connection. > net.inet.tcp.syncache.rexmtlimit=1 > > # Spoofed packet attacks may be used to overload the kernel route cache. > net.inet.ip.rtexpire=60 > net.inet.ip.rtminexpire=2 > net.inet.ip.rtmaxcache=1024 > > loader.conf: > > ############################################################## > ### Loader settings ######################################## > ############################################################## > > autoboot_delay="5" > beastie_disable="YES" > > > ############################################################## > ### Kernel tunables ######################################## > ############################################################## > > kern.maxfiles="25000" > kern.ipc.nmbclusters="32768" > net.inet.tcp.syncache.hashsize="1024" > net.inet.tcp.syncache.bucketlimit="100" > net.inet.tcp.tcbhashsize="4096" > > > ############################################################## > ### Hardware tunables ###################################### > ############################################################## > > hw.pci.enable_msi="0" > hw.pci.enable_msix="0" > > > ############################################################## > ### Networking modules ##################################### > ############################################################## > > cc_htcp_load="YES" > > > ############################################################## > ### Other modules ########################################## > ############################################################## > > aio_load="YES" > > How can I debug where is the problem?? > More info when I try to connect with PuTTY from a windows desktop appears the following error: Network error: Software caused connection abort. ... and pf is disabled (ipfw and ipfilter, too).