Date: Tue, 26 Mar 2002 14:20:01 -0800 From: Jon Rust <jpr@vcnet.com> To: freebsd-stable@freebsd.org Subject: natd/divert/ipfw timeout values changed in 4.5S? Message-ID: <20020326142001.H36000@mail.vcnet.com>
next in thread | raw e-mail | index | archive | help
Since upgrading from 4.4S to 4.5S I'm having some problems behind a FreeBSD natd box. Specifically, some users have Filemaker and TimbuktuPro. When they first initiate the connection, everything is fine, but after X minutes of inactivity, the connection goes completely AWOL. The effected system can still reach the net, but those particular apps have to be force quit and restarted in order to recover. This did not happen prior to 4.5S, and I've exhausted other avenues for potential culprits. Comparing sysctl values =~ /net.inet/ on an older system to a 4.5S system, i see a few diffs, but I'm not sure of what the variables in question do. new: net.inet.ip.fw.static_count: 7 net.inet.tcp.newreno: 1 net.inet.ip.fw.dyn_udp_lifetime: 10 net.inet.ip.fw.dyn_grace_time: 10 net.inet.ip.maxfragpackets: 256 net.inet.ip.check_interface: 0 net.inet.tcp.do_tcpdrain: 1 net.inet.tcp.pcbcount: 14 net.inet.tcp.icmp_may_rst: 1 net.inet.tcp.strict_rfc1948: 0 net.inet.tcp.isn_reseed_interval: 0 net.inet.tcp.syncookies: 1 net.inet.tcp.syncache.bucketlimit: 30 net.inet.tcp.syncache.cachelimit: 15359 net.inet.tcp.syncache.count: 0 net.inet.tcp.syncache.hashsize: 512 net.inet.tcp.syncache.rexmtlimit: 3 changed: net.inet.ip.fw.dyn_fin_lifetime: 1 (was 20) net.inet.ip.fw.dyn_rst_lifetime: 1 (was 5) net.inet.ip.fw.dyn_short_lifetime: 5 (was 30) net.inet.tcp.local_slowstart_flightsize: 4 (was 65535) net.inet.tcp.rfc1323: 1 (was 0) Here's my IPFW ruleset: 00050 divert 8668 ip from any to any via dc0 00060 pipe 1 tcp from any 119 to any in 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 00300 deny ip from 127.0.0.0/8 to any 65000 allow ip from any to any 65535 deny ip from any to any Thanks in advance for any help you can lend, jon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020326142001.H36000>