From owner-freebsd-security@FreeBSD.ORG Fri Apr 29 14:10:41 2005 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 431C216A4CE for ; Fri, 29 Apr 2005 14:10:41 +0000 (GMT) Received: from viefep18-int.chello.at (viefep18-int.chello.at [213.46.255.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4DB5F43D1D for ; Fri, 29 Apr 2005 14:10:37 +0000 (GMT) (envelope-from nagy.istvan1@chello.hu) Received: from PIHP ([80.98.114.199]) by viefep18-int.chello.at (InterMail vM.6.01.04.04 201-2131-118-104-20050224) with SMTP id <20050429141035.HMGT12975.viefep18-int.chello.at@PIHP>; Fri, 29 Apr 2005 16:10:35 +0200 Message-ID: <005f01c54cc5$36ab6e40$0200a8c0@PIHP> From: "Nagy Istvan" To: "Siddhartha Jain" , References: <4272011F.9040707@netmagicsolutions.com> Date: Fri, 29 Apr 2005 16:10:33 +0200 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2180 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 X-RFC2646: Format=Flowed; Original Subject: Re: IPFW disconnections and resets X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Apr 2005 14:10:41 -0000 Hi, im playing with the /etc/crontab to reload the rules periodically, while i remotly edit both crontab and ipfw_rules.sh, this solves the problem of lock-out (but i dont know exactly what other problems it might cause...:) sshd_config has a ClientAliveInterval (seconds between trys) and ClientAliveCountMax (how many times to try keepalive, before client known as nonrespondig and disconnected) option, and on the client side as ~Neo-Vortex wrote find the keepalive setting. (and if the client is untrustable, disable it >:) Istvan ----- Original Message ----- From: "Siddhartha Jain" To: Sent: Friday, April 29, 2005 11:40 AM Subject: IPFW disconnections and resets > Hi, > > I am using IPFW on FreeBSD 4.11 > > I am facing two problems: > - SSH sessions timeout after a while > - When I run "/sbin/ipfw -q -f flush" in the rules script all connection > get reset (and I am thrown out of the box). > > Is this standard functioning of ipfw or do I need to change any > configuration? > > > Thanks, > > Siddhartha > > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to > "freebsd-security-unsubscribe@freebsd.org" > > > -- > No virus found in this incoming message. > Checked by AVG Anti-Virus. > Version: 7.0.308 / Virus Database: 266.10.4 - Release Date: 2005.04.27. > >