Re: IPF dropping my TCP sessions

To: Martti Kuparinen <martti.kuparinen%iki.fi@localhost>
Subject: Re: IPF dropping my TCP sessions
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Tue, 24 Mar 2009 21:47:45 +0100

On Tue, Mar 24, 2009 at 08:59:39AM +0200, Martti Kuparinen wrote:
> Martti Kuparinen wrote:
> 
> >I have big problems with IPF 4.1.29 on NetBSD 5.0_RC2. I had two SSH 
> >sessions open and they were visible as
> >
> >Source IP             Destination IP         ST   PR   #pkts    
> >#bytes      ttl
> >10.0.18.3,36821       xxx.xxx.xxx.130,22    4/4  tcp     213     21388  
> >3:58:26
> >10.0.18.3,45536       xxx.xxx.xxx.140,22    4/4  tcp      43      7668  
> >3:59:55
> >
> >Later (say 15 minutes or so, i.e. not even close to the TTL) I noticed 
> >both my SSH sessions were unresponsive so I logged into the firewall and 
> >and saw no state entries for my SSH sessions.
> >
> >Anyone else having similar problems with IPF on NetBSD 5.0?
> 
> This might in fact be ipnat related as I have no problems at work were the 
> firewall is running NetBSD/amd64 5.0_RC2 but we are using public IP 
> addresses and no NAT at all...

Your problem looks a lot like an issue I reported in
http://www.archivum.info/current-users%netbsd.org@localhost/2008-05/msg00267.html

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

References:
- IPF dropping my TCP sessions
  - From: Martti Kuparinen
- Re: IPF dropping my TCP sessions
  - From: Martti Kuparinen

Prev by Date: Re: Problems with NSLU2/xscale kernel that go back to April, 2008
Next by Date: Re: Problems with NSLU2/xscale kernel that go back to April, 2008
Previous by Thread: Re: IPF dropping my TCP sessions
Next by Thread: Re: IPF dropping my TCP sessions
Indexes:

Home | Main Index | Thread Index | Old Index