Subject: Re: Slow in accepting connections
To: Ken Nakata <>
From: Henry B. Hotz <>
List: port-mac68k
Date: 09/30/1998 17:02:36
At 6:41 PM -0700 9/29/98, Ken Nakata wrote:
>Nicholas James Humfrey wrote:
>>    I am running NetBSD/mac68k on a MacIIsi with an Apple Ethernet card,
>>I have
>>    setup apache on it to act as a proxy server for the other machines on the
>>    network, this works very well and very fast. However when using other
>>    like Telnet or FTP, and the IMAP host there seem to be long delays
>>before the
>>    host responds to the connection, so very often the client timesout.
>>There are
>>    also very long delays when running the netstat command.
>This is more of a shot in the dark, but it sounds like some kind of a
>reverse name lookup problem.  Is inetd supposed to do reverse name
>lookups when accepting connection?  That I'm not sure, though...

Makes sense actually.  The NetBSD-bundled version of tcp_wrappers has
paranoid rejection turned on by default if I remember correctly.  What this
means is that for every new connection arbitrated by inetd it will do both
a reverse and a forward name lookup to make sure they match.  If not, no
connection allowed.

Start with man hosts.allow for information on how to modify this behavior.

Signature failed Preliminary Design Review.
Feasibility of a new signature is currently being evaluated., or