Re: IPFW disconnections and resets

• Previous message: Michael Scheidell: "RE: IPFW disconnections and resets"
• In reply to: Siddhartha Jain: "IPFW disconnections and resets"
• Next in thread: Peter C. Lai: "Re: IPFW disconnections and resets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "Siddhartha Jain" <sid@netmagicsolutions.com>, <freebsd-security@freebsd.org>
Date: Fri, 29 Apr 2005 16:10:33 +0200

Hi,

im playing with the /etc/crontab to reload the rules periodically, while i
remotly edit both crontab and ipfw_rules.sh, this solves the problem of
lock-out (but i dont know exactly what other problems it might cause...:)

sshd_config has a ClientAliveInterval (seconds between trys) and
ClientAliveCountMax (how many times to try keepalive, before client known as
nonrespondig and disconnected) option, and on the client side as ~Neo-Vortex
wrote find the keepalive setting. (and if the client is untrustable, disable
it >:)

Istvan

----- Original Message -----
From: "Siddhartha Jain" <sid@netmagicsolutions.com>
To: <freebsd-security@freebsd.org>
Sent: Friday, April 29, 2005 11:40 AM
Subject: IPFW disconnections and resets

> Hi,
>
> I am using IPFW on FreeBSD 4.11
>
> I am facing two problems:
> - SSH sessions timeout after a while
> - When I run "/sbin/ipfw -q -f flush" in the rules script all connection
> get reset (and I am thrown out of the box).
>
> Is this standard functioning of ipfw or do I need to change any
> configuration?
>
>
> Thanks,
>
> Siddhartha
>
>
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to
> "freebsd-security-unsubscribe@freebsd.org"
>
>
> --
> No virus found in this incoming message.
> Checked by AVG Anti-Virus.
> Version: 7.0.308 / Virus Database: 266.10.4 - Release Date: 2005.04.27.
>
>

_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: Michael Scheidell: "RE: IPFW disconnections and resets"
• In reply to: Siddhartha Jain: "IPFW disconnections and resets"
• Next in thread: Peter C. Lai: "Re: IPFW disconnections and resets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RULE Tinderbox clients for the kernel ... > using the Mozilla tinderbox. ... > supports multiple clients, and we'll have a client package available ... web browsing (flash? ... To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/ ... (Linux-Kernel) Re: ATTN: Barbara Oncay ... the client failing to show it. ... It's called being precise in reporting problems. ... unsubscribe annotation and sometimes I don't. ... (Debian-User) Re: Help for a newbie SSH and Aptitude ... box using putty or similar). ... I've tried openssh but of course that is ... It has both a client and server. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... (Debian-User) Re: autofs and /home/home ... Kenneth Jacker wrote: ... I can't seem to figure out a *very* simple automount configuration ... the mounted directory on the client is under /home/home ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... (Debian-User) Re: Set up samba ... Is there a way I can set up my Debian machine or Windows server to ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Microsoft Networks -> File and Print Sharing..." ... find Client for MIcrosoft Networks. ... (Debian-User)