Hopkins, Scott wrote:
All,
Running into an issue, on a machine with ipfilter 4.1.27, and a
customer version of OpenSSH 4.5p1 (modified to change key locations).
I’m not convinced this is an IPFilter issue, but wanted to put it out
to see if anyone else has experienced anything similar. We’ve recently
installed this onto 2 different Solaris 10u3 machines, both of which
have a primary global zone, and two sparse root zones. Ipfilter is
running in the global zone, and we are passing application traffic
without issue. However, when users ssh into the machines, and leave
their terminals idle for a matter of 1-2 minutes, they just ‘lock’ up.
Are you able to capture (using snoop) the entire ssh session up and
until it freezes?
Is NAT involved?
If you do "ipmon -oS", does the stae/nat session "expire" before/after
the ssh "freeze"?
Darren
