Hopkins, Scott wrote:
All,
Running into an issue, on a machine with ipfilter 4.1.27, and a
customer version of OpenSSH 4.5p1 (modified to change key locations).
I’m not convinced this is an IPFilter issue, but wanted to put it out
to see if anyone else has experienced anything similar. We’ve
recently installed this onto 2 different Solaris 10u3 machines, both
of which have a primary global zone, and two sparse root zones.
Ipfilter is running in the global zone, and we are passing
application traffic without issue. However, when users ssh into the
machines, and leave their terminals idle for a matter of 1-2 minutes,
they just ‘lock’ up.
We have a similar issue, with several full-root zones and SSH sessions
disconnecting.
We have only noticed this behavior on one (Sol10u3 SPARC) server of several
dozen deployed, it doesn't use IPF neither as filter nor NAT, and since
this is not
a great issue (rather an annoyance) the problem stays unresolved and
unresearched.
This happens with (at least) the first remote login to a zone after it
was rebooted,
at least if the login happens within a few minutes after the reboot.
What is annoying,
the disconnect happens with active sessions, i.e. with a "top" running,
or when
commands are typed.
Possibly some service or customer's script restarts sshd sometime soon
after boot.
//Jim Klimov
