kelsey hudson wrote:
> Carl Lowenstein wrote:
>> This seems to have cured the problem. The next question is: why
>> are
>> these ssh configuration parameters not mentioned in ssh_coinfig(5)
>> or
>> in /etc/ssh/ssh_config? Maybe there is other documentation for ssh.
>> (OpenSSH)?
>
> I don't remember where I saw this. All I know is that I investigated
> some way to send ssh keepalives. It was biting me with a translation
> timeout when doing rsync of large (>50 GByte) files -- ssh was keeping
> the socket open but during large block checksum no data was going over
> the pipe -- pix firewall decided the connection was stale and removed
> it.
It's not always a stale connection that cause this. Some consumer
level NAT devices don't have enough memory to maintain large state
tables and since they are round-robin, the oldest get dropped first.
Thus old connections get dropped because there is no more room in the
state table.
--
Neil Schneider pacneil_at_linuxgeek_dot_net
http://www.paccomp.com
Key fingerprint = 67F0 E493 FCC0 0A8C 769B 8209 32D7 1DB1 8460 C47D
"When the politicians complain that TV turns the proceedings into a
circus, it should be made clear that the circus was already here,
and that TV has merely demonstrated that not all the performers are
well trained." - Edward R. Murrow
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
