Hi, On Tue, Jul 29, 2008 at 08:52:48PM +0100, Peter Hoppe wrote: > Another problem that people experience with ssh access from behind firewalls > is that they have very long login times > when trying to connect to an ssh server. This is due to the server trying to > perform a reverse DNS of the connecting > client. If that one fails, the rev dns times out and at that point the ssh > server seems to use the client's IP address > instead. The fix for that one is on the server side, by using the directive > > UseDNS no > > in the sshd_config file and restarting the ssh server via /etc/init.d/ssh > restart. I don't know how your ssh server is > set up, but this may be some info to keep in mind, esp. when you get many > users writing because their ssh login is > sloooooow. Of course, very easy for me to write, I actually don't know how > easy this would be for you (like when having > multiple ssh servers running, plus load balancers...)
We added "UseDNS no" since a month or two. So far there was no problem, and it speeds up the initial connection indeed. -- Sylvain
