|
||||||||
Fred Wright wrote: > > On Sun, 6 Feb 2005, Fred Wright wrote: >> On Fri, 4 Feb 2005, Jesse Guardiani wrote: >> > Manuel Kasper wrote: >> > >> > > I can't comment about the other issues, but here's something: >> > > >> > > On 04.02.2005 03:36 -0500, Jesse Guardiani wrote: >> > > >> > >> 3.) TCP/IP connection drops >> > >> My SSH connections die after about 2 hours >> > >> under 1.2b3. I don't think this used to happen >> > >> under 1.11. Someone else confirmed that this >> > >> happens to them too. The connection isn't >> > >> denied. It seems like it times out. >> > > >> > > That's because as of 1.2b2, the TCP idle timeout for the firewall is >> > > 2.5 hours instead of the ipfilter default of 10 days (!) to keep the >> >> Why "(!)"? I've sometimes kept remote console sessions up for days at a >> time. :-) > > One problem in this area is confusion about the units of the IPFilter > timeouts. Those are in units of *half-seconds*, not seconds. Thus: This totally explains why I was seeing timeouts in 1.2b3 BEFORE 2.5 hours were up. I thought that was a bit strange, but I just let it slide at the time. -- Jesse Guardiani, Systems Administrator WingNET Internet Services, P.O. Box 2605 // Cleveland, TN 37320-2605 423-559-LINK (v) 423-559-5145 (f) http://www.wingnet.net |