While configuring my new firewalls, I started getting annoying freezes
on my ssh connections. Finally, having put to rest more pressing
problems, I looked into it.
Dumps from both the firewall and a remote machine shows traffic going
until the window of the remote machine falls below the average packet
length of the firewall. The window size is quickly restored, but the
firewall won't send any more packets.
On a slightly different combination of monitoring programs, I have seen
the firewall send packets without the push flag, and then a packet with
the push flag. The latter one is received by the remote host but not the
others.
I have four very similar firewalls in this setup. Two show the problem,
and two doesn't. The main difference: the traffic on the ones that show
the problem goes through a vlan.
This is 4.3-RELEASE (I can't run stable because the kernel will crash
within minutes, though I'm about to test a patch for that).
Any ideas? I'm unfamiliar with this part of the code, so even pointers
to where this code is will be helpful.
--
Daniel C. Sobral (8-DCS)
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
Ah say, son, you're about as sharp as a bowlin' ball.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
