On Wed, Apr 25, 2001, evgeny wrote about "Re: Wu-ftpd - Reverse DNS":
> Yes, i did it through inetd, so i stripped down tcpd from RH62
> /etc/inetd.conf and get some improvements in connection time, but this is
> still a lot of time.
>
> "dns refuse_no_reverse" in /etc/ftpaccess just refuses the session with no
> reverse DNS, this is not what i want.
Of course it's not what you want - I thought you got connections refused,
and I thought this might explain it, if you had such a line in /etc/ftpaccess.
> Next step, i will try to launch wu-ftpd as stand-alone daemon, and if it does
> not help, put all the subnet into /etc/hosts as Ilya suggested....
>
> Evgeny
It may also be that reverse DNS is not entirely at fault - did you ever try
using strace and/or tcpdump to see what ftpd is waiting for?
One of the things that usually slows down some FTP connections is the attempt
of the server to use the 'ident' port of the client for logging purposes.
Normally, the foreign ident either answers immediately, or doesn't exist and
sends an error immediately. But some firewall setups discard these errors,
and you end up with the FTP server waiting for 10 seconds for the reply.
Try putting a
timeout RFC931 3
command in your /etc/ftpaccess, and see if the delay is reduced by 7 seconds.
--
Nadav Har'El | Wednesday, Apr 25 2001, 2 Iyyar 5761
[EMAIL PROTECTED] |-----------------------------------------
Phone: +972-53-245868, ICQ 13349191 |You have the right to remain silent.
http://nadav.harel.org.il |Anything you say will be used against you.
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
