I have very annoying problem with ssh which I can't get a handle on at all. I support a number of machines at a site which I access via a Linux box running shorewall (up to date Ubuntu Dapper, with shorewall 3.0.4 and kernel 2.6.15).
I access the individual machines via shorewall rules like this DNAT net loc:192.168.1.123:22 TCP 3123 which result in entries in my iptables chain net2loc like ACCEPT tcp -- anywhere 192.168.1.123 tcp dpt:ssh and I conveniently access these via stanzas in my ssh config files. The shorewall box is on a reasonably fast leased line, and up until the fairly recent past this provided me with perfectly usable ssh connections. However, the connections have recently become very sluggish i.e. I can type a number of characters and have to wait a second or more (as much as 10 seconds) until I see them echoed. This is a royal PITA with ssh, and makes remote X sessions (which I fortunately don't need to use very much) practically unusable and VNC sessions (which I do sometimes need) fairly painful. The problem would seem to not be directly related to my network connection as I can ssh to the shorewall box, and then from there ssh to a destination box, and have a reasonable connection. [However that has a separate problem - no X forwarding. The shorewall box has X11Forwarding yes in its sshd config, but I get no $DISPLAY set, even when I request it with ssh -X. I do get $DISPLAY set when I ssh direct to an internal box] The problem is also independent of the destination boxes, which are running various Linuxes, OS-X and Solaris. Any ideas, before the lag drives me completely bonkers? __ Kindest regards, Niall O Broin MakaluMedia Group | http://makalumedia.com | +49 6151 8724600 MakaluMedia Internet & Engineering Services GmbH | Robert-Bosch Strasse 7 | 64293 Darmstadt | Germany Geschäftsführer: Matt Henderson | Sitz der Gesellschaft: Darmstadt | Handelsregister: Amtsgericht Darmstadt HRB 6911 ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
