From owner-freebsd-questions@FreeBSD.ORG  Tue Dec  4 11:43:23 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id CDD1D16A469
	for <freebsd-questions@freebsd.org>;
	Tue,  4 Dec 2007 11:43:23 +0000 (UTC)
	(envelope-from nvass@teledomenet.gr)
Received: from smtp.teledomenet.gr (smtp.teledomenet.gr [213.142.128.2])
	by mx1.freebsd.org (Postfix) with ESMTP id 8702C13C4E7
	for <freebsd-questions@freebsd.org>;
	Tue,  4 Dec 2007 11:43:23 +0000 (UTC)
	(envelope-from nvass@teledomenet.gr)
Received: by smtp.teledomenet.gr (Postfix, from userid 58)
	id 7B73114230D; Tue,  4 Dec 2007 13:43:22 +0200 (EET)
X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on smtp.teledomenet.gr
X-Spam-Level: 
X-Spam-Status: No, score=-2.6 required=5.0 tests=AWL,BAYES_00 autolearn=ham
	version=3.2.3
Received: from iris (unknown [192.168.1.71])
	by smtp.teledomenet.gr (Postfix) with ESMTP id 2B0FD1421EF;
	Tue,  4 Dec 2007 13:43:20 +0200 (EET)
From: Nikos Vassiliadis <nvass@teledomenet.gr>
To: freebsd-questions@freebsd.org
Date: Tue, 4 Dec 2007 13:46:32 +0200
User-Agent: KMail/1.9.7
References: <20071204002629.GA28076@archangel.daleco.biz>
	<11AC2944E9AC41C19626AE2FC192D509@ownerPCvista>
In-Reply-To: <11AC2944E9AC41C19626AE2FC192D509@ownerPCvista>
X-NCC-RegID: gr.telehouse
MIME-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200712041346.33066.nvass@teledomenet.gr>
Cc: Anne Moore <diabeticithink@yahoo.com>
Subject: Re: SSH disconnects very troubling
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Dec 2007 11:43:23 -0000

On Tuesday 04 December 2007 02:40:35 Anne Moore wrote:
> Thanks, Kevin. This may well work with the SSH, but it's actually
> disconnecting all my clients, telnet, Oracle, etc. There is a config for
> telnet, but nothing for Oracle (that I know of). Also, ldap, etc. It's
> the strangest thing!!

No it's not strange. There is a firewall between the hosts,
which drops the connections after some time of inactivity.

You can generate keepalive packets for every TCP connection
between your FreeBSD box and the world using ipfw. A rule
like:
allow tcp from any to any keep-state
will effectively keep all TCP connections alive.

Two things:
1) If you are not familiar with ipfw, read the manual before
	loading the ipfw module. Otherwise, you'll be locked
	out of your box.
2) I don't know if the above rules fits your security policy.
	Or the services your FreeBSD box provides. Modify as
	needed.

HTH, Nikos