From owner-freebsd-ipfw@FreeBSD.ORG Sun Nov 20 23:30:39 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DE7DA16A41F for ; Sun, 20 Nov 2005 23:30:39 +0000 (GMT) (envelope-from vini@fugspbr.org) Received: from orange.unixpac.com.au (orange.unixpac.com.au [203.3.121.23]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5516A43D46 for ; Sun, 20 Nov 2005 23:30:38 +0000 (GMT) (envelope-from vini@fugspbr.org) Received: from unknown (HELO [192.168.1.124]) ([192.168.1.124]) by orange.unixpac.com.au with ESMTP; 21 Nov 2005 10:30:22 +1100 X-IronPort-AV: i="3.97,355,1125842400"; d="scan'208"; a="46045:sNHT165319668" Message-ID: <4381071B.1090205@fugspbr.org> Date: Mon, 21 Nov 2005 10:30:35 +1100 From: Vini Engel User-Agent: Mozilla Thunderbird 1.0.7-1.1.fc4 (X11/20050929) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-ipfw@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Ipfw and qmail-smtpd, connections getting stuck - FIN_WAIT_1 FIN_WAIT_2 X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 20 Nov 2005 23:30:40 -0000 Hi guys, I was wondering if anyone here has had anything similar with ipfw and qmail-smtpd. I have a FreeBSD 5.3 and 5.4 box running qmail and often I can see many connections with FIN_WAIT_1, FIN_WAIT_2, LAST_ACK, CLOSING. On this box I have some ipfw limit rules to allow incoming connections and normal keep-state rules to allow outgoing connections. In the beginning I thought it was being caused by the sysctl net.inet.ip.fw.dyn_keepalive. I then disabled the keep-alive, it seems to have helped but still there are many connections stuck at the FIN stage. Does anybody have any tips on this? Thanks a lot Vini