From owner-freebsd-ipfw@FreeBSD.ORG Tue Apr 29 13:38:46 2003 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2355737B404 for ; Tue, 29 Apr 2003 13:38:46 -0700 (PDT) Received: from sccrmhc03.attbi.com (sccrmhc03.attbi.com [204.127.202.63]) by mx1.FreeBSD.org (Postfix) with ESMTP id D97D243FBF for ; Tue, 29 Apr 2003 13:38:44 -0700 (PDT) (envelope-from crist.clark@attbi.com) Received: from blossom.cjclark.org (12-234-159-107.client.attbi.com[12.234.159.107]) by sccrmhc03.attbi.com (sccrmhc03) with ESMTP id <2003042920384400300fp942e>; Tue, 29 Apr 2003 20:38:44 +0000 Received: from blossom.cjclark.org (localhost. [127.0.0.1]) by blossom.cjclark.org (8.12.8p1/8.12.3) with ESMTP id h3TKchki022747; Tue, 29 Apr 2003 13:38:43 -0700 (PDT) (envelope-from crist.clark@attbi.com) Received: (from cjc@localhost) by blossom.cjclark.org (8.12.8p1/8.12.8/Submit) id h3TKcgsP022746; Tue, 29 Apr 2003 13:38:42 -0700 (PDT) X-Authentication-Warning: blossom.cjclark.org: cjc set sender to crist.clark@attbi.com using -f Date: Tue, 29 Apr 2003 13:38:42 -0700 From: "Crist J. Clark" To: Antoine Jacoutot Message-ID: <20030429203842.GB22678@blossom.cjclark.org> References: <200304271259.02025.ajacoutot@lphp.org> <20030428211837.GB41761@blossom.cjclark.org> <200304290038.59573.ajacoutot@lphp.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200304290038.59573.ajacoutot@lphp.org> User-Agent: Mutt/1.4.1i X-URL: http://people.freebsd.org/~cjc/ cc: freebsd-ipfw@freebsd.org Subject: Re: ipfw dynamic rule timeout X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: cjclark@alum.mit.edu List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Apr 2003 20:38:46 -0000 On Tue, Apr 29, 2003 at 12:38:59AM +0200, Antoine Jacoutot wrote: > On Monday 28 April 2003 23:18, Crist J. Clark wrote: > > > I hope this is the right list for this, I couldn't get any answer from > > > -questions. > > > I'm having a problem with ipfw and dynamic rules timeout. > > > For exemple, when I ssh to a distant machine, if I don't type anything > > > for like 10 or 20 seconds, the connexion is dropped. > > > > Are you using natd(8)? If so, check the archives for one of the > > bazillion times 'keep-state'-natd(8) issues have been discussed. > > Yes I am. > I already did search the archives. Unfortunately, the archives go back to... > March 2003. Not sure where you're looking there, but when I BSD Google for "ipfw natd keep-state" the first link is, http://docs.freebsd.org/mail/archive/2002/freebsd-ipfw/20020804.freebsd-ipfw.html And in my mail in that thread, I link further back to, http://docs.freebsd.org/cgi/getmsg.cgi?fetch=13412+0+archive/2002/freebsd-net/20020217.freebsd-net -- Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org