Tunnel freezing

This is a discussion on Tunnel freezing within the OpenSSH Development forums, part of the Networking and Network Related category; Hi! I hope this list a good place for my question - I've googled for it first, but I didn'...


Go Back   Usenet Forums > Networking and Network Related > OpenSSH Development

Reload this Page Tunnel freezing

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 10-26-2006
Pavel Troller
 
Posts: n/a
Default Tunnel freezing
Hi!
I hope this list a good place for my question - I've googled for it first,
but I didn't find any answers.
I'm trying to use the new ssh IP tunnel feature to get a secure access to
my machine at work, which is behind a firewall/NAT but it has a ssh port
in outbound direction open.
The problem is that the tunnel freezes occasionally, mostly in one direction
only. The freeze occurs mostly when there is traffic over the tunnel, like
VoIP call or remote X session. I know that this is unidirectional freeze,
because for example during a VoIP call one party stops hearing the other, but
in the opposite direction the audio is still transferred. I think this makes
evidence that the underlying TCP connection is alive, because otherwise it
would stop in both directions (at least due to absence of ACKs) - I've also
monitored its packet queues and they are almost empty.
My configuration is almost symmetrical at both ends:
- Linux-2.6.18 kernel
- OpenSSH-4.4p1 (but 4.3p2 did the same)
- OpenSSL-0.9.8a
I'm starting the tunnel by this script (from a host behind a firewall)
# Create a ssh tunnel
ssh -f -w0:1 <host> true
# Wait for tun0 to be created
sleep 3
# Configure tunnel iface
ifconfig tun0 xxx.xxx.xxx.xxx pointopoint xxx.xxx.xxx.xxy
route add -net aaa.aaa.aaa.aaa netmask 255.255.255.0 dev tun0
iptables -A INPUT -i tun0 -s \! aaa.aaa.aaa.aaa/24 -j REJECT

The last two lines establish routing over the tunnel just for my home network
and block the access for others.

The tunnel is terminated in a host which uses standard technique of forced
command, making ifconfig of the tunnel iface.

The tunnel works normally for hours or sometimes days, then freezes. Sometimes
it gets some "happy days" and remains OK for a really long period of time
(abouth a months or even longer), but sometimes it freezes in 10 minutes.
I didn't find any reason for this.

Any help would be greatly appreciated!
Please Cc: me, I'm not regularly subscribed to the mailing list. Thanks.
With regards,
Pavel Troller
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
http://lists.mindrot.org/mailman/lis...enssh-unix-dev
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 07:59 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0