OpenBSD Pf: Long-term Connection
Jan 7, 2008
I recently deployed an OpenBSD machine using pf to be a router/firewall for my home LAN, using NAT and sitting between our cable modem and our switch. It seems to work great.
But I just noticed an 'active' connection to a website... It's been open for 19 hours. 12KB of traffic has flowed over the connection, and the machine on the local end that initiated the connection is a laptop that's been offline for hours.
My question is twofold:
- Why hasn't this been dropped, after hours of inactivity?
- Short of restarting everything, is there a way to instruct PF to drop the connection / lose state information on it?
View 1 Replies
ADVERTISEMENT
Nov 8, 2007
I had Qmail installed and configure more than 2 years.
Last week, when I using Post Client (The Bat) try to send email, "Connection to Host" message shows Toooo long (aprox. 10 minutes)
POP3 connection working well.
OS RedHat Linux 2.4.25
[root@host smtp]# tail /var/log/qmail/smtp/current
@400000004733722622dcef34 tcpserver: status: 16/20
@400000004733722623095e34 -Table 'vpopmail.relay' doesn't exist-db_close() called!
@4000000047337226230be6a4 db_ping() is re-calling open_db!
@40000000473372262311f954 tcpserver: status: 17/20
@400000004733722623ad3b6c tcpserver: pid 6923 from 76.65.180.227
@400000004733722625a588fc -Table 'vpopmail.relay' doesn't exist-db_close() called!
@400000004733722625cf11cc db_ping() is re-calling open_db!
@400000004733722625fe863c tcpserver: pid 6926 from 76.65.180.227
@400000004733722d1b7434b4 tcpserver: end 6190 status 0
@400000004733722d1b744454 tcpserver: status: 16/20
and ps -aux return approx 10-15 lines with:
vpopmail 7330 0.0 0.1 2152 788 ? S 15:32 0:00 /usr/bin/tcpserver -v -R -S -p -x /etc/tcprules.d/tcp.smtp.cdb -c 20 -u 107 -g ...
View 2 Replies
View Related
Aug 31, 2007
Has anyone here successfully implemented two or more OpenBSD routers for the purpose of BGP'ing between two or more providers?
My intention is to have the following setup, each line is per provider:
--> BSD Router --> Switch --> Bridge Firewall --> Switch --> ...
'''''''''|'''''''''''|''''''''''''''|'''''''''''''''|
--> BSD Router --> Switch --> Bridge Firewall --> Switch --> ...
'''''''''|'''''''''''|''''''''''''''|'''''''''''''''|
--> BSD Router --> Switch --> Bridge Firewall --> Switch --> ...
The idea would be that I could lose any 15A circuit, switch, firewall or service provider and still remain up. Full routes for the routers. Spanning tree on all the switches.
We have the OpenBSD routers up and running in our lab, I'd say they are 90% ready, but we're having internal routing issues when it comes time to fail-over. I know we'd have an easier time if we used just one router with a NIC per provider, but I was hoping for more redundancy.
View 3 Replies
View Related
Jun 1, 2007
can i install any sys op in vps? like openbsd?
View 6 Replies
View Related
Jan 4, 2007
I was wondering if you guys knew a shell script that could search for a term, such as money, in all the files in the /home directory, and show the output.
I run a free hosting company, but there are lots of people hosting proxys, which i need to get rid of.
View 5 Replies
View Related
Feb 19, 2014
I get a mail that my subscription term is about to expire. In Plesk panel I can see this is for 27.02, but I don't see how to extend/renew it.
View 10 Replies
View Related
Jan 7, 2008
OpenBSD I just installed a package from ports:
cd /usr/ports/sysadmin/freedt/
make && make install
It worked fine, but I realized that I actually don't want this installed, and I can't, for the life of me, figure out how to uninstall a package using ports!
View 4 Replies
View Related
Apr 7, 2008
I have ftp server (pure-ftp). with firewall.
i allowed 20 and 21 port in "CSF" firewall
now when i or our client connect to the server connection done.
and the they fire dir or ls command they will receive error
"425 Could not open data connection to port 2535: Connection timed out"
what is the problem.i have already allowed passive port 2500:3500 then why i received this types of error
View 3 Replies
View Related
Aug 27, 2008
Signed up and paid the first month for a 'Linux Entry' + 1 GB mySQL around 4:45PM today. It's now 11:21PM and I have not heard anything or received any Emails for remote access. Does it usually take this long?
Reading thru this site they seemed to be one of the best if your on a $30/month budget.
Maybe setting up the Linux stuff takes longer for them than Windows?
View 10 Replies
View Related
Jul 17, 2007
root@server [~]# replace ns3.host.com ns1.host.com -- /var/named/*
-bash: /usr/bin/replace: Argument list too long
How can I work past this?
Using Centos 4.5 / cpanel
View 4 Replies
View Related
Apr 16, 2007
I bought a VPS its taken 18 hours still no setup is this normal?
View 11 Replies
View Related
Oct 31, 2007
If you have a vps, how long does the 'burst' actually last?
View 5 Replies
View Related
Apr 3, 2008
How long does it normally take to get a shared account setup with a hosting provider? I am now in my 5th day and still have not had the account setup. I have made my DNS changes and I just keep getting email responses that it is coming. Should I be worried or is a week the normal response time in a shared environment?
View 14 Replies
View Related
Jul 28, 2008
I recently read around here and people had their VPS setup within 5 minutes in some cases. I've ordered a VPS from VirPus and I'm not sure how long it usually takes to setup. I'm nearing the 24 hour mark so I'm not sure. How long on average is an acceptable waiting time? or how long would you say it should take?
View 7 Replies
View Related
Dec 24, 2008
Had a problem whereby the best solution was to ask support to restore my VPS from the Virtuozo backup.
It has now been 2 days and no idea when it will complete.
Seems excessive, or something wrong, but support just say "It is not uncommon for restores to take this long with the backup software we are using".
Just wondering, have any of you ever needed to ask support to restore from backup, and how long did it take?
The amount of data is approx 30GB.
View 12 Replies
View Related
Sep 25, 2008
I just signed up with a new host. How long should I expect it to transfer sites through WHM? I know it depends on the size of the sites but how long does the average 100M site?
View 6 Replies
View Related
Dec 18, 2008
I got one free with my host, but it seems tohave been over 24 hours since i ordered it (via my host) how long does it take, am i being impatient, or is it just the host not bothering to sort it out?
View 12 Replies
View Related
Feb 22, 2007
For some reason on a box I have, it takes 25 seconds from the time I hit enter for a usernames password for it to login via SSH. I am running CentOS 4.4
Is there something I can check to see why it is taking so long and/or fix this?
View 5 Replies
View Related
Feb 9, 2007
How long did I keep a host denied by BFD?
BFD in my server adds at least 5 hosts to the deny rules of APF every day.
For how long should I maintain that?
There is a limit for this rules?
View 10 Replies
View Related
Oct 10, 2007
I have a server running SUSE. dual quad core chips, 16 gigs of RAM.
It's a webserver only running Apache.
We have been having a problem the past few days where page loads take forever yet CPU load and RAM load are very, very low.
I've noticed when it happens when viewing HTOP that TASKS jump from about 350 average to 1000 average. Pages won't start loading until this number drops.
I see no errors in error_log or messages however restarting Apache seems to fix the issue?
I've tried messing around with KEEPALIVE settings with no help.
Any clues on where to start? Pretty lost on this one becuase I see no errors and the load both CPU and RAM are low.
View 1 Replies
View Related
Feb 21, 2007
I am rebuilding Apache on my server.
However, it has been stuck at "adding module mod_auth_passthrough.c" for the past hour , is it normal?
How long does rebuilding Apache normally take?
View 7 Replies
View Related
Dec 7, 2007
I am using Servint and I am looking for another provider with similar reputation/reliability. I have heard many good things about Zone.net on this forum, but they don't have any reviews older than a few months. Have they been around long, if so, why no early posts?
View 5 Replies
View Related
Jun 10, 2007
I signed up with namecheap.com for RapidSSL. I had my hosting provider generate a CSR for me and I put it in namecheap. Then I receive an email from namecheap that says:
==========
Thank you for your RapidSSL order.
Supplier Order Id: ######
An email will be sent to the designated approver with instructions on how to approve your certificate request for xxx.domain.com.
==========
This was sent about two hours ago. I need this SSL fast as it is the backbone of my website. Namecheap doesn't have phone support and RapidSSL is closed on weekends. Any insight on when I'll get instructions to move onto the next step?
View 5 Replies
View Related
Oct 16, 2009
We are curious to know about other hosting companies
How long do you keep a customer's Data if he has not paid for his invoices?
For shared web hosting.
View 14 Replies
View Related
May 1, 2009
I have some problems with apache.
As you can see below, long-live httpd processes use a lot of CPU / Ram.
Usually this processes caused high LA - 8-12.
Code:
%CPU CPU NI S TIME COMMAND
0.2 - 0 S 00:00:27 nginx: worker process
0.3 - 0 S 00:00:29 nginx: worker process
0.3 - 0 S 00:00:30 nginx: worker process
3.3 - 0 S 00:04:09 /usr/local/apache/bin/httpd -k start -DSSL
3.4 - 0 S 00:04:16 /usr/local/apache/bin/httpd -k start -DSSL
3.5 - 0 S 00:05:50 /usr/local/apache/bin/httpd -k start -DSSL
3.6 - 0 S 00:05:40 /usr/local/apache/bin/httpd -k start -DSSL
3.6 - 0 S 00:05:16 /usr/local/apache/bin/httpd -k start -DSSL
3.6 - 0 S 00:06:04 /usr/local/apache/bin/httpd -k start -DSSL
3.7 - 0 S 00:06:06 /usr/local/apache/bin/httpd -k start -DSSL
3.7 - 0 S 00:00:55 /usr/local/apache/bin/httpd -k start -DSSL
3.7 - 0 S 00:06:10 /usr/local/apache/bin/httpd -k start -DSSL
3.7 - 0 S 00:06:10 /usr/local/apache/bin/httpd -k start -DSSL
3.7 - 0 S 00:06:10 /usr/local/apache/bin/httpd -k start -DSSL
3.8 - 0 S 00:06:12 /usr/local/apache/bin/httpd -k start -DSSL
3.8 - 0 S 00:05:40 /usr/local/apache/bin/httpd -k start -DSSL
3.9 - 0 S 00:06:28 /usr/local/apache/bin/httpd -k start -DSSL
View 6 Replies
View Related
Mar 14, 2008
what happened not sure really, but asked volumedrive to reboot the machine like an hour ago and it has still not come online, anyone know or has experience with VD and how long it usually takes them to reboot machine? Or is there any outages anyone is aware that VD is facing right now ?
Damn i got some upset users already ready to shoot the bunny, baah this proxy hosting is kinda harder than one would imagine
View 14 Replies
View Related
Jul 8, 2008
Anyone have experience with this company? (Ecatel.nl / Ecatel.net / Ecatel Ltd)
On Pre-Sale the support reply to my tickets very very fast (even on weekend or at night).
After read a few topics here on wehostingtalk, today, at 14h ago i decided to rent the server and pay the bill, since that i dint have a single answer to my questions, i already try to contact suport 3 or 4 times.
This is my first dedicated server, could someone tell me if this is normal?
On ecatel.se (same company) I see a "Server ready 60 minutes after order" but as i say already pass 14h and nothing.
View 14 Replies
View Related
Jul 21, 2008
why I have long processes on these two? (time wise)
7712 named 15 0 40088 39M 1688 S 1.1 1.9 50:33 0 named
13 root 15 0 0 0 0 SW 0.1 0.0 29:35 0 kjournald
iowait goes up and down too, along with server loads load average: 2.19, 2.76, 4.31
Do you think I need to change ext3 to ext2?
If so here's my fstab, which bits do I need to change?
LABEL=/ / ext3 defaults,usrquota 1 1
LABEL=/boot /boot ext3 defaults 1 2
none /dev/pts devpts gid=5,mode=620 0 0
none /proc proc defaults 0 0
none /dev/shm tmpfs defaults 0 0
/dev/hda2 swap swap defaults 0 0
/usr/tmpDSK /tmp ext3 defaults,noauto 0 0
/tmp /var/tmp ext3 defaults,bind,noauto 0 0
Or should I troubleshoot for something else? If so how/what should I do?
View 0 Replies
View Related
Aug 4, 2008
I have a few vps on different providers and I was shoring up my hostnames to make them more cohesive for the different servers.
I placed a request with a well-known, premium vps provider this morning at 9am EDT and am still awaiting them to complete the host name change. They came back immediately and said an admin would have to handle and then noting for hours. At approx 2p EDT, I asked for an update and I received a response at nearly 4pm EDT saying they were still waiting for their admin to get back.
Keep in mind this is a fully-managed, not cheap, vps with a very good rep here on wht.
Am I expecting too much?
I'd change it myself, but I'm unable to do so with virtuozzo.
View 14 Replies
View Related
Jul 26, 2007
I was wondering if anyone can recommend any LI / NY area colo that offers competitive rates.
View 14 Replies
View Related
Jan 5, 2007
This is a networking question at the top tier level.
Why does ATT, and others, deliberately insert a long delay (500 ms) in all packet traffic at major gateways. This is plain obvious for traffic across major links (Pacific, or to Asia, etc). I can ping plott over a few hours, and it's easy to see this is deliberately inserted delays, and manipulated as they choose.
Is this the major players trying to channel traffic through other major connnections? Or them giving priority (or non priority) to various major ISP's as they choose? Or them pretending they have run out of band width?
Yes I know at this time the Taiwan problem exists, but this happens all the time year round, and fluctuates at very predictable amounts at various times of day.
View 3 Replies
View Related
