public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
Search results ordered by [date|relevance]  view[summary|nested|Atom feed]
thread overview below | download: 
* [gentoo-user] SSH sessions hanging in VPN
@ 2010-03-19 20:38 99% Alan McKinnon
  0 siblings, 0 replies; 1+ results
From: Alan McKinnon @ 2010-03-19 20:38 UTC (permalink / raw
  To: gentoo-user

Hi all,

Not really directly related to Gentoo except that the workstation where it 
happens is a Gentoo machine :-)

Our VPN at work is a Juniper Secure Connect. I tend to have many konsole tabs 
running ssh at one time, as well as IMAP connections to Exchange and several 
browsers tabs to intranet sites. Occasionally, and apparently triggered 
randomly[1], all existing ssh sessions freeze and never come back (even after 
several hours). The connections are still up and do not die on the remote end. 
Mail connections stay up and the browser tabs continue to work as well[2].

I know the ssh sessions are alive on the other end as I can immediately log in 
in another konsole tab and that works just fine. Even after several hours the 
first sshd process does not timeout (timeouts are enabled). So it would seem 
that it's the return path going tits up. My next step is going to be running a 
trace and tcpdump on one of those existing session next time it happens.

Meanwhile, and this is my real question, how would I go about sensibly 
debugging this in a methodical manner? I'm going to have to get my security 
guys and routing guys to investigate but they will need real information to 
work with. Everything I can think of just reduces to throwing brown smelly 
stuff at the wall and hoping some of it sticks.



[1] By randomly I mean sometimes 4 times a day, sometimes nothing for several 
days. I have not seen a correlation to anything I'm doing that might trigger 
it.
[2] This is expected as HTTP is sessionless.

-- 
alan dot mckinnon at gmail dot com



^ permalink raw reply	[relevance 99%]

Results 1-1 of 1 | reverse | options above
-- pct% links below jump to the message on this page, permalinks otherwise --
2010-03-19 20:38 99% [gentoo-user] SSH sessions hanging in VPN Alan McKinnon

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox