On Fri, 2007-05-25 at 23:04 +0100, Jonathan Underwood wrote: > Yes, issuing a shorewall clear, or alternatively removing the limit > part of the SSH rule fixes the problem reproducibly.
I'm afraid my day was too busy to pay attention to the start of this thread, but that you can install rules with shorewall and just not install the limit part suggests to me that it's not either of the problems below. > > This smacks of an MSS/PPPoE type problem where only full TCP segments > > get dropped. Or there is that sub-protocol that does probes of the > > connection that gets fouled up by routers doing ICMP blackholing. I > > forget what that sub-protocol was though. Anyone remember? > > Hm. This is a bit over my head I'm afraid. Given the above, it's probably not relevant, so you probably needed worry about it. b. -- My other computer is your Microsoft Windows server. Brian J. Murrell
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
