Solved

X session timeouts due to Firewall

Posted on 2002-07-19
8
528 Views
Last Modified: 2013-12-27
Hi,

I'm using Exceed version 6.1.  Currently our firewall times out inactive sessions after 20 minutes.  I can't get this changed.  So the result is, windows are going away after this time out, unless they are being used.  Is there any other X-server implementation that allows a keep alive to be configured?

I use Putty telnet, and it has one and it works great.

With the Win32 Exceed, I thought I was on to something... I took the latest fvwm2 code, built it, and cloned the console module, called it FvwmIdle.  I then changed it to sleep 10 minutes then do a 'refresh' all in a loop.  I thought this might cause enough traffic to keep the sessions alive, but it did not seem to work.

Any pointers or ideas would be really appreciated.

Thanks

Chris
0
Comment
Question by:sads
  • 3
  • 3
  • 2
8 Comments
 
LVL 51

Expert Comment

by:ahoffmann
Comment Utility
> Is there any other X-server implementation that allows a keep alive ..
as you described yourself, the firewall is the culprit, so another X-Server won't help much.

To get around the timeout problem you might try on of following:

     ping -c 100 -w 900 remote-host
     xclock&
0
 
LVL 40

Expert Comment

by:jlevie
Comment Utility
A very simple solution that will keep the session from timing out is to start any of the clock display appication on the remote. Personally I use 'xclock -digital' to keep X sessions open through a firewall that times out idle sessions.
0
 

Author Comment

by:sads
Comment Utility
Hy guys.  I have tried the xclock thing.  Actually, that was my first attempt.  The second was the modification to FVWM, and I thought that had it for sure, since it forced a refresh to all the windows.

I just got an email from  WinaXe X server product. They sent me the following, and it looks promissing:

"Beginning from WinaXe 6.3 our products provides a keep alive possibility. If you are using this version (or WinaXe+ 7.0),you can add manually into the section [NETWORK] (if this section is absentplease create it)
of the "xwp.ini" file the line:

KeepAlive=1

After this all package's facilities will send KeepAlive TCP/IP messages."

0
 
LVL 40

Expert Comment

by:jlevie
Comment Utility
If an Xclock didn't keep the connection it would sound like the firewall isn't doing a simple idle timer. When you have a gui app like xclock running there is traffic in both directions at least every minute, so an idle timer would be reset every minute. Perhaps the newer version of the app sending KeepAlive's will prevent the timeout.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 51

Accepted Solution

by:
ahoffmann earned 300 total points
Comment Utility
hat's the purpose of WinaXe's KeepAlive: to send keep-alive packets, or to check if the X-connection is still alive (means that there are packets transfered)?
0
 

Author Comment

by:sads
Comment Utility
I'm testing the new X-server this morning to see how it works.  When I did use X-clock, the X-Clock window was still active, but any xterm or other window that was idle, was dead, even the window manager.  When I made the FVWM change, then the window manager stayed around as well.

I let you know how the test goes with the winaXe.
0
 
LVL 51

Expert Comment

by:ahoffmann
Comment Utility
> .. X-Clock window was still active, but any xterm or other window that was idle,

hmm, this is probably due to a TCP/IP timeout on the remote system, not for the X-connection, but the telnet/rlogin/ssh session.
0
 

Author Comment

by:sads
Comment Utility
So far so good with the new xserver and the ini set as indicated above.  This seems to have fixed the problem.

Chris
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

When you do backups in the Solaris Operating System, the file system must be inactive. Otherwise, the output may be inconsistent. A file system is inactive when it's unmounted or it's write-locked by the operating system. Although the fssnap utility…
Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now