Solved

Slow connections

Posted on 2002-07-22
1
280 Views
Last Modified: 2010-04-21
Hello!

I have FreeBSD 4.5 box with mail service (sendmail) and shell just for me (ssh). System performance: ~90% idle.

There are two subnets - in first one I have may workstation, but in second one lies this FBSD box. There are quiet good connections between those two subnets (two routers between). Ping statistic:
round-trip min/avg/max = 1.903/2.261/2.732 ms

When I making connections from same subnet where FBSD lives - everythig works well - fast connections and fast work. But when I making connection from other subnet - where are my workstation - process of connection takes too long (whatever - mail or ssh aprox. 30sec - 60sec to connect). But when connection finisshed (connected) everything works fast.

Although, I make connection with ssh verbosely - there is output:
SSH Version OpenSSH_2.3.0p1, protocol versions 1.5/2.0.
Compiled with SSL (0x0090600f).
debug: Reading configuration data /path/to/ssh_config
debug: Seeding random number generator
debug: ssh_connect: getuid 0 geteuid 0 anon 0
debug: Connecting to host.net.net [xxx.xxx.xxx.xxx] port 22.
debug: Allocated local port 1022.
debug: Connection established.
debug: Remote protocol version 1.99, remote software version OpenSSH_2.9 FreeBSD localisations 20011202
debug: no match: OpenSSH_2.9 FreeBSD localisations 20011202
debug: Local version string SSH-1.5-OpenSSH_2.3.0p1
debug: Waiting for server public key.
debug: Received server public key (768 bits) and host key (1024 bits).
debug: Host 'host.net.net' is known and matches the RSA host key.
Warning: the RSA host key for 'host.net.net' differs from the key for the IP address 'xxx.xxx.xxx.xxx'
debug: Seeding random number generator
debug: Encryption type: 3des
debug: Sent encrypted session key.
debug: Installing crc compensation attack detector.
debug: Received encrypted confirmation.
debug: Doing password authentication.
user@host.net.net's password:
debug: Requesting pty.
debug: Requesting shell.
debug: Entering interactive session.

The points after which it stops for a long time is: "debug: Entering interactive session", "Connection established" and "Received encrypted confirmation"

In the same time, connection to host in the same subnet with FBSD from my WS works fine. Thats mean, that problem is in thisFBSD box. But what is this problem?

0
Comment
Question by:shifted
1 Comment
 
LVL 3

Accepted Solution

by:
pjb1008 earned 400 total points
ID: 7249246
The server is doing DNS lookups to translate the IP address of the client to a name. Check that (a) the server's DNS configuration is correct, and (b) the name server for the appropriate in-addr.arpa records is responding.

Since you get delayed multiple times, I'm guessing that (b) is the problem - bind8 doesn't cache the fact that a name server is not currently reachable.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now