Bug 135 - Sudden freeze of SSH2 on clients from masqueraded subnet (behind firewall)
Summary: Sudden freeze of SSH2 on clients from masqueraded subnet (behind firewall)
Status: CLOSED INVALID
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: Build system (show other bugs)
Version: -current
Hardware: ix86 Linux
: P2 normal
Assignee: OpenSSH Bugzilla mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2002-03-07 20:15 AEDT by Jörg Walter
Modified: 2004-04-14 12:24 AEST (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jörg Walter 2002-03-07 20:15:39 AEDT 
Background:
        sshd  openssh-2.9.9p2,openssh-3.0.2 only SSH2  (former ssh SSH1)
        ssh   openssh-2.9.9p2          (former openssh-2.2??)
        server   [C0] OS Linux  2.4.10-4GB-SMP
        firewall [C1] OS Linux  2.2.16 with ipchains masquerading [C2]
        client   [C2] OS Linux  2.2.16 behind [C1] 
        tcp/ip via pppoe on aDSL 
        
Since general upgrades to openssh-2.9.9p2 (same with sshd/openssh-3.0.2) the
SSH2 (RSA-auth) connection from [C2] client behind the firewall [C1]
to server [C0] freezes suddenly.  This occurs repeatable when return
packets get large (e.g. "ls -l" in big dirs, or "cvs update").  Before
the connection was set up properly and worked for small packets. 

At the same time ssh-connections between [C1] and [C0] are not
affected (both directions).

Packet-logging on ppp did not show anything.  Opening-up the firewall
rules did not help.

Any help is greatly appreciated

Thanks in advance
Comment 1 Damien Miller 2002-03-09 09:28:30 AEDT 
This is probably masquerading related. Unless you can replicate it on a clean
connection, it is not a problem with openssh
Comment 2 Kevin Steves 2002-03-31 05:53:01 AEST 
appears to be a masquerade problem.
please reopen if otherwise.
Comment 3 Damien Miller 2004-04-14 12:24:18 AEST 
Mass change of RESOLVED bugs to CLOSED