Re: TCP_KEEPALIVE
Re: TCP_KEEPALIVE
- Subject: Re: TCP_KEEPALIVE
- From: email@hidden
- Date: Sun, 5 Nov 2006 20:29:46 -0700
The places this doesn't hold true are:
(1) Some place along the path, you've firewalled off ARP packets, OR
(2) You have a Cisco PiiX firewall or other stateful firewall that
tracks connection state, and has a connection timeout in order to
prevent a DOS attack via connection table overflow over time (in
which case, it's configurable, but you are likely either failing to
configure it, or you don't have rights to configure it).
You'll also see this type of behavior in any other kind of firewall
that performs it's function by NAT'ing your inside IP address to an
external IP address. The translation table typically has an idle
timeout and will delete your NAT session after a period of
inactivity. The firewalls will sometimes send RST's in both
directions indicating that the connection is being closed abortively.
-Joe
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden