[OpenAFS] openafs clients behind a firewall

[Elliot Peele]

--=-KleTMs0pH9hydJWrVbAw
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Hi,

I have an environment where there are about 50 machines running the
openafs client behind an iptables NATing firewall. On the other end
there are Transarc afs servers. I am trying to figure out what a
reasonable udp timeout would be.

By default the time out is defined as:

#define UDP_TIMEOUT (30*HZ)
#define UDP_STREAM_TIMEOUT (180*HZ)

in

linux/net/ipv4/netfilter/ip_conntrack_proto_udp.c

I have tried setting the timeouts to:

#define UDP_TIMEOUT (1800*HZ)
#define UDP_STREAM_TIMEOUT (3600*HZ)

but I'm still getting connection timeouts when some people try to access
there afs volumes, such as:

[root@guinness n]# cd nbuccia
bash: cd: nbuccia: Connection timed out
[root@guinness n]# pwd
/afs/unity/users/n



Thanks

Elliot Peele
Linux Systems Administrator
NCSU Physics

--=-KleTMs0pH9hydJWrVbAw
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQA+3QrkmSqoIAXFTXMRAl93AJ95kmOwDLU9gVQ2BxoWQ/53AdIrdwCeM+3o
2aD4bbfPpXgZJHY1taSjAhE=
=kyw2
-----END PGP SIGNATURE-----

--=-KleTMs0pH9hydJWrVbAw--