[OpenAFS] afs: Lost contact with file server xxx.xxx.xxx.x
TIARA System Man
sysman@tiara.sinica.edu.tw
Wed, 23 Apr 2008 07:47:43 +0800
------=_Part_2571_26646256.1208908063271
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
hi jeffrey,
sorry. please allow me re-send it.
thank you. :)
i modified my iptables as following:
$IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport $CLIENT_AFS_PORT
--dport 1024:65535 -j allowed -m conntrack --ctexpire 600
$IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport 1024:65535 --dport
$AFS_PORT -j allowed -m conntrack --ctexpire 600
it became more stable. but, i still can see "Lost contact" in the system
logs(/var/log/messages) from time to time. could i adjusted any settings to
improve this problem?
thank you for your useful helps!!
best, sam
On Sat, Apr 19, 2008 at 9:23 PM, Jeffrey Altman <
jaltman@secure-endpoints.com> wrote:
> Derrick Brashear wrote:
>
> > the other thing, NAT server itself also has "Lost contact" problem.
> > >
> > > please give me some hints. thank you.
> > >
> > >
> > Expire your NAT udp port mappings less aggressively?
> >
>
> NAT UDP port mappings should have a lifetime of at least ten minutes.
>
>
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>
--
Sam Tseng
Academia Sinica
Institute of Astronomy and Astrophysics
Tel.: +886-2-33652200 ext 742
Fax: +886-2-23677849
------=_Part_2571_26646256.1208908063271
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
<span class="Apple-style-span" style="border-collapse: collapse; ">hi jeffrey,<br><br></span><div><span class="Apple-style-span" style="border-collapse: collapse; ">sorry. please allow me re-send it.</span></div><div><span class="Apple-style-span" style="border-collapse: collapse; "><br>
thank you. :)<br><br>i modified my iptables as following:<br><br> $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport $CLIENT_AFS_PORT --dport 1024:65535 -j allowed -m conntrack --ctexpire 600<br> $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport 1024:65535 --dport $AFS_PORT -j allowed -m conntrack --ctexpire 600<br>
<br>it became more stable. but, i still can see "Lost contact" in the system logs(/var/log/messages) from time to time. could i adjusted any settings to improve this problem?<br><br>thank you for your useful helps!!<br>
<br>best, sam</span><br><br><div class="gmail_quote">On Sat, Apr 19, 2008 at 9:23 PM, Jeffrey Altman <<a href="mailto:jaltman@secure-endpoints.com">jaltman@secure-endpoints.com</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div><div></div><div class="Wj3C7c">Derrick Brashear wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8x;border-left:1px #ccc solid;padding-left:1ex"><blockquote class="gmail_quote" style="margin:0 0 0 .8x;border-left:1px #ccc solid;padding-left:1ex">
the other thing, NAT server itself also has "Lost contact" problem.<br>
<br>
please give me some hints. thank you.<br>
<br>
</blockquote>
<br>
Expire your NAT udp port mappings less aggressively?<br>
</blockquote>
<br></div></div>
NAT UDP port mappings should have a lifetime of at least ten minutes.<div><div></div><div class="Wj3C7c"><br>
<br>
_______________________________________________<br>
OpenAFS-info mailing list<br>
<a href="mailto:OpenAFS-info@openafs.org" target="_blank">OpenAFS-info@openafs.org</a><br>
<a href="https://lists.openafs.org/mailman/listinfo/openafs-info" target="_blank">https://lists.openafs.org/mailman/listinfo/openafs-info</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Sam Tseng<br>Academia Sinica<br>Institute of Astronomy and Astrophysics<br>Tel.: +886-2-33652200 ext 742<br>Fax: +886-2-23677849
</div>
------=_Part_2571_26646256.1208908063271--