[OpenAFS] afs: Lost contact with file server xxx.xxx.xxx.x

TIARA System Man sysman@tiara.sinica.edu.tw
Wed, 23 Apr 2008 07:47:43 +0800


------=_Part_2571_26646256.1208908063271
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

hi jeffrey,

sorry. please allow me re-send it.

thank you. :)

i modified my iptables as following:

  $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport $CLIENT_AFS_PORT
--dport 1024:65535 -j allowed -m conntrack --ctexpire 600
  $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport 1024:65535 --dport
$AFS_PORT -j allowed -m conntrack --ctexpire 600

it became more stable. but, i still can see "Lost contact" in the system
logs(/var/log/messages) from time to time. could i adjusted any settings to
improve this problem?

thank you for your useful helps!!

best, sam

On Sat, Apr 19, 2008 at 9:23 PM, Jeffrey Altman <
jaltman@secure-endpoints.com> wrote:

> Derrick Brashear wrote:
>
> > the other thing, NAT server itself also has "Lost contact" problem.
> > >
> > > please give me some hints. thank you.
> > >
> > >
> > Expire your NAT udp port mappings less aggressively?
> >
>
> NAT UDP port mappings should have a lifetime of at least ten minutes.
>
>
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>



-- 
Sam Tseng
Academia Sinica
Institute of Astronomy and Astrophysics
Tel.: +886-2-33652200 ext 742
Fax: +886-2-23677849

------=_Part_2571_26646256.1208908063271
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

<span class="Apple-style-span" style="border-collapse: collapse; ">hi jeffrey,<br><br></span><div><span class="Apple-style-span" style="border-collapse: collapse; ">sorry. please allow me re-send it.</span></div><div><span class="Apple-style-span" style="border-collapse: collapse; "><br>
thank you. :)<br><br>i modified my iptables as following:<br><br>&nbsp; $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport $CLIENT_AFS_PORT --dport 1024:65535 -j allowed -m conntrack --ctexpire 600<br>&nbsp; $IPTABLES -A udp_packets -p UDP -s $ALLOW_IP --sport 1024:65535 --dport $AFS_PORT -j allowed -m conntrack --ctexpire 600<br>
<br>it became more stable. but, i still can see &quot;Lost contact&quot; in the system logs(/var/log/messages) from time to time. could i adjusted any settings to improve this problem?<br><br>thank you for your useful helps!!<br>
<br>best, sam</span><br><br><div class="gmail_quote">On Sat, Apr 19, 2008 at 9:23 PM, Jeffrey Altman &lt;<a href="mailto:jaltman@secure-endpoints.com">jaltman@secure-endpoints.com</a>&gt; wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div><div></div><div class="Wj3C7c">Derrick Brashear wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8x;border-left:1px #ccc solid;padding-left:1ex"><blockquote class="gmail_quote" style="margin:0 0 0 .8x;border-left:1px #ccc solid;padding-left:1ex">
the other thing, NAT server itself also has &quot;Lost contact&quot; problem.<br>
<br>
please give me some hints. thank you.<br>
<br>
</blockquote>
<br>
Expire your NAT udp port mappings less aggressively?<br>
</blockquote>
<br></div></div>
NAT UDP port mappings should have a lifetime of at least ten minutes.<div><div></div><div class="Wj3C7c"><br>
<br>
_______________________________________________<br>
OpenAFS-info mailing list<br>
<a href="mailto:OpenAFS-info@openafs.org" target="_blank">OpenAFS-info@openafs.org</a><br>
<a href="https://lists.openafs.org/mailman/listinfo/openafs-info" target="_blank">https://lists.openafs.org/mailman/listinfo/openafs-info</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Sam Tseng<br>Academia Sinica<br>Institute of Astronomy and Astrophysics<br>Tel.: +886-2-33652200 ext 742<br>Fax: +886-2-23677849
</div>

------=_Part_2571_26646256.1208908063271--