ssh delays

John Chambers jc at trillian.mit.edu
Fri Sep 21 11:12:43 EDT 2001 

Derek Martin writes:
| On Fri, Sep 21, 2001 at 02:22:00PM +0000, John Chambers wrote:
| > Starting a few weeks ago, ssh from my home machine  started
| > showing  a  1-  to  2-minute  delay  before  asking  for  a
| [SNIP]
| > It's not a DNS delay, because I can ask nslookup about  the
| > host,  and  it replies instantly.  Ping and traceroute also
| > respond in under a second.
|
| O.k., but can the remote host look up YOUR address?

Yup; that was one of the first things that I tested.  My home machine
has  two  FQDNs,  the silly one generated by rcn.com, and jc.tzo.net.
Here on trillian, nslookup finds both of them within a second.  Also,
nslookup  finds  the  IP address within a second (and gives the silly
rcn.com name).  I also tried nslookup from the home machine with both
of  trillian's  FQDNs  and its IP address, and it found them within a
second.  So DNS seems to work real fast in both directions,  for  all
the known host names and IP addresses.

| > When I use ssh from outside to get to the  machine,  it  is
| > also instantaneous. Only outgoing ssh has this delay. There
| > are no messages of any sort added to any log  file  that  I
|
| The only other thing I can think of is that the remote end is trying
| to query identd on your system and timing out because it's not getting
| a response.  Queries of identd often time out in 30 seconds or so.

I tried "telnet jc.tzo.net 133" from trillian.mit.edu, and it  got  a
connection in between 1 and 2 seconds.  While the connection is open,
ps on the home machine shows an "in.identd -l -e -o"  process,  which
goes away after I close the connection.  I also tried the telnet with
the silly rcn.com name, and it also connects quickly.

I don't know what to type to idend, so  I  don't  know  how  to  test
whether it's working correctly or not. But the connections go through
real fast.

-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).

More information about the Discuss mailing list