Could you send your syslog rules that match your LOG rules from firehol, That might explain what is being dropped. Does your connection stall when your doing something or just when idle? If your idle you could try and modify your sshd config TCPKeepAlive option. It could be the kernel timed out the state of your connection. Another thing you could try is making your SSH ports more permissive with something like: iptables -I INPUT -p tcp --dport 22 -j ACCEPT To accept ssh destined TCP traffic regardless of state. -- Karl -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
