Hi, my name is Dieter and this is my 1st post to the list. I''m currently using shorewall 2.2.5 on SuSE 9.2 and java 1.4.2_06. Overall everything works as expected. The problem I have occurs with previous versions of shorewall, too. Problem: When I start a java application like crushftp it takes about 2 minutes until the server is functional. If I try to interrupt the startup process and manually open a port the programs tells me port already in use, but it is not! By accident I found out that if I issue a shorewall clear (stop doesn''t work) before starting crushftp the server comes up immediately. Due to the fact that I use ftp rather seldom it was no problem for me to wait 2 minutes. Currently I work on a project with a servlet container (jetty) and an ftp-servlet (UnlimitedFTP) on another SuSE 9.2 host. Basicly the same problems occur with java apps and shorewall. When I try to stop jetty without first doing a shorewall clear jetty crashes. In addition the ftp-servlet works more smoothly and faster without shorewall enabled. My question is does anyone have the same problems and already found a solution. Any other hints are also welcome of course. Kind regards, Dieter __________________________________________________________ Mit WEB.DE FreePhone mit hoechster Qualitaet ab 0 Ct./Min. weltweit telefonieren! http://freephone.web.de/?mc=021201
While not using that particular application that you referenced, I am using a few Java apps, under Suns Linux version of java 1.4.2, running under Fedora Core 3. I currently know that our apps are using http, https, and quite a few special ports. I see not issues at all. I am using shorewall-2.3.2-1. I know that our apps all work under Linux, MacOS, and Windows. What operating system are you using for your Shorewall host? What operating system are you using for you applications? Are you able to provide a test case that I can run? I will wait till you tell me you operating environment, before testing. Cheers. On Jun 5, 2005, at 11:10 AM, Dieter Imann wrote:> Hi, > > my name is Dieter and this is my 1st post to the list. > > I''m currently using shorewall 2.2.5 on SuSE 9.2 and java 1.4.2_06. > Overall everything works as expected. > The problem I have occurs with previous versions of shorewall, too. > > Problem: When I start a java application like crushftp it takes about > 2 minutes until the server is functional. > If I try to interrupt the startup process and manually open a port the > programs tells me port already in use, but it is not! > By accident I found out that if I issue a shorewall clear (stop > doesn''t work) before starting crushftp the server comes up > immediately. Due to the fact that I use ftp rather seldom it was no > problem for me to wait 2 minutes. > > Currently I work on a project with a servlet container (jetty) and an > ftp-servlet (UnlimitedFTP) on another SuSE 9.2 host. > Basicly the same problems occur with java apps and shorewall. When I > try to stop jetty without first doing a shorewall clear jetty crashes. > In addition the ftp-servlet works more smoothly and faster without > shorewall enabled. > > My question is does anyone have the same problems and already found a > solution. Any other hints are also welcome of course. > > Kind regards, Dieter > > __________________________________________________________ > Mit WEB.DE FreePhone mit hoechster Qualitaet ab 0 Ct./Min. > weltweit telefonieren! http://freephone.web.de/?mc=021201 > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >
As I already wrote I use SuSE Linux 9.2. In addition I finished a quick test with the SuSEfirewall2 (which is part of the distribution). The problem does not occur anymore. SuSEfirewall2 uses iptables, too. That''s all I can say so far. Due to the fact that it is no serious problem for me I kindly ask you to do not waste your time with a test-enviroment. I''m simply searching for people who may have the same experiences. Many thanks for you quick reply and the good will to help!! Dieter Mailing List for Shorewall Users <shorewall-users@lists.shorewall.net> schrieb am 05.06.05 20:10:51:> > While not using that particular application that you referenced, I am > using a few Java apps, under Suns Linux version of java 1.4.2, running > under Fedora Core 3. I currently know that our apps are using http, > https, and quite a few special ports. I see not issues at all. I am > using shorewall-2.3.2-1. I know that our apps all work under Linux, > MacOS, and Windows. > > What operating system are you using for your Shorewall host? > What operating system are you using for you applications? > > Are you able to provide a test case that I can run? I will wait till > you tell me you operating environment, before testing. > > Cheers. > > > On Jun 5, 2005, at 11:10 AM, Dieter Imann wrote: > > > Hi, > > > > my name is Dieter and this is my 1st post to the list. > > > > I''m currently using shorewall 2.2.5 on SuSE 9.2 and java 1.4.2_06. > > Overall everything works as expected. > > The problem I have occurs with previous versions of shorewall, too. > > > > Problem: When I start a java application like crushftp it takes about > > 2 minutes until the server is functional. > > If I try to interrupt the startup process and manually open a port the > > programs tells me port already in use, but it is not! > > By accident I found out that if I issue a shorewall clear (stop > > doesn''t work) before starting crushftp the server comes up > > immediately. Due to the fact that I use ftp rather seldom it was no > > problem for me to wait 2 minutes. > > > > Currently I work on a project with a servlet container (jetty) and an > > ftp-servlet (UnlimitedFTP) on another SuSE 9.2 host. > > Basicly the same problems occur with java apps and shorewall. When I > > try to stop jetty without first doing a shorewall clear jetty crashes. > > In addition the ftp-servlet works more smoothly and faster without > > shorewall enabled. > > > > My question is does anyone have the same problems and already found a > > solution. Any other hints are also welcome of course. > > > > Kind regards, Dieter > > > > __________________________________________________________ > > Mit WEB.DE FreePhone mit hoechster Qualitaet ab 0 Ct./Min. > > weltweit telefonieren! http://freephone.web.de/?mc=021201 > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm______________________________________________________________ Verschicken Sie romantische, coole und witzige Bilder per SMS! Jetzt bei WEB.DE FreeMail: http://f.web.de/?mc=021193
2005/6/5, Dieter Imann <dieter.imann@web.de>:> Hi, > > my name is Dieter and this is my 1st post to the list.HI> Problem: When I start a java application like crushftp it takes about 2 minutes until the server is functional.use other well-known secure ftp server like vsftpd or pure-ftpd> Currently I work on a project with a servlet container (jetty) and an ftp-servlet (UnlimitedFTP) on another SuSE 9.2 host. > Basicly the same problems occur with java apps and shorewall. When I try to stop jetty without first doing a shorewall clear jetty crashes. In addition the ftp-servlet works more smoothly and faster without shorewall enabled. > > My question is does anyone have the same problems and already found a solution. Any other hints are also welcome of course.I ''m using SUSE in production servers and at home,no problems at all, running webservers,ftp servers,java applications..etc If you provide us the required information we can help you.please read: http://www.shorewall.net/support.htm#Guidelines
On Sun, Jun 05, 2005 at 07:53:30PM -0400, Cristian Rodriguez wrote:> 2005/6/5, Dieter Imann <dieter.imann@web.de>: > > Problem: When I start a java application like crushftp it takes about 2 minutes until the server is functional.There''s nothing in Shorewall that would be able to distinguish between Java and non-java; its all standard TCP firewalling. -Jason Martin -- This message is PGP/MIME signed.
Jason Martin wrote:> On Sun, Jun 05, 2005 at 07:53:30PM -0400, Cristian Rodriguez wrote: > >>2005/6/5, Dieter Imann <dieter.imann@web.de>: >> >>>Problem: When I start a java application like crushftp it takes about 2 minutes until the server is functional. > > There''s nothing in Shorewall that would be able to distinguish > between Java and non-java; its all standard TCP firewalling. > > -Jason MartinTrue enough -- he''s probably got something like identd or DNS requests going on. Only tcpdump can say for sure. -- Jack at Monkeynoodle dot Org: It''s a Scientific Venture... Riding the Emergency Third Rail Power Trip since 1996!