Open SSH Server connection drops out after few or N minutes of inactivity
I have already written about how to deny or access to users using OpenSSH. Today I am going to write about another interesting problem.
Basically this is a security feature. Ssh connection freezes or drops out after N minutes of inactivity. According to official OpenSSH man page:
"This is usually the result of a packet filter or NAT device timing out your TCP connection due to inactivity. For security, reason most enterprises only use SSH protocol version 2. This problem only occurred with version 2."
If you work for long hours using ssh and left workstation for some other work, your connection will be dropped by remote server. This may be little annoying to you. So to get rid of this problem:
Open your /etc/ssh/sshd_config file:
# vi /etc/ssh/sshd_config
Modify setting as follows:
ClientAliveInterval 30
ClientAliveCountMax 5
Where,
- ClientAliveInterval: Sets a timeout interval in seconds (30) after which if no data has been received from the client, sshd will send a message through the encrypted channel to request a response from the client. The default is 0, indicating that these messages will
not be sent to the client. This option applies to protocol version 2 only. - ClientAliveCountMax: Sets the number of client alive messages (5) which may be sent without sshd receiving any messages back from the client. If this threshold is reached while client alive messages are being sent, sshd will disconnect the client, terminating the session.
Close and save the file. Restart sshd:
# /etc/init.d/ssh restart
OR
# service sshd restart
Another option is enable ServerAliveInterval in the client's (your workstation) ssh_config file.
# vi /etc/ssh/ssh_config
Append/modify values as follows:
ServerAliveInterval 15
ServerAliveCountMax 3
Where,
- ServerAliveInterval : Sets a timeout interval in seconds after which if no data has
been received from the server, ssh will send a message through the encrypted channel to request a response from the server.
In above example, ServerAliveInterval is set to 15 and ServerAliveCountMax is left at the 3, if the server becomes unresponsive, ssh will disconnect after approximately 45 seconds. Again this option applies to protocol version 2 only.
Read the man pages of ssh, sshd and sshd_config/ssh_config for more information.
E-mail this to a Friend
Printable Version
You may also be interested in other helpful articles:
- Increase security by Locking Admin screen/console
- How to setup Linux antivirus and antispam mail server
- How can I enable or setup log message in the iptables firewall?
- Howto improve ssh session performance by reusing an existing connection to a remote openssh server
- How To Setup OpenSolaris Open Storage Server
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Recent Comments
Yesterday ~ 12 Comments
Yesterday ~ 8 Comments
Yesterday ~ 185 Comments
Yesterday ~ 15 Comments
Yesterday ~ 3 Comments