d7829c04b96ed0229a7bb4b6197232b58d88075a
wiki/info/landscape/olympic-setup.md
| ... | ... | @@ -163,6 +163,25 @@ The port forwards vary for exceptional situations, such as when the Internet con |
| 163 | 163 | |
| 164 | 164 | The tunnel configurations are established and configured using a set of scripts, each to be found under ``/usr/local/bin`` on each of the two laptops. |
| 165 | 165 | |
| 166 | +#### ssh_config and sshd_config tweaks |
|
| 167 | + |
|
| 168 | +In order to recover quickly from failures we changed ``/etc/ssh/ssh_config`` on both of the P1s and added the following parameters: |
|
| 169 | +``` |
|
| 170 | +ExitOnForwardFailure yes |
|
| 171 | +ConnectTimeout 10 |
|
| 172 | +ServerAliveCountMax 3 |
|
| 173 | +ServerAliveInterval 10 |
|
| 174 | +``` |
|
| 175 | +For the server side on tokyo-ssh and on the both P1s the following parameters have been added to ``/etc/ssh/sshd_config``: |
|
| 176 | +``` |
|
| 177 | +ClientAliveInterval 3 |
|
| 178 | +ClientAliveCountMax 3 |
|
| 179 | +``` |
|
| 180 | + |
|
| 181 | +ExitOnForwardFailure will force ssh to exit if one of the port forwards fails. ConnectTimeout manages the time in seconds until an initial connection fails. AliveInterval (client and server) manages the time in seconds after ssh/sshd are sending client and server alive probes. CountMax is the number of retries for those probes. |
|
| 182 | + |
|
| 183 | +The settings have been verified by executing a network change on both the laptops, the ssh tunnel returns after a couple of seconds. |
|
| 184 | + |
|
| 166 | 185 | #### Regular Operations: master on sap-p1-1, replica on sap-p1-2, with Internet / Cloud connection |
| 167 | 186 | |
| 168 | 187 | On sap-p1-1 two SSH connections are maintained, with the following default port forwards, assuming sap-p1-1 is the local master: |