https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448031#M597366 Is this an 11.0 system Chris? If so, check and make sure PHNE_20436 and/or PHNE_20735 are NOT installed on the machine. They introduced a new algorithm which results in a<BR />much more random Initial Send Sequence number in TCP SYN and TCP SYN/ACK packets. From a security standpoint, this is very desirable, unfortunately, for applications that connect repeatedly to the same service on the same remote system, this can lead to periodic delays or failed connection attempts.<BR /> - Commands like remsh(1), rlogin(1) and rcp(1) can suffer from this. The only solution is to restart the operation<BR />or to remove the patches from the system.<BR /><BR />PHNE_21767 should be installed after these patches are removed.<BR /><BR /><BR />Berlene Thu, 28 Sep 2000 12:47:21 GMT Berlene Herren 2000-09-28T12:47:21Z https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448030#M597365 When trying to rcp any file from one server to another it works once and then fails with a message of "crmd: lost connection". When I leave the server for a minute or so and try again the rcp works once, and the failure cycle is repeated. rpc works fine between this machine and others on the same subnet.<BR />rcp has been enabled on the firewall and telnet, ftp, rlogin etc all work fine with no problem.<BR /><BR />Does anybody have any ideas please??? Tue, 26 Sep 2000 15:51:17 GMT https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448030#M597365 Chris Treharne 2000-09-26T15:51:17Z https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448031#M597366 Is this an 11.0 system Chris? If so, check and make sure PHNE_20436 and/or PHNE_20735 are NOT installed on the machine. They introduced a new algorithm which results in a<BR />much more random Initial Send Sequence number in TCP SYN and TCP SYN/ACK packets. From a security standpoint, this is very desirable, unfortunately, for applications that connect repeatedly to the same service on the same remote system, this can lead to periodic delays or failed connection attempts.<BR /> - Commands like remsh(1), rlogin(1) and rcp(1) can suffer from this. The only solution is to restart the operation<BR />or to remove the patches from the system.<BR /><BR />PHNE_21767 should be installed after these patches are removed.<BR /><BR /><BR />Berlene Thu, 28 Sep 2000 12:47:21 GMT https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448031#M597366 Berlene Herren 2000-09-28T12:47:21Z https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448032#M597367 Thanks for the reply. I tried what you suggested but still no joy. Any further suggestions would be more than welcome. Thanks. Thu, 28 Sep 2000 20:16:27 GMT https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448032#M597367 Chris Treharne 2000-09-28T20:16:27Z https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448033#M597368 some things to check:<BR /><BR />your /etc/passwd file &gt;&gt; make sure spellings are correct<BR /><BR />your /var/adm/inetd.sec &gt;&gt; is there a deny statement in there? Try moving it to /var/adm/inetd.old and rcp again.<BR /><BR />Cbeck /etc/inetd.conf for the login. It should look like this:<BR /> login stream tcp nowait root /usr/lbin/rlogind rlogind<BR /><BR />If you have to make any changes, ensure you re-read it with inetd -c.<BR /><BR />If you have a multihomed host, run inetd -l on host B and rcp from host A to host B, and observe the var/adm/syslog/syslog.log for any connections from "unknown." There maybe a problem with the netconf file.<BR /><BR />Berlene <BR /><BR /><BR /> Mon, 02 Oct 2000 12:14:09 GMT https://community.hpe.com/t5/operating-system-hp-ux/rcp-through-raptor-firewall-over-2-domains/m-p/2448033#M597368 Berlene Herren 2000-10-02T12:14:09Z