Gabi

> > > > I wonder if this will cause issues if the portal picks a different Gateway for resuming the SSH session than what was originally used to establish...

> That would also reduce roundtrips because we don't need to send as many connection intents. I think we would still need the same number of connection intents? We still...

> > > That would also reduce roundtrips because we don't need to send as many connection intents. > > > > > > I think we would still need...

> As indicated on https://wiki.qemu.org/Documentation/Networking, QEMU uses an internal DNS server. I checked on my setup and sending a DNS query from inside the VM triggers a DNS query to...

This is my current theory, recently discussed with @jamilbk: VirtualBox uses by default [its own nat](https://www.virtualbox.org/manual/ch06.html#network_nat) implementation. This NAT implementation has a limit on how many packets can be send...

I just tested, by sending packets, to a destination with a random port, and just by sending I don't see this behavior reproduced

> > I just tested, by sending packets, to a destination with a random port, and just by sending I don't see this behavior reproduced > > Can you test...

Importantly, when I see pcap capture of STUN messages in the host(not the vm), when the bug happens, we are only talking to 1 server. I do think the problem...

> > > > I just tested, by sending packets, to a destination with a random port, and just by sending I don't see this behavior reproduced > > >...

> We can restore the behaviour prior to #6181 by creating a dedicated UDP socket for DNS queries (see [#6297 (comment)](https://github.com/firezone/firezone/issues/6297#issuecomment-2290031063)). Should we just do that and close this issue...