RE: [ILUG] IPmasq and TCP keepalives

From: Kenn Humborg (kenn at domain bluetree.ie)
Date: Tue 11 Jul 2000 - 14:11:50 IST

• Next message: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Previous message: Fergal Daly: "Re: [ILUG] IPmasq and TCP keepalives"
• In reply to: Fergal Daly: "Re: [ILUG] IPmasq and TCP keepalives"
• Next in thread: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Reply: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

> The rc.firewall that I took from the IP-Masq howto has this
>
> # MASQ timeouts
> #
> # 2 hrs timeout for TCP session timeouts
> # 10 sec timeout for traffic after the TCP/IP "FIN" packet is received
> # 160 sec timeout for UDP traffic (Important for MASQ'ed ICQ users)
> #
> /sbin/ipchains -M -S 7200 10 160
>
> which looks right in relation to your point, but I'm no expert,

Still won't work with connections for stock Linux 2.2
machines. They'll die after two hours.

Later,
Kenn

• Next message: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Previous message: Fergal Daly: "Re: [ILUG] IPmasq and TCP keepalives"
• In reply to: Fergal Daly: "Re: [ILUG] IPmasq and TCP keepalives"
• Next in thread: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Reply: Fergal Daly: "RE: [ILUG] IPmasq and TCP keepalives"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:06:50 GMT