ipfw dynamic rule timeout
Antoine Jacoutot
ajacoutot at lphp.org
Tue Apr 29 06:43:57 PDT 2003
On Tuesday 29 April 2003 12:41, Bruno Afonso wrote:
> http://marc.theaimsgroup.com/?l=freebsd-ipfw&r=1&w=2
> enjoy
OK, so after reading the archives, I saw that there was no solution to my
problem, so what I did is:
sysctl net.inet.ip.fw.dyn_syn_lifetime=300
The default is 20, so it gives a little more time. But I still have problem
from time to time (clients behind the firewall get disconnected from an
internet news server after a while reading an article, web clients from the
internet to the web server get disconnected while reading mail from
webmail...).
Should I go like:
sysctl net.inet.ip.fw.dyn_syn_lifetime=100000000000000000
or is it just stupid ? (I'm sure this is stupid, but I can't find any
solution).
Thanks a lot for your help.
Antoine
More information about the freebsd-ipfw
mailing list