pom:conntrack:tcp
conntrack_tcp
This module tracks TCP connections based on the source and destination ports. It has many timers. Make sure you know what you are doing before changing them.
Parameters :
| Name | Default value | Description |
|---|---|---|
| syn_sent_timer | 180 | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent but none was received. |
| syn_recv_timer | 60 | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent and received but no further packet is exchanged. |
| last_ack_timer | 30 | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP FIN was received in both directions and no further packet is exchanged. |
| close_timer | 10 | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP RST was received and no further packet is exchanged. |
| time_wait_timer | 180 | Specifies how long we wait for remaining packets on the network after a TCP connection has been closed. |
| established_timer | 7200 | Specifies how long we keep informations about an established TCP connection while no further packets are exchanged. |
| enable_reuse_handling | no | Enable or disable handling of reused connections. Those connections violate the RFC in a way that the same source and destination ports are reused within the two minutes after the connection has been closed. Please note that the SYN packet will be handled as a packet from the first connection. |
pom/conntrack/tcp.txt · Last modified: 2020/05/26 21:59 by 127.0.0.1