pom:conntrack:tcp
Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
| pom:conntrack:tcp [2012/10/12 08:57] – external edit 127.0.0.1 | pom:conntrack:tcp [2020/05/26 21:59] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 3: | Line 3: | ||
| This module tracks TCP connections based on the source and destination ports. It has many timers. Make sure you know what you are doing before changing them. | This module tracks TCP connections based on the source and destination ports. It has many timers. Make sure you know what you are doing before changing them. | ||
| - | * syn_sent_timer | + | Parameters : |
| - | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent but none was received.\\ | + | ^ Name ^ Default value ^ Description ^ |
| - | Default : 180 seconds | + | |syn_sent_timer|180|Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent but none was received.| |
| - | + | |syn_recv_timer|60|Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent and received but no further packet is exchanged.| | |
| - | * syn_recv_timer | + | |last_ack_timer|30|Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP FIN was received in both directions and no further packet is exchanged.| |
| - | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP SYN was sent and received but no further packet is exchanged.\\ | + | |close_timer|10|Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP RST was received and no further packet is exchanged.| |
| - | Default : 60 seconds | + | |time_wait_timer|180|Specifies how long we wait for remaining packets on the network after a TCP connection has been closed.| |
| - | + | |established_timer|7200|Specifies how long we keep informations about an established TCP connection while no further packets are exchanged.| | |
| - | * last_ack_timer | + | |enable_reuse_handling|no|Enable or disable handling of reused connections. Those connections violate the RFC in a way that the same source and destination ports are reused within the two minutes after the connection has been closed. Please note that the SYN packet will be handled as a packet from the first connection.| |
| - | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP FIN was received in both directions and no further packet is exchanged.\\ | + | |
| - | Default : 30 seconds | + | |
| - | + | ||
| - | * close_timer | + | |
| - | Specifies after how many seconds we assume a connection is closed or unresponsive after a TCP RST was received and no further packet is exchanged.\\ | + | |
| - | Default : 10 seconds | + | |
| - | + | ||
| - | * time_wait_timer | + | |
| - | Specifies how long we wait for remaining packets on the network after a TCP connection has been closed.\\ | + | |
| - | Default : 180 seconds | + | |
| - | + | ||
| - | * established_timer | + | |
| - | Specifies how long we keep informations about an established TCP connection while no further packets are exchanged.\\ | + | |
| - | Default : 7200 seconds | + | |
| - | + | ||
| - | * enable_reuse_handling | + | |
| - | Enable or disable handling of reused connections. Those connections violate the RFC in a way that the same source and destination ports are reused within the two minutes after the connection has been closed. Please note that the SYN packet will be handled as a packet from the first connection.\\ | + | |
| - | Default : no | + | |
pom/conntrack/tcp.1350032221.txt.gz · Last modified: 2020/05/26 21:59 (external edit)