> What is the default idle timout on tcp connections passing through an > iptables firewall? If it's modifiable, on a rule by rule basis, how do I > do that, and what is the maximum timeout that I can set? short answer: 5 days long answer: check out "Table 4-2. Internal states" at: http://iptables-tutorial.frozentux.net/iptables-tutorial.html#TCPCONNECTIONS modifiable rule-by-rule? i do not believe so... maximum? whatever the max value of an unsigned long integer is on your platform--probably something bigger than would be sane to use (4294967295 comes to mind)... -j
