Jason Opperisano wrote:
What is the default idle timout on tcp connections passing through an iptables firewall? If it's modifiable, on a rule by rule basis, how do I do that, and what is the maximum timeout that I can set?
short answer: 5 days
long answer: check out "Table 4-2. Internal states" at: http://iptables-tutorial.frozentux.net/iptables-tutorial.html#TCPCONNECTIONS
modifiable rule-by-rule? i do not believe so...
maximum? whatever the max value of an unsigned long integer is on your platform--probably something bigger than would be sane to use (4294967295 comes to mind)...
Thanks.
-ste
