Hi Lloyd Standish:
Thanks for your feedback greatly.
I felt the scenario you described is not really what I want to know.
I want to know if there is any way to set up iptables so
that it will drop a connection after that connection has been idle
for a specified period of time?
I have tried connection tracking function of iptables, however it
seems not work for my case.
I wonder whether there are some other means to achieve this.
Thanks.
Best Regards.
> Follows:
> Does anyone know about how to drop an idle connection when timeouts?
> Thanks for any feedback in advance.
> Best Regards.
> Lu Zhongda
>
+ I think you are referring to what is called "dead gateway detection."
There are patches for current kernels to allow netfilter to do this
(http://www.ssi.bg/~ja/#routes).
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
