RE: Simulating router breaking idle TCP connections with IPTABLES

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Um, what kind of router do you have? Even some of the very basic home routers have tcp timers on them. 

Bob Reiber
BK Sales and Service
3211 Longfellow Dr
Belmont, CA 94002
Tel: 650 376 1122
Fax: 650 240 4556

-----Original Message-----
From: netfilter-owner@xxxxxxxxxxxxxxx [mailto:netfilter-owner@xxxxxxxxxxxxxxx] On Behalf Of Timothy Arceri
Sent: Sunday, May 5, 2013 7:13 PM
To: netfilter@xxxxxxxxxxxxxxx
Subject: Simulating router breaking idle TCP connections with IPTABLES

Hi All,

It seems there are some routers floating around that break idle TCP connections after a specified amount of time. 
For example: "Sonicwall devices have that feature to close established connections when they hit a predefined timeout value with no data passing through."

This causes some issues with Gnome's Nautilus/GVFS and sftp connections that I'm trying to handle more gracfully. The problem is I dont have a router that has this behaviour so I'm looking for a way to simulate it using iptables on my PC.
I have read the thread about this from 2011 http://www.spinics.net/lists/netfilter/msg51963.html but it looks like a solution wasnt provided as the usecase didnt call for doing what was requested.
I however DO want to break the established TCP connections. Does anyone know how I can do this? I don't mind if I need to edit code and rebuild as this is just for testing perposes so I will be reverting once I'm finished.

Thanks for your time,
Tim

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at  http://vger.kernel.org/majordomo-info.html



The information in this electronic mail is intended for the named recipients only. It may contain privileged and confidential matter; and if you are not an intended recipient, you are hereby notified that copying, forwarding or other dissemination or distribution of thiscommunication by any means is prohibited. If you have received this electronic mail in error, please notify the sender immediately.
CONFIDENTIALITY NOTICE: This email message is for the sole use of the intended recipient and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message and any attachments. Thank you.��.n��������+%������w��{.n����z��׫�)��jg��������ݢj����G�������j:+v���w�m������w�������h�����٥
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux