TCP/IP stack questions on timeouts and dropping connections.

[Naoki]

Hi all,

Quick question.  Is there a way (kernel parameter or iptables hack ) to 
drop connections that last over an arbitrary time value. Even better 
would be the ability to restrict that rule to a specific TCP port.  So 
for example drop connections to port 80 that have been established for 
over 20 seconds?

A little odd to want to do this I know...