TCP/IP stack questions on timeouts and dropping connections.

nodata fedora at nodata.co.uk
Tue Jul 26 17:12:18 UTC 2005


On Tue, 2005-07-26 at 16:54 +0900, Naoki wrote:
> Hi all,
> 
> Quick question.  Is there a way (kernel parameter or iptables hack ) to 
> drop connections that last over an arbitrary time value. Even better 
> would be the ability to restrict that rule to a specific TCP port.  So 
> for example drop connections to port 80 that have been established for 
> over 20 seconds?
> 
> A little odd to want to do this I know...
> 

Probably. Take a look under /proc/sys/net/ipv4




More information about the fedora-list mailing list