Martti Kuparinen wrote:
Yes, it is possible. You can use system tunables to accomplish that.
> # sysctl net.inet.ipf
It seems these are not available in NetBSD. Any ideas how to add support
for these?
Oh, I found it. I'll try to modify these...
# ipf -T list | grep tcp
fr_tcpidletimeout min 0x1 max 0x7fffffff current 864000
fr_tcpclosewait min 0x1 max 0x7fffffff current 480
fr_tcplastack min 0x1 max 0x7fffffff current 480
fr_tcptimeout min 0x1 max 0x7fffffff current 480
fr_tcpclosed min 0x1 max 0x7fffffff current 120
fr_tcphalfclosed min 0x1 max 0x7fffffff current 14400
