In some mail from Martti Kuparinen, sie said: > > On Tue, 14 Jun 2005, Martti Kuparinen wrote: > > > We have IPF 4.1.8 (NetBSD/i386 3.0_BETA) in our firewall and we see > > a lot of entries like this in memory according to ipfstat -t: > > > > x.x.x.x,2913 x.x.x.x,80 0/5 tcp 197 93564 105:49:31 > > x.x.x.x,2536 x.x.x.x,80 2/5 tcp 181 93230 108:28:36 > > > > How can I remove these? Is there any way to set the lifetime to > > something small until the TCP connection is fully established? > > Please note that I want to have the lifetime 120 hrs for established > connectons but non-established should go away quite fast (say 10 minutes). > Is this possible with IPF?
For those in non-established state, you can do: ipf -F s Darren
