From owner-freebsd-pf@FreeBSD.ORG Wed Aug 6 15:55:56 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2A66A1065672 for ; Wed, 6 Aug 2008 15:55:56 +0000 (UTC) (envelope-from dalibor.gudzic@gmail.com) Received: from yx-out-2324.google.com (yx-out-2324.google.com [74.125.44.28]) by mx1.freebsd.org (Postfix) with ESMTP id D82938FC36 for ; Wed, 6 Aug 2008 15:55:55 +0000 (UTC) (envelope-from dalibor.gudzic@gmail.com) Received: by yx-out-2324.google.com with SMTP id 8so281323yxb.13 for ; Wed, 06 Aug 2008 08:55:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:in-reply-to:mime-version:content-type:references; bh=DHH8X/cwNccCeG/A4p+iuX0y/3ORqb+Od2ejCxqtKmk=; b=o7obfD3snE0+C9CEwgNfZRrRHY7X58W4ORhrUicG1SticRBQEOkM2VfXNO9rwHHtgK EuABqxTyT1Q7Kq3vR8xnD5v8ezlBTZ6BNs0hGT9K6iIIUHHhRSTnPgDXXgkRHwteSJnp /vBoCeBZOIE83XRIbx1iBaxOGZbqksPNuOpvQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:references; b=E0RLZHP4cBnRxjAp0KhSb1aHjUsdFVG33TOy780wscZeTEcf9JCLMgrHxm7IGLPgBZ LRMZuF/jqgXjAWz8kbEj9QsRHAVS3OXJhautGwM0RcvB7MeKs0YNc2/aXxWJ9qYT7/yP 3lCIMtonKHs4RgUTBu0/GQvbsBchQOmDGGpHA= Received: by 10.150.205.20 with SMTP id c20mr3533972ybg.196.1218036584982; Wed, 06 Aug 2008 08:29:44 -0700 (PDT) Received: by 10.150.123.14 with HTTP; Wed, 6 Aug 2008 08:29:44 -0700 (PDT) Message-ID: <866fa9520808060829g37445902hfe1cd96c67e40ee9@mail.gmail.com> Date: Wed, 6 Aug 2008 17:29:44 +0200 From: "Dalibor Gudzic" To: freebsd-pf@freebsd.org In-Reply-To: MIME-Version: 1.0 References: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: pf and torrent clients X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Aug 2008 15:55:56 -0000 2008/8/6 Vitaliy Vladimirovich > Hi, All. > > I have one question about pf. > In my LAN some users use torrent clients. This torrent client > create states with 86400s timeoutes. But when users shutdown own computers > at the end of working day, > entries remain before the expiration 86400s. Not 90s as at closing web or > ftp sessions. > I assume, that Torrent does not close connection. How to adjust pf, that it > would delete "dead" entries > created by torrent. > > Thanks! You might wanna check the "set timeout" section in pf.conf(5) man page. You can check default timeout options with: pfctl -st Cheers P.S. Sorry, forgot to cc the list.