From owner-freebsd-questions Wed Jul 18 16:46:47 2001 Delivered-To: freebsd-questions@freebsd.org Received: from smtprelay2.adelphia.net (smtprelay2.adelphia.net [64.8.25.7]) by hub.freebsd.org (Postfix) with ESMTP id 566AB37B401 for ; Wed, 18 Jul 2001 16:46:44 -0700 (PDT) (envelope-from ipthomas_77@yahoo.com) Received: from scraemondaemon.my.domain ([24.49.96.3]) by smtprelay2.adelphia.net (Netscape Messaging Server 4.15) with ESMTP id GGP0QM01.BAD; Wed, 18 Jul 2001 19:47:10 -0400 Received: (from ipt@localhost) by scraemondaemon.my.domain (8.11.4/8.11.4) id f6INijq70077; Wed, 18 Jul 2001 19:44:45 -0400 (EDT) (envelope-from ipt) Date: Wed, 18 Jul 2001 19:44:44 -0400 From: User & Ian Patrick Thomas To: Mark Hughes Cc: freebsd-questions@freebsd.org Subject: Re: Stateful rules timeout on IPFW Message-ID: <20010718194444.D51074@localhost> References: <03c001c10fa5$a6af6ea0$0200a8c0@mark2> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <03c001c10fa5$a6af6ea0$0200a8c0@mark2>; from mark@dvdnews.co.uk on Wed, Jul 18, 2001 at 05:20:35PM +0100 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Checkout man sysctl and do a sysctl -a | more | grep "net.inet.ip.fw.dyn_*" Ian As it was put forth by Mark Hughes on Wed, Jul 18, 2001 at 05:20:35PM +0100... > Hi, > > I've just set up IPFW on my FreeBSD gateway box, and while we can sign in > to MSN Messenger from any of the internal windows clients, with no activity > the client gets signed out automatically after a period of time (althoguh > it doesn't tell you that you've been signed out, just no=one can see you > online...). > > I'm almost certain this is due to the dynamic rule on IPFW timing out, so, > is there any way of putting an increadibly long timeout value on the rules, > so this doesn't happen? I'm thinking something like 24 hours would be the > sort of thing I was looking at. This would mean of course that all dynamic > rules were open for that long (unless someone can thing of some way of > allowing just the MSN signin ones to remain with the others closing), but I > think I can cope with that. > > IS there any way of doing this? > > Thanks, > Mark > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message