Date: Mon, 23 Oct 2000 21:30:37 -0700 From: "Crist J . Clark" <cjclark@reflexnet.net> To: freebsd-ipfw@freebsd.org Subject: sysctl(8) Used? Message-ID: <20001023213037.P75251@149.211.6.64.reflexcom.com>
next in thread | raw e-mail | index | archive | help
I wanted to up the lifetime of dynamic rules for UDP "connections." My
ISP's DNS servers time out after one minute causing a lot of log
spam. No problem, I figured I'd up the lifetime of the dynamic rules
to, say, 65 seconds just to be sure. First off, I had to figure out
which sysctl to change since there is no UDP setting. After looking
through the source, I found that 'dyn_short_lifetime' was what I
wanted to change. So, I did,
# sysctl -w net.inet.ip.fw.dyn_short_lifetime=65
But then I realized it didn't make any changes. The sysctl values do
not seem to be used.
# sysctl -a | fgrep short
net.inet.ip.fw.dyn_short_lifetime: 65
# nslookup www.freebsd.org >& /dev/null & ipfw sh | awk '/^## Dynamic rules:/ { go = 1 } ( go && $5 != "0," ) { print }'
[1] 12486
## Dynamic rules:
10300 0 0 (T 30, # 165) ty 0 udp, 64.6.211.149 3607 <-> 64.6.204.18 53
Looking again at the code, I can't see exactly why this has no
effect. I'm a bit puzzled.
--
Crist J. Clark cjclark@alum.mit.edu
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001023213037.P75251>