RFD: possibility to set timeouts on a per rule basis in PF
This is a discussion on RFD: possibility to set timeouts on a per rule basis in PF within the mailing.openbsd.tech forums, part of the OpenBSD category; --> Hello, I think it would be very nice to have a feature to set timeouts on per rule basis. ...
| |||||||
| Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-18-2008, 09:25 AM
| ||||
| ||||
 RFD: possibility to set timeouts on a per rule basis in PF Hello, I think it would be very nice to have a feature to set timeouts on per rule basis. There should be an option 'timeout' which may be placed in some rules that are keeping state. nat and rdr are the first example. Now timeouts are set globally, which causes some unnecessary overhead and I believe make state tables a bit overcrowded in case timeouts for some type of packets or timeouts for some service should be high. What do others think? I've just had to 'set timeout other.{first,single,multiple}' to 86400 as i have to rdr gre protocol to frickin (pptp proxy), but i think it is too global setting. -- With best regards, Gregory Edigarov      |
Linear Mode
