Is there any thing on UI where i can set idle time out of tcp connection.And what is default value of astaro gateway 8.0 for idle tcp connection timeout.
you also have to enable "Use strict TCP session handling" under Network Security >> Firewall >> Advanced (nf_conntrack_tcp_be_liberal). Otherwise the connection is picked up and allowed again after client sends another data packet.
Hi
i have enable the Use "strict TCP session handling" from Network Security >packet filter>advances.and on firewall console showing nf_conntrack_tcp_be_liberal=0;
still tcp idle connection is not broken by firewall after 900 sec
my other settings are:
1)packet filter:allow from client to server and server to client.
2)NAT>Mosquerading: Internal (Network) to External interface
I have not restarted the firewall machine after changing the value strict TCP session handling"
Hi
i have enable the Use "strict TCP session handling" from Network Security >packet filter>advances.and on firewall console showing nf_conntrack_tcp_be_liberal=0;
still tcp idle connection is not broken by firewall after 900 sec
my other settings are:
1)packet filter:allow from client to server and server to client.
2)NAT>Mosquerading: Internal (Network) to External interface
I have not restarted the firewall machine after changing the value strict TCP session handling"
