From 59cfa05bf3c533c0694ca4f22e787952234fc1ac Mon Sep 17 00:00:00 2001 From: Felix Fietkau Date: Sun, 13 Jul 2014 10:24:34 +0000 Subject: base-files: adjust the default netfilter tcp established connection timeout as per RFC 5382 (#17098) Signed-off-by: Felix Fietkau SVN-Revision: 41599 --- package/base-files/files/etc/sysctl.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'package/base-files/files/etc/sysctl.conf') diff --git a/package/base-files/files/etc/sysctl.conf b/package/base-files/files/etc/sysctl.conf index 89527df9f8..9e5714ef3e 100644 --- a/package/base-files/files/etc/sysctl.conf +++ b/package/base-files/files/etc/sysctl.conf @@ -18,7 +18,7 @@ net.ipv6.conf.all.forwarding=1 net.netfilter.nf_conntrack_acct=1 net.netfilter.nf_conntrack_checksum=0 net.netfilter.nf_conntrack_max=16384 -net.netfilter.nf_conntrack_tcp_timeout_established=3600 +net.netfilter.nf_conntrack_tcp_timeout_established=7440 net.netfilter.nf_conntrack_udp_timeout=60 net.netfilter.nf_conntrack_udp_timeout_stream=180 -- cgit v1.2.3