Hi All, Read below.
----- Original Message ----- From: "Antony Stone" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, May 03, 2002 2:59 PM Subject: Re: Netfilter State table questions > > 4) Is there any way to alter the default session timeout periods without > > having to recompile the kernel? > > No. No again. It is possible, but it requires the tcp-window-tracking patch in patch-o-matic, which will add the default timeout values in the /proc/sys/net/ipv4/netfilter/ directory, (or net.ipv4.netfilter.* with sysctl). With that patch in question, you do not need recompile every time. Anyways, just a quick thought :-). Have a nice day, > > Do your "security guys" have some other preferred firewall system for which > they already have the answers to these questions, or are they just saying > "no-one ever got fired for buying Checkpoint FW-1" ? > > > > Antony. > >
