diff options
| author | David Krause <david@cvs.openbsd.org> | 2004-02-26 22:11:12 +0000 |
|---|---|---|
| committer | David Krause <david@cvs.openbsd.org> | 2004-02-26 22:11:12 +0000 |
| commit | 9475e01f7342d5b6d93238c2ba06fc555cc2d01c (patch) | |
| tree | 4164d47097df15f45624f660dca3021cdafd651b /etc/pf.conf | |
| parent | 590ddb80218713ca200f32ecb744e3e5ae02ff35 (diff) | |
add src.track timeout and src-nodes limit
ok mcbride@
Diffstat (limited to 'etc/pf.conf')
| -rw-r--r-- | etc/pf.conf | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/etc/pf.conf b/etc/pf.conf index fc10efe8a86..57d8d26403a 100644 --- a/etc/pf.conf +++ b/etc/pf.conf @@ -1,4 +1,4 @@ -# $OpenBSD: pf.conf,v 1.25 2004/01/29 18:54:29 todd Exp $ +# $OpenBSD: pf.conf,v 1.26 2004/02/26 22:11:11 david Exp $ # # See pf.conf(5) and /usr/share/pf for syntax and examples. # Required order: options, normalization, queueing, translation, filtering. @@ -15,14 +15,14 @@ #table <foo> { 10.0.0.0/8, !10.1.0.0/16, 192.168.0.0/24, 192.168.1.18 } # Options: tune the behavior of pf, default values are given. -#set timeout { interval 10, frag 30 } +#set timeout { interval 10, frag 30, src.track 0 } #set timeout { tcp.first 120, tcp.opening 30, tcp.established 86400 } #set timeout { tcp.closing 900, tcp.finwait 45, tcp.closed 90 } #set timeout { udp.first 60, udp.single 30, udp.multiple 60 } #set timeout { icmp.first 20, icmp.error 10 } #set timeout { other.first 60, other.single 30, other.multiple 60 } #set timeout { adaptive.start 0, adaptive.end 0 } -#set limit { states 10000, frags 5000 } +#set limit { states 10000, src-nodes 10000, frags 5000 } #set loginterface none #set optimization normal #set block-policy drop |