[Snort-users] Frag2 timeout parameter

Paweł Goleń p_golen at ...5844...
Sun Apr 6 03:16:02 EDT 2003


Why frag2 default setting for timeout parameter has changed from 30
seconds to 60 seconds?
Most systems wait only 30 seconds for frag:
obszczymurek:~# sysctl net.ipv4.ipfrag_time
net.ipv4.ipfrag_time = 30
With this change frag2 may accept packet, which is dropped by target
system.

--
Paweł Goleń
mailto:p_golen at ...5844...





More information about the Snort-users mailing list