blob: 108546f4cd195f27565a2ec34c704983d26ec0ea (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
|
*************** Sync {
*** 23,36 ****
#
# If the firewall replica goes from primary to backup,
- # the conntrackd -t command is invoked in the script.
- # This command resets the timers of the conntracks that
- # live in the kernel to this new value. This is useful
- # to purge the connection tracking table of zombie entries
- # and avoid clashes with old entries if you trigger
- # several consecutive hand-overs.
#
- PurgeTimeout 15
# Set the acknowledgement window size. If you decrease this
# value, the number of acknowlegdments increases. More
--- 23,35 ----
#
# If the firewall replica goes from primary to backup,
+ # the conntrackd -t command is invoked in the script.
+ # This command schedules a flush of the table in N seconds.
+ # This is useful to purge the connection tracking table of
+ # zombie entries and avoid clashes with old entries if you
+ # trigger several consecutive hand-overs. Default is 60 seconds.
#
+ # PurgeTimeout 60
# Set the acknowledgement window size. If you decrease this
# value, the number of acknowlegdments increases. More
|
