Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Time out for TCP handshake

To: [email protected]
Subject: RE: [FW1] Time out for TCP handshake
From: Amin Tora <[email protected]>
Date: Sat, 28 Jul 2001 01:53:26 -0400
Cc: "'Holland, Stephen'" <[email protected]>
Sender: [email protected]


>Without using SynDefender what is the default time Checkpoint 4.1 will
allow 
>for the entire TCP handshake to take place before the firewall will close
the
>connection.  Also what will be logged if the connection is dropped by 
> the firewall if the handshake is not finished?

Stephen:

During the initial TCP handshake (i.e. SYN, SYN/ACK, ACK) FireWall sets the
timeout value for the connection in the state table to 60seconds.

You can edit this by editing a file $FWDIR/conf/objects.C with the following
entry:

:tcpstarttimeout (60)

After the handshake is completed, the timeout is set to 3600seconds if you
haven't changed your default Policy->Properties: TCP timeout value...

...not sure what will be logged if the handshake is not completed or even IF
anything will be logged at all...  

.peace.

Amin Tora,CISSP
ePlus Technology Inc.



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Logexport on FW-4.1
Next by Date: Re: [FW1] ICQ and FW-1
Previous by thread: [FW1] Time out for TCP handshake
Next by thread: RE: [FW1] Time out for TCP handshake
Index(es):
- Date
- Thread