diff options
| author | Kristof Provost <kp@FreeBSD.org> | 2025-08-20 14:34:33 +0000 |
|---|---|---|
| committer | Kristof Provost <kp@FreeBSD.org> | 2025-09-15 09:32:34 +0000 |
| commit | 0a67f601fe4f2e8af72cb0f99785cba4c91f7d7c (patch) | |
| tree | 8728d662e7c83d19b92abc7f7970708faa6ebb9f | |
| parent | 864458ce5025ab83c3d8cbaa514185b8cbc53acf (diff) | |
pf.conf.5: hint how to set tcp timeout collectively
Hint that the tcp timeout values can be adjusted collectively via "set
optimization".
from jesper wallin
ok bluhm
Obtained from: OpenBSD, jmc <jmc@openbsd.org>, df80715c2d
Sponsored by: Rubicon Communications, LLC ("Netgate")
| -rw-r--r-- | share/man/man5/pf.conf.5 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/share/man/man5/pf.conf.5 b/share/man/man5/pf.conf.5 index 271a83a89ee5..edaa160dddf2 100644 --- a/share/man/man5/pf.conf.5 +++ b/share/man/man5/pf.conf.5 @@ -267,6 +267,10 @@ which corresponds to the connection state. Each packet which matches this state will reset the TTL. Tuning these values may improve the performance of the firewall at the risk of dropping valid idle connections. +Alternatively, these values may be adjusted collectively +in a manner suitable for a specific environment using +.Cm set optimization +(see above). .Pp .Bl -tag -width xxxx -compact .It Ar tcp.first |