Setup guide

ManualsBrandsD-Link ManualsComputer equipmentDWL-500 - 11Mb Wireless LAN PCI Network Card

201

202

203

204

205

206

207

208

209

210

Description

Using Connection Tracking, you can observe connections passing through the router.

Connection Timeouts

Here comes a list of connection timeouts:

• TCP SYN sent - (first stage in establishing a connection) = 2min

• TCP SYN recvd - (second stage in establishing a connection) = 60sec

• Established TCP connections - (third stage) = 5 days

• TCP FIN wait - (connection termination) = 2min

• TCP TIME wait - (connection termination) = 2min

• TCP CLOSE - (remote party sends RTS) = 10sec

• TCP CLOSE wait - (sent RTS) = 60sec

• TCP LAST ACK - (received ACK) = 30sec

• TCP Listen - (ftp server waiting for client to establish data connection) = 2min

• UDP timeout - 30sec

• UDP with reply timeout - (remote party has responded) = 180sec

• ICMP timeout - 30sec

• All other - 10min

Property Description

dst-address (read-only: IP address:port) - the destination address and port the connection is

established to

src-address (read-only: IP address:port) - the source address and port the connection is established

from

protocol (read-only: text) - IP protocol name or number

tcp-state (read-only: text) - the state of TCP connectioon

timeout (read-only: time) - the amount of time until the connection will be timed out

reply-src-address (read-only: IP address:port) - the source address and port the reply connection

is established from

reply-dst-address (read-only: IP address:port) - the destination address and port the reply

connection is established to

assured (read-only: true | false) - shows whether the connection is assured

icmp-id (read-only: integer) - contains the ICMP ID. Each ICMP packet gets an ID set to it when it

is sent, and when the receiver gets the ICMP message, it sets the same ID within the new ICMP

message so that the sender will recognize the reply and will be able to connect it with the

appropriate ICMP request

icmp-option (read-only: integer) - the ICMP type and code fields

reply-icmp-id (read-only: integer) - contains the ICMP ID of received packet

reply-icmp-option (read-only: integer) - the ICMP type and code fields of received packet

unreplied (read-only: true | false) - shows whether the request was unreplied

Example

[admin@test_1] ip firewall connection> print

Flags: U - unreplied, A - assured

# SRC-ADDRESS DST-ADDRESS PR.. TCP-STATE TIMEOUT