X-Git-Url: http://git.sameswireless.fr/l2tpns.git/blobdiff_plain/12f16f60c19b470a3a4e5ee145485095dc674dee..a350423d38f12d40b50a2d253ef2516d4409c2bc:/Docs/startup-config.5 diff --git a/Docs/startup-config.5 b/Docs/startup-config.5 index 0c13c8a..8378fb7 100644 --- a/Docs/startup-config.5 +++ b/Docs/startup-config.5 @@ -2,7 +2,7 @@ .de Id .ds Dt \\$4 \\$5 .. -.Id $Id: startup-config.5,v 1.2 2004/11/27 05:19:54 bodea Exp $ +.Id $Id: startup-config.5,v 1.3.2.4 2005/05/30 06:35:19 bodea Exp $ .TH STARTUP-CONFIG 5 "\*(Dt" L2TPNS "File Formats and Conventions" .SH NAME startup\-config \- configuration file for l2tpns @@ -131,9 +131,6 @@ by running the uptime command on the CLI. .TP -.B cleanup_interval -Interval between regular cleanups (in seconds). -.TP .B multi_read_count Number of packets to read off each of the UDP and TUN fds when returned as readable by select (default: 10). Avoids incurring the @@ -160,6 +157,12 @@ process in memory. .B icmp_rate Maximum number of host unreachable ICMP packets to send per second. .TP +.B packet_limit +Maximum number of packets of downstream traffic to be handled each +tenth of a second per session. If zero, no limit is applied (default: +0). Intended as a DoS prevention mechanism and not a general +throttling control (packets are dropped, not queued). +.TP .B cluster_address Multicast cluster address (default: 239.192.13.13). .TP @@ -173,6 +176,10 @@ Interval in tenths of a second between cluster heartbeat/pings. Cluster heartbeat timeout in tenths of a second. A new master will be elected when this interval has been passed without seeing a heartbeat from the master. +.TP +.B cluster_master_min_adv +Determines the minumum number of up to date slaves required before the +master will drop routes (default: 1). .RE .SS BGP ROUTING The routing configuration section is entered by the command @@ -275,11 +282,8 @@ and .I dest are as described above for standard lists. .PP -For -.B tcp -and -.B udp -matches, source and destination may be optionally followed by a +For TCP and UDP matches, source and destination may be optionally +followed by a .I ports specification: .IP @@ -290,20 +294,33 @@ specification: range .I from to .PP -.B tcp -matches may also specify .I flags -to match against tcp header flags: -.IP +may be one of: +.RS +.HP .RB { match\-any | match\-all } .RB { + | - }{ fin | syn | rst | psh | ack | urg } \&... .br +Match packets with any or all of the tcp flags set +.RB ( + ) +or clear +.RB ( - ). +.HP .B established -.PP -.RB ' established ' -is shorthand for -.RB ' "match-any +ack +rst -syn" '. +.br +Match "established" TCP connections: packets with +.B RST +or +.B ACK +set, and +.B SYN +clear. +.HP +.B fragments +.br +Match IP fragments. May not be specified on rules with layer 4 +matches. .RE .SH SEE ALSO .BR l2tpns (8)