I'm not qualified to say anything about the other timeouts, but let me share a piece of advice regarding "tcp-established-timeout".
I suggest setting it to 7440 seconds (2 hours 4 minutes) at a minimum due to RFC 5382 (NAT Behavioral Requirements for TCP).
https://datatracker.ietf.org/doc/html/rfc5382#section-5
Quoting from it:
I suggest setting it to 7440 seconds (2 hours 4 minutes) at a minimum due to RFC 5382 (NAT Behavioral Requirements for TCP).
https://datatracker.ietf.org/doc/html/rfc5382#section-5
Quoting from it:
[...] Some end-hosts can be configured to send keep-alive packets on such idle connections; by default, such keep-alive packets are sent every 2 hours if enabled [RFC1122]. [...]
[...] In such cases, the value of the "established connection idle-timeout" MUST NOT be less than 2 hours 4 minutes. [...]
Statistics: Posted by yuripg1 — Thu Jan 30, 2025 7:16 pm