Two other W2k (maybe XP/W2k3?) registry keys worth noting -- mostly
because they're not as popular as the above:
HKLM\Services\CCC\Tcp\Parameters
DWORD value TcpMaxConnectResponseRetransmissions
Mess with this to alter the number of SYN-ACK retries. Dropping this to
2 or 1 will also clear out half-open connects faster (albeit with a
connectivity penalty for your more unstable networks).
HKLM\Services\CCC\Tcp\Parameters\Interfaces\interface-name
DWORD value TcpInitialRTT
Change this to alter the SYN-ACK retransmisison timeouts. More of a
pain, though, since this must be set per interface.
--
"It's okay to yell 'fire' in a crowded theater
if the theater is actually on fire."
Tod Beardsley | www.planb-security.net
Protect your network against hackers, viruses, spam and other risks with
Astaro Security Linux, the comprehensive security solution that combines six
applications in one software solution for ease of use and lower total cost
of ownership.
Download your free trial at
http://www.securityfocus.com/sponsor/Astaro_focus-ms_040301
------------------------------------------------------------------------
---
> HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\TcpWindowSize
> HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DefaultTTL
> HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DefaultTOS
> HKLM\System\CurrentControlSet\Services\Tcpip\Parameters> EnablePMTUBHDetect
Two other W2k (maybe XP/W2k3?) registry keys worth noting -- mostly
because they're not as popular as the above:
HKLM\Services\CCC\Tcp\Parameters
DWORD value TcpMaxConnectResponseRetransmissions
Mess with this to alter the number of SYN-ACK retries. Dropping this to
2 or 1 will also clear out half-open connects faster (albeit with a
connectivity penalty for your more unstable networks).
HKLM\Services\CCC\Tcp\Parameters\Interfaces\interface-name
DWORD value TcpInitialRTT
Change this to alter the SYN-ACK retransmisison timeouts. More of a
pain, though, since this must be set per interface.
--
"It's okay to yell 'fire' in a crowded theater
if the theater is actually on fire."
Tod Beardsley | www.planb-security.net
------------------------------------------------------------------------
---
Free 30-day trial: firewall with virus/spam protection, URL filtering, VPN,
wireless security
Protect your network against hackers, viruses, spam and other risks with
Astaro Security Linux, the comprehensive security solution that combines six
applications in one software solution for ease of use and lower total cost
of ownership.
Download your free trial at
http://www.securityfocus.com/sponsor/Astaro_focus-ms_040301
------------------------------------------------------------------------
---
[ reply ]