Lines Matching +full:non +full:- +full:default

3 .\" Copyright (c) 2010-2011 The FreeBSD Foundation
50 protocol provides reliable, flow-controlled, two-way
52 It is a byte-stream protocol used to
58 Internet address format and, in addition, provides a per-host
75 By default,
119 .Bl -tag -width ".Dv TCP_FUNCTION_BLK"
122 by passing the read-only option
136 bandwidth-controlled window space.
161 For passively-created sockets, the
167 but that fall back to using a non-TFO
174 pre-shared key (PSK) mode of operation in which the TFO server requires the
184 requires the client-supplied cookie to equal
185 .Bd -literal -offset left
186 SipHash24(key=\fI16-byte-psk\fP, msg=\fIcookie-sent-to-client\fP)
189 Multiple concurrent valid pre-shared keys are supported so that time-based
191 The default number of concurrent pre-shared keys is 2.
205 To list the default TCP stack, see
213 option accepts a per-socket timeout argument of
215 in seconds, for new, non-established
218 For the global default in milliseconds see
234 For the global default in milliseconds see
244 to set the per-socket interval, in seconds, between keepalive probes sent
249 For the global default in milliseconds see
259 and allows a per-socket tuning of the number of probes sent, with no response,
264 For the global default see the
284 By default, a sender- and
285 .No receiver- Ns Tn TCP
297 to set the per-socket interval, in seconds, in which the connection must
301 stack will terminate the connection with a reset. Note that the default
313 option use on a per-connection basis.
316 .No sender- Ns Tn TCP
324 When this option is set to a non-zero value,
329 This option enables the use of MD5 digests (also known as TCP-MD5)
343 administrator to add a tcp-md5 key entry to the system's security
347 This entry can only be specified on a per-host basis at this time.
351 However, during connection negotiation, a non-signed segment will be accepted if
353 When a non-signed segment is accepted, the established connection is not
362 Enable in-kernel Transport Layer Security (TLS) for data written to this
374 Enable in-kernel TLS for data read from this socket.
384 .Bl -tag -width "Dv TCP_REUSPORT_LB_NUMA"
415 Incoming connection requests that are source-routed are noted,
418 The default congestion control algorithm for
434 .Bl -tag -width ".Va v6pmtud_blackhole_mss"
484 (default is true).
495 .Bl -tag -compact
504 (default)
529 When non-zero, all client-supplied TFO cookies will be considered to be valid.
530 The default is 0.
534 are non-zero, a new key will be automatically generated after this specified
536 The default is 120.
539 The default value can be tuned with the
547 Read-only.
556 Read-only.
563 The default is 0.
566 Read-only.
569 Read-only,
571 The maximum number of pre-shared keys supported.
572 Read-only.
575 Read-only.
577 The current number of pre-shared keys installed.
578 Read-only.
583 will be forced to be non-TFO for this many seconds.
588 The default is
591 When non-zero, pre-shared key (PSK) mode is enabled for all TFO servers.
592 On the transition from enabled to disabled, all installed pre-shared keys are
594 The default is 0.
597 On the transition from enabled to disabled, all installed keys and pre-shared
601 is non-zero and there are no keys installed, a new key will be generated
605 The default is 0.
611 Install a new pre-shared key by writing
624 The default TCP function block (TCP stack).
648 .Bl -tag -compact
652 Enable the host cache. (default)
672 Any non-zero setting will be reset to zero, once the purge
674 .Bl -tag -compact
676 Do not purge all entries when pruning the host cache (default).
689 .Tn SYN-SENT
693 The default value is 10 as suggested by RFC 6928.
699 Start with small values for lower-capacity links.
704 Default is false.
707 Default is false.
710 Default is false.
714 By default, this variable is set to zero, indicating that
722 The default is 8 packets.
726 The default is 7200000 msec (7.2M msec, 2 hours).
728 Timeout, in milliseconds, for new, non-established
731 The default is 75000 msec (75K msec, 75 sec).
737 The default is 75000 msec (75K msec, 75 sec).
748 (default is 0, i.e., the logging is disabled).
755 The default value used for the TCP Maximum Segment Size
762 That prevents self-inflicted packet losses once the application starts to
773 (read-only).
775 Controls the default collection of statistics for all connections using the
781 A CSV list of template_spec=percent key-value pairs which controls the per
799 the MSS will be set to the default values
805 .Bl -tag -compact
821 By default, the system chooses a limit based on each TCP connection's
824 the system-calculated automatic limit and the user-specified
841 segment is lost (default and maximum is 12).
852 (smoothed round-trip time)
864 For this reason, we use 200ms of slop and a near-0
870 (default is 1).
872 .Bl -tag -compact
887 Enable support for RFC 3390, which allows for a variable-sized
891 particularly affects short transfers and high-bandwidth large
892 propagation-delay connections.
907 Enable Lost Retransmission Detection for SACK-enabled sessions, enabled by
908 default.
910 mandatory Retransmission Timeout (RTO), followed by slow-start.
911 LRD will try to resend the repeatedly lost packet, preventing the time-consuming
912 RTO and performance reducing slow-start or purge of the SACK scoreboard.
917 Enables three updated mechanisms from RFC6675 (default is true).
926 SACKed - even if no traditional duplicate ACKs were observed.
949 .Tn SYN-ACK
954 flood attacks, and are enabled by default.
963 control-block hash table
964 (read-only).
981 Therefore the default is 1, i.e., the missing of timestamps is tolerated.
985 Default is to use per connection offsets as recommended in RFC 7323.
993 The default is 8.
997 The default is 0.
999 The default value used for the TCP Maximum Segment Size
1009 .Bl -tag -width Er
1091 .%T "Improving TCP's Robustness to Blind In-Window Attacks"