#!/bin/sh /etc/rc.common
# Copyright (C) 2006 OpenWrt.org 

DEFAULT_MAX_NF_CONNTRACK=131072
V300B_MAX_NF_CONNTRACK=100352

START=94
start() {
	[ -f /etc/sysctl.conf ] && sysctl -p >&-
	model=$(head -n 1 /etc/version)
	if [ "$model" = "Vigor300B" ] ;then
		echo "$V300B_MAX_NF_CONNTRACK" > /proc/sys/net/nf_conntrack_max
	else
		echo "$DEFAULT_MAX_NF_CONNTRACK" > /proc/sys/net/nf_conntrack_max
	fi
	
	#G39844: ICMP will not do NAT when using load balance rule with load balance pool case
	#Set ICMP timeout to 1 to expire the conntrack quickly
	sysctl -w net.netfilter.nf_conntrack_icmp_timeout=1 >/dev/null 2>/dev/null
	#Set CT timeout 3600 seconds
	sysctl -w net.netfilter.nf_conntrack_tcp_timeout_established=3600
}