Recentely, I used vyos as my lab test, inside located one linux box A , and outside I had one monitor box B.
I used B to monitor check A’s tcp port 22 and A’s service which located on tcp port 10066 if they were open.
But, after I used the command “show conntrack table ipv4 | count”, the number was 1,000 high.
Split the command output, I found there were lots of conn which about tcp port 10066
[code]TCP state codes: SS - SYN SENT, SR - SYN RECEIVED, ES - ESTABLISHED,
FW - FIN WAIT, CW - CLOSE WAIT, LA - LAST ACK,
TW - TIME WAIT, CL - CLOSE, LI - LISTEN
CONN ID Source Destination Protocol TIMEOUT
1030982176 18.104.22.168:51546 22.214.171.124:10066 tcp  ES 427177
886354880 126.96.36.199:37239 188.8.131.52:10066 tcp  ES 399787
992023328 184.108.40.206:36151 220.127.116.11:10066 tcp  ES 408034
973620928 18.104.22.168:54919 22.214.171.124:10066 tcp  ES 431600 [/code]
The last column was high, if that 427177 represent seconds, it was 5days long ago.
So, Any Idea to decrease the timeout value, If I can’t find someway to decrease the timeout > decrease the conntrack table, the memory that vyos used will high and vyos would not be stable.