* andrei tanase <[email protected]> [2011-04-20 19:05]: > i manage an 4.6 obsd router/firewall for a friend's company. it will > panic every 10-14 days, > even with GENERIC kernel. first fix was to schedule a reboot from > cron every week. > > i looked into this recently. vmstat -m shows huge usage for > pfruleitempl, about 100 > megabytes per day. looking into pf.c i see that space is requested > in pfruleitempl for every > packet that matches a rule but is not released if said packet does > not create a state. > > fix:
that code is entirely different these days, and I believe I hunted & fixed these cases in australia, early 2010. -- Henning Brauer, [email protected], [email protected] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting
