On 3/23/06, Daniel Hartmeier <[EMAIL PROTECTED]> wrote: > If it were an mbuf leak, it wouldn't go away right after you run pfctl > -d, as disabling pf will not cause any memory to get released at all. > > You might simply be hitting the (default) 10,000 state entry limit, > check pfctl -si output. If so, increase it with 'set limit states'.
I've deliberately set my state table to be small, thinking it would use less mbufs, and that didn't help. I'll try setting it high soon. I did recover the box by flushing all pf stuff, but it didn't stay working for very long. -- Security Guru for Hire http://www.lightconsulting.com/~travis/ -><- GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484 _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
