On 3/23/06, Daniel Hartmeier <[EMAIL PROTECTED]> wrote:
> If it were an mbuf leak, it wouldn't go away right after you run pfctl
> -d, as disabling pf will not cause any memory to get released at all.
>
> You might simply be hitting the (default) 10,000 state entry limit,
> check pfctl -si output. If so, increase it with 'set limit states'.

I've deliberately set my state table to be small, thinking it would
use less mbufs, and that didn't help.  I'll try setting it high soon. 
I did recover the box by flushing all pf stuff, but it didn't stay
working for very long.
--
Security Guru for Hire http://www.lightconsulting.com/~travis/ -><-
GPG fingerprint: 9D3F 395A DAC5 5CCC 9066  151D 0A6B 4098 0C55 1484
_______________________________________________
freebsd-pf@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to