Hi, I'm using OpenBSD 3.7 with pf and bridge enabled for a transparent proxy, and I'm having some packet loss somewhere in this bridge, since netstat -ni doesn't give me any ierrors i'm beginning to check PF setup, this machine has about 30k packets/s, my question is: how can i see if pf is ok with this load on this machine? my top always give me 100% cpu idle, and the load is about 0.2 all the time, even lower, this numbers give me the impression that the OS is handling ok this load, am i correct? Almost all my pf rules have quick enabled, but i'm not using state in some rules, can this slow down the pf? and what's the maximum state limit?
>From pfctl -si: State Table Total Rate current entries 18742 searches 11530417733 31440.2/s inserts 45210381 123.3/s removals 45191639 123.2/s Counters match 10195515829 27800.3/s If need ask me and i will provide the dmesg output from this machine. Thanks in advance, Vinicius
