On Mon, Jul 21, 2008 at 10:53:23AM -0600, Daniel Melameth wrote:
> On Mon, Jul 21, 2008 at 10:39 AM, Joe Warren-Meeks <[EMAIL PROTECTED]> wrote:
> > The default limit for number of states is quite low. Try adding the
> > following to pf.conf and running pfctl -vf /etc/pf.conf
> > "
> > set limit { states 5000, frags 5000, src-nodes 5000 }
> > "
> >
> > You can up the values if they are too low.
> >
> > Use "pfctl -s info" to view how many entries there are in the state
> > table beforehand and compare it to afterwards.
>
> FWIW, the default state and src-nodes limit is twice what you have above.
Oops you are right :-) That was meant to be 50000, not 5000. I have mine
set to 500,000, as we have loads of ram and a load of busy sites.
-- joe.
It'll cost you many a shilling.
