On Mon, Feb 22, 2010 at 10:40:29PM +0100, Michael Lechtermann wrote: > >>> it's a slightly weird side-effect. a quick glance indicates that the > >>> tzero timestamp is part of the stats struct and tables don't keep > >>> stats/counters by default any more. for some time tho. i don't > >>> remember any recent changes to the table code (as if anybody wanted to > >>> touch that mess) > >> "by default", does that mean it is possible to somehow keep the > >> stats/counters with a configuration option and have it work again? > > > > Add 'counters' to the table definition. > > That didn't fix it. The stats are shown now, but the dates are still > jumping around. :-(
'pfctl -t tablename -T expire NNNN' is also currently broken. Everything appears to be removed from the table immediately regardless of 'NNNN'. $ sudo cat /etc/pf.conf table <testing> persist counters $ sudo pfctl -vv -t testing -T add 172.16.1.8 172.16.1.9 2/2 addresses added. A 172.16.1.8 A 172.16.1.9 $ sudo pfctl -vv -t testing -T expire 7200 2/2 addresses expired. D 172.16.1.8 D 172.16.1.9
