As it stands, on a system with almost no network traffic,
natd climbs to about 95% CPU, latency through the firewall
quadruples, and killing and restarting natd always cures
the problem.
I'd like to find a better way, but as it stands it needs
to be restarted about every 10 hours or so. Any ins
I am running 4.7 on a firewall, with an extremely simple nat
setup -- not all packets are passed through nat, as some services
such as ntp and dnswall are handled on the firewall -- but
for those packets that are nat'd, there are only static (redirect_address)
rules.
What happens is that, over ti
