From owner-freebsd-questions@FreeBSD.ORG Wed May 31 20:35:32 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A329C16B951 for ; Wed, 31 May 2006 20:35:32 +0000 (UTC) (envelope-from ianchov@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.171]) by mx1.FreeBSD.org (Postfix) with ESMTP id EB50643D46 for ; Wed, 31 May 2006 20:35:31 +0000 (GMT) (envelope-from ianchov@gmail.com) Received: by ug-out-1314.google.com with SMTP id m3so45318uge for ; Wed, 31 May 2006 13:35:30 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=iVu/klpYCce1lQxaTgCNPt/V2giVrNq5Cdive58pIEGiVuvjXtwTaMouxt9MuxUulqZYlaG9lr21uCRP+/FlgShLbfHbL3SHFlWJ93hCkoYiJlTT/KJuoT8S/6uBnyeBt1sR8pxkZM3j9Xm1/XpgfdnlQfCw000PyDRDTXWnSO8= Received: by 10.78.47.9 with SMTP id u9mr43418huu; Wed, 31 May 2006 13:35:29 -0700 (PDT) Received: by 10.78.39.6 with HTTP; Wed, 31 May 2006 13:35:29 -0700 (PDT) Message-ID: <18e02bd30605311335j4f0baaffs62002d4b72c7715b@mail.gmail.com> Date: Wed, 31 May 2006 23:35:29 +0300 From: "Iantcho Vassilev" To: "FreeBSD Mailing List" In-Reply-To: <44ac8y1cfk.fsf@be-well.ilk.org> MIME-Version: 1.0 References: <18e02bd30605290545j1c9cceebwedc8d28bbf270e11@mail.gmail.com> <44ac8y1cfk.fsf@be-well.ilk.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: kern.ipc.somaxconn should be high for a PF firewall with a lot of states X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 May 2006 20:35:39 -0000 On 5/31/06, Lowell Gilbert wrote: > > "Iantcho Vassilev" writes: > > > kern.ipc.somaxconn is for handling more incoming connections,right? > > Well, kind of. It's a systemwide limit on the maximum number of > connections that a given socket can accept. > > > but > does > > firewall connections are considered incoming? > > No, not really. But the question doesn't really make sense. What are > you trying to do? I just wanted to know..Actually i have a very loaded firewall(PF) with a lot of states and i was wondering if this can help.. But if it is for sockets(something i have missed) then i will not help.. What can this variable help(mysql socket?)?