Date: Thu, 23 Mar 2006 06:01:17 -0600
From: "Travis H." <solinym@gmail.com>
To: "Daniel Hartmeier" <daniel@benzedrine.cx>
Cc: Volker <volker@vwsoft.com>, freebsd-pf@freebsd.org
Subject: Re: {Spam?} no buffer space available
Message-ID: <d4f1333a0603230401g2cf39705j1ff7466954791628@mail.gmail.com>
In-Reply-To: <20060323094654.GD25046@insomnia.benzedrine.cx>
References: <44216734.2060101@vwsoft.com> <20060323094654.GD25046@insomnia.benzedrine.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
On 3/23/06, Daniel Hartmeier <daniel@benzedrine.cx> wrote: > If it were an mbuf leak, it wouldn't go away right after you run pfctl > -d, as disabling pf will not cause any memory to get released at all. > > You might simply be hitting the (default) 10,000 state entry limit, > check pfctl -si output. If so, increase it with 'set limit states'. I've deliberately set my state table to be small, thinking it would use less mbufs, and that didn't help. I'll try setting it high soon.=20 I did recover the box by flushing all pf stuff, but it didn't stay working for very long. -- Security Guru for Hire http://www.lightconsulting.com/~travis/ -><- GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d4f1333a0603230401g2cf39705j1ff7466954791628>