Date: Sat, 9 Feb 2002 09:22:01 -0800 From: Ben Lovett <blovett@bsdguru.com> To: stable@freebsd.org Subject: Re: IPF dropping packets randomly Message-ID: <20020209092201.A64202@bsdguru.com> In-Reply-To: <3C64B5D9.1060306@rshb.com.ru>; from admin@rshb.com.ru on Sat, Feb 09, 2002 at 11:38:33AM %2B0600 References: <20020208100752.A13206@bsdguru.com> <3C64B5D9.1060306@rshb.com.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
I believe Evgueni V. Gavrilov (admin@rshb.com.ru) scribbled this: > Ben Lovett wrote: > > >I have made my ruleset available at > >http://www.tilderoot.com/~blovett/laptop/ipf.rules > > > ipmon's log would be fine > > -- > VAMPIRO-RIPN After doing some more looking around, I discovered that my state table was full at those points in time. I also find it peculiar that connections to, for example, a IRC server after being closed are set to a TTL of 1 minute, while SSH sessions disappear from the state listing entirely, only to time out 2 hours later (or so it appears). Once a connection is closed, how does IPF determine how long to leave an entry in the state table for? Is it based on the TTL of a packet finalizing the close of the connection? TIA -- Ben Lovett <blovett@bsdguru.com> -------------------------------------------------------------------------- There's no place like ~ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020209092201.A64202>