Date: Wed, 18 May 2011 15:34:49 +0300 From: =?ISO-8859-1?Q?Richard_Brend=F6rfer?= <neamtu@gmail.com> To: "quentin.narvor" <quentin.narvor@ensi-bourges.fr> Cc: freebsd-pf@freebsd.org Subject: Re: Large table issue Message-ID: <BANLkTik_V1%2BzWk%2BeU64ecK3sVOhTq2h-dw@mail.gmail.com> In-Reply-To: <390946c3b25ae3d887574555a494cb42@ensi-bourges.fr> References: <390946c3b25ae3d887574555a494cb42@ensi-bourges.fr>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, try with *set limit table-entries number* in pf.vonf or split you table in 2 or 3 tables. On Wed, May 18, 2011 at 2:03 PM, quentin.narvor < quentin.narvor@ensi-bourges.fr> wrote: > I am trying to detect problems on hosts in my network : I want to detect > when a communication occurs with a compromised host. > I have built a blacklist which holds near 2 millions ip (spam, malware.... > hosts). > > But I can't load it into pf, I get this when I try : > > /etc/pf.conf:6: cannot define table bl: Cannot allocate memory > pfctl: Syntax error in config file: pf rules not loaded > > I suspect there is a memory limitation somewhere (in the kernel ??) which > prevent me from loading the table but I am not very comfortable with kernel > variables. > I have already try modifying kern.maxssiz and kern.dflsiz without success. > > Any idea? > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BANLkTik_V1%2BzWk%2BeU64ecK3sVOhTq2h-dw>