From owner-freebsd-questions@FreeBSD.ORG  Sun Aug 26 06:27:20 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 599EA16A41A
	for <freebsd-questions@freebsd.org>;
	Sun, 26 Aug 2007 06:27:20 +0000 (UTC)
	(envelope-from cyberleo@cyberleo.net)
Received: from pizzabox.cyberleo.net (alpha.cyberleo.net [198.145.45.10])
	by mx1.freebsd.org (Postfix) with ESMTP id 292E713C467
	for <freebsd-questions@freebsd.org>;
	Sun, 26 Aug 2007 06:27:19 +0000 (UTC)
	(envelope-from cyberleo@cyberleo.net)
Received: (qmail 67595 invoked from network); 26 Aug 2007 06:27:17 -0000
Received: from adsl-75-3-87-131.dsl.chcgil.sbcglobal.net (HELO ?172.16.44.14?)
	(cyberleo@cyberleo.net@75.3.87.131)
	by alpha.cyberleo.net with ESMTPA; 26 Aug 2007 06:27:17 -0000
Message-ID: <46D11D24.4070206@cyberleo.net>
Date: Sun, 26 Aug 2007 01:26:44 -0500
From: CyberLeo Kitsana <cyberleo@cyberleo.net>
User-Agent: Thunderbird 2.0.0.6 (X11/20070819)
MIME-Version: 1.0
To: Kevin Downey <redchin@gmail.com>
References: <20070826013636.GC25055@dan.emsphone.com>	<46d10500.1ebc720a.304c.1e2f@mx.google.com>
	<1d3ed48c0708252238u1f1adfdfpa69af42b5796c36b@mail.gmail.com>
In-Reply-To: <1d3ed48c0708252238u1f1adfdfpa69af42b5796c36b@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Cc: Dan Nelson <dnelson@allantgroup.com>, amin.scg@gmail.com,
	FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: How to block 200K ip addresses?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Aug 2007 06:27:20 -0000

Kevin Downey wrote:
> I would use the pf firewall, it has an option to file tables from a file like:
> 
> table <evil> persist file "/root/evil.txt"
> 
> kpd@zifnab /root% wc -l evil.txt
>   178438 evil.txt
> 
> so its not 300k lines but it takes seconds to load.

I attempted something similar with a digest of a PeerGuardian database
reworked with tableutil-0.6. The resultant file had 157,546 subnet
declarations in it.

When I attempted to populate a pf table with the file on 6.2-RELEASE, it
thought about it for a few seconds, then happily reported:

pfctl: Cannot allocate memory.

I never pared it down to see where the actual limit was for my hardware,
though, as a partial PeerGuardian list is pretty much useless.

-- 
Fuzzy love,
-CyberLeo
Technical Administrator
CyberLeo.Net Webhosting
http://www.CyberLeo.Net
<CyberLeo@CyberLeo.Net>

Furry Peace! - http://wwww.fur.com/peace/