Date: Fri, 22 Apr 2016 23:43:29 -0700 (MST) From: samira <nazari.s11@gmail.com> To: freebsd-pf@freebsd.org Subject: Whether pf generates " No buffer space available " error ? Message-ID: <1461393809421-6093660.post@n5.nabble.com>
next in thread | raw e-mail | index | archive | help
Hi everyone, I using FreeBSD9.2 and defining a rule in ipfw that divert tcp packets on port 80 to port 8000 and by suricata will be reviewed. ipfw list: 01901 divert 8000 tcp from any to any dst-port 80 And then the packets is sent by altq to queue defined ipfw list: 03009 skipto 3011 tcp from any to any dst-port 80 03010 skipto 3012 ip from any to any 03011 allow altq http-gbeth3-out ip from any to any via gbeth3 out And we limit bandwidth in pf.conf for http traffic pf.conf: queue http-gbeth3-out bandwidth 50Kb hfsc ( upperlimit 50Kb ) When the transmission of huge amounts of http packets and pf action is to drop packets, suricata crash and the following message appears in the suricata.log file: <Warning> - [ERRCODE: SC_WARN_IPFW_XMIT(84)] - Write to ipfw divert socket failed: No buffer space available Has anyone dealt with this issue? There is a similar problem: By sending ICMP packets to the queue and send ping from the interface also seen this problem and the following message is displayed: ping: sendto: No buffer space available If the specified bandwidth increased and not drop any packets, this problem does not occur. Thank you for all of your comments and help. -- View this message in context: http://freebsd.1045724.n5.nabble.com/Whether-pf-generates-No-buffer-space-available-error-tp6093660.html Sent from the freebsd-pf mailing list archive at Nabble.com.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1461393809421-6093660.post>