Date: Sat, 9 Dec 2006 21:06:09 +0300 (MSK) From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: adrenalinup@gmail.com Cc: freebsd-stable@freebsd.org Subject: Re: [ipfw] Dynamic rules grow indefinitely.. Message-ID: <457AFB11.000008.22473@colgate.yandex.ru> In-Reply-To: <f027bef40612090759t77b620al6973e372c4bd0d09@mail.gmail.com> References: <f027bef40612090759t77b620al6973e372c4bd0d09@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>It is a web server with ~130req/s, problems seem to start after >upgrading to a new hardware. >FreeBSD 6.1-RELEASE-p10 Can you show your /var/run/dmesg.boot, and output of `pciconf -lv` and ifconfig? >After a hour it will grow more and more.. The day before yesterday I >got 20 000 dynamic rules ;o) (I was forced to increase >net.inet.ip.fw.dyn_max because I start to got errors in syslogs). Try this: # sysctl -w net.inet.ip.fw.dyn_keepalive=0 -- WBR, Andrey V. Elsukov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?457AFB11.000008.22473>