From owner-freebsd-questions Mon Mar 24 11:42:31 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 349C137B401 for ; Mon, 24 Mar 2003 11:42:29 -0800 (PST) Received: from mail.gmx.net (pop.gmx.net [213.165.64.20]) by mx1.FreeBSD.org (Postfix) with SMTP id 00C7F43F85 for ; Mon, 24 Mar 2003 11:42:28 -0800 (PST) (envelope-from blueeskimo@gmx.net) Received: (qmail 4571 invoked by uid 0); 24 Mar 2003 19:42:26 -0000 Received: from i216-58-29-174.gta.igs.net (HELO ?216.58.29.174?) (216.58.29.174) by mail.gmx.net (mp021-rz3) with SMTP; 24 Mar 2003 19:42:26 -0000 Subject: Re: IPF misbehaves on prolonged TCP flood From: Adam To: freebsd-questions@freebsd.org In-Reply-To: <1048534429.15312.119.camel@jake> References: <1048534429.15312.119.camel@jake> Content-Type: text/plain Organization: Message-Id: <1048534937.15312.127.camel@jake> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.2.2 Date: 24 Mar 2003 14:42:17 -0500 Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=-25.8 required=5.0 tests=AWL,EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT, REFERENCES,REPLY_WITH_QUOTES,USER_AGENT_XIMIAN autolearn=ham version=2.50 X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 2003-03-24 at 14:33, Adam wrote: > I am running FreeBSD v4.7 on a Athlon 1600+ w/ 512mb RAM. I have > experienced on several occasions where a prolonged TCP flood causes me > to lose the ability to do DNS resolutions. Just to clarify: The problem persists for hours even after the flood has stopped. The *only* way (short of rebooting) that I've found to fix the problem is to rehash IPF: ipf -Fa -FS -vf /etc/ipf.rules -E -- Adam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message