Date: Fri, 16 Apr 2021 22:38:45 -0400 From: Paul Procacci <pprocacci@gmail.com> To: Doug Hardie <bc979@lafn.org> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: pf Performance question Message-ID: <CAFbbPui3zPUchCR_RmXJiK%2BCr4ygG38s3PpkefyEquVoQW8Jpg@mail.gmail.com> In-Reply-To: <DD4265BE-F891-43BB-9EC7-7C3B6705C132@sermon-archive.info> References: <DD4265BE-F891-43BB-9EC7-7C3B6705C132@sermon-archive.info>
next in thread | previous in thread | raw e-mail | index | archive | help
Honestly, if it's a single udp packet every second you have nothing to worry about ... unless you're running hardware maybe from the 80's. ;) On Fri, Apr 16, 2021 at 9:51 PM Doug Hardie <bc979@lafn.org> wrote: > I have several devices that emit udp packets to a specific port every > second. Unfortunately, they cannot terminate that. However, on my systems > they show up in pftop and netstat. Currently I have them ignored in pf. > They create state entries, but there is nothing listening to that port. > Will it use less CPU if I put a pf drop statement for that port? > > -- Doug > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > -- __________________ :(){ :|:& };:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFbbPui3zPUchCR_RmXJiK%2BCr4ygG38s3PpkefyEquVoQW8Jpg>