Date: Thu, 7 Feb 2013 08:08:59 +0000 From: "Eggert, Lars" <lars@netapp.com> To: Matthew Luckie <mjl@luckie.org.nz> Cc: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org> Subject: Re: high cpu usage on natd / dhcpd Message-ID: <D4D47BCFFE5A004F95D707546AC0D7E91F6EB387@SACEXCMBX01-PRD.hq.netapp.com> In-Reply-To: <510A87B8.7000705@luckie.org.nz> References: <D4D47BCFFE5A004F95D707546AC0D7E91F6B79D2@SACEXCMBX01-PRD.hq.netapp.com> <510A87B8.7000705@luckie.org.nz>
next in thread | previous in thread | raw e-mail | index | archive | help
On Jan 31, 2013, at 16:03, Matthew Luckie <mjl@luckie.org.nz> wrote: >=20 > 00510 allow ip from me to not me out via em1 > 00550 divert 8668 ip from any to any via em1 >=20 > Rule 510 fixes it. Yep, it does. Can I ask someone to commit this to rc.firewall? (And I wonder if the rules for the ipfw kernel firewall need a similar addi= tion, because the system locks up under heavy network load if I use that in= stead of natd.) Lars
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?D4D47BCFFE5A004F95D707546AC0D7E91F6EB387>