[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: States

To: Bryan Irvine <sparctacus@gmail.com>
Subject: Re: States
From: Daniel Hamlin <hamlin@rose-hulman.edu>
Date: Fri, 19 Nov 2004 14:58:53 -0500
Cc: misc@openbsd.org
References: <1100863939.1103.47.camel@open13.openwired.net> <53d7063004111911247dbdc74a@mail.gmail.com>

According to pfvar.h, and the FAQ
http://www.openbsd.org/faq/pf/options.html , the default maximum number
of states is 10000.  Sounds like your state table is full.  The limit
can be changed with "set limit states <some number>" in your pf.conf, or
you may want to troubleshoot why you have that number of states in use. 
For example, if my desktop, which does very little Internet traffic,
suddenly has 10000 states open, I better figure out why.

On Fri, 2004-11-19 at 14:24, Bryan Irvine wrote:
> well I seem to have the limit a few times.  My firewall seems to stop
> routing when pftop says 10,000.  I dunno if that's jsut a pftop thing,
> and the states are really much higher or what.
> 
> I just know that I'm in trouble if pftop says 10,000 :-)
> 
> --Bryan
> 
> 
> On 19 Nov 2004 12:32:19 +0100, Sergi Toledo <sergi.toledo@openwired.net> wrote:
> > Hi
> > I've been looking for the maximum number of states that pf is able to
> > handle, but I can't find the correct .c or .h file. Which one is it?
> > I suppose these states are stored in memory. Am I wrong?
> > Thanks in advance
> > Sergio

References:
- States
  - From: Sergi Toledo <sergi.toledo@openwired.net>
- Re: States
  - From: Bryan Irvine <sparctacus@gmail.com>

Prev by Date: Re: New unofficial document - oamp.pdf
Next by Date: Re: States
Prev by thread: Re: States
Next by thread: Re: States
Index(es):
- Date
- Thread