From owner-freebsd-pf@FreeBSD.ORG  Fri Sep  6 08:30:40 2013
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 7E200491
 for <freebsd-pf@freebsd.org>; Fri,  6 Sep 2013 08:30:40 +0000 (UTC)
 (envelope-from patfbsd@davenulle.org)
Received: from smtp.lamaiziere.net (net.lamaiziere.net [94.23.254.147])
 by mx1.freebsd.org (Postfix) with ESMTP id 47B1527C5
 for <freebsd-pf@freebsd.org>; Fri,  6 Sep 2013 08:30:39 +0000 (UTC)
Received: from mr129166.localdomain (mr129166.cri.univ-rennes1.fr
 [129.20.129.166])
 by smtp.lamaiziere.net (Postfix) with ESMTPA id C7520A52E;
 Fri,  6 Sep 2013 10:21:04 +0200 (CEST)
Received: from mr129166 (localhost [127.0.0.1])
 by mr129166.localdomain (Postfix) with ESMTP id 3BF95A46;
 Fri,  6 Sep 2013 10:21:04 +0200 (CEST)
Date: Fri, 6 Sep 2013 10:21:03 +0200
From: Patrick Lamaiziere <patfbsd@davenulle.org>
To: Lisa Muir <34.24.34@gmail.com>
Subject: Re: pf -v- cached imap connections in Thunderbird on windows
Message-ID: <20130906102103.6327c323@mr129166>
In-Reply-To: <CACX=3hOTvzrFn3yVt2AceWmKUC+OwtAkLUxJpK2TimJwsDSs0Q@mail.gmail.com>
References: <CACX=3hOTvzrFn3yVt2AceWmKUC+OwtAkLUxJpK2TimJwsDSs0Q@mail.gmail.com>
X-Mailer: Claws Mail 3.9.2 (GTK+ 2.24.19; amd64-portbld-freebsd9.1)
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Cc: freebsd-pf@freebsd.org
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
 \(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Sep 2013 08:30:40 -0000

Le Fri, 6 Sep 2013 00:49:50 +0100,
Lisa Muir <34.24.34@gmail.com> a écrit :

Hello,

> I believe that PF has killed the cached connection, and when TB tries
> to talk through it, it patiently wait for an answer.
> 
> I've looked at the
> set timeout option value
> directive for pf, but cannot determind it is what I want.

Do not change this if you don't know. Instead check the number of
states, and increase it. By default the time-out is auto-adaptive and is
decreased when the number of free states is low.

# pfctl -sinfo  
Interface Stats for all               IPv4             IPv6
  Bytes In                  23874479976647        412340231
...

State Table                          Total             Rate
  current entries                   191268    <=====

# pfctl -smem
states        hard limit  1000000
src-nodes     hard limit    10000
frags         hard limit     1536
tables        hard limit     1000
table-entries hard limit   200000

(1,000,000 of states limit here)