Date: Mon, 29 Oct 2001 01:25:18 +0100 From: Bernd Walter <ticso@cicely8.cicely.de> To: David Kirchner <davidk@accretivetg.com> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: disabling dynamic route addition Message-ID: <20011029012518.C49388@cicely8.cicely.de> In-Reply-To: <20011028114328.C35308-100000@localhost> References: <20011028114328.C35308-100000@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Oct 28, 2001 at 11:47:16AM -0800, David Kirchner wrote: > Hi, > > Is there currently a way (sysctl, patch?) to disable dynamic route I asume your "dynamic" routes are simple redirects. sysctl -w net.inet.icmp.drop_redirect=1 or in /etc/rc.conf: icmp_drop_redirect="YES" Or get a better routing table in the first place. > addition? We have a few very busy web servers here, and we're running in > to a bug in FreeBSD 4.2 (which is related to a bug in previous versions of > FreeBSD - the one that's fixed by lowering net.inet.ip.rtexpire to 10 from > 3600) where the dynamic route table grows but never flushes completely. > Here it is just as it hit the buffer space limit, according to vmstat -m: What does netstat tells you about the expire time for these routes? How are they flagged? -- B.Walter COSMO-Project http://www.cosmo-project.de ticso@cicely.de Usergroup info@cosmo-project.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011029012518.C49388>