Date: Thu, 27 Sep 2007 09:25:16 -0400 From: Chris Marlatt <cmarlatt@rxsec.com> To: David Verzolla <dverzolla@fcl.com.br> Cc: freebsd-pf@freebsd.org Subject: Re: RES: Trouble with PF Message-ID: <46FBAF3C.207@rxsec.com> In-Reply-To: <94CADB570ACCB0418E8236C8F24BD95C015FB4B1@VIRTUALEXCHANGE.corp.com> References: <94CADB570ACCB0418E8236C8F24BD95C015FB4B1@VIRTUALEXCHANGE.corp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
David Verzolla wrote:
> Hi,
> The limit of the states was reached.
>
> "set limit { states 70000, frags 5000 }": solves my problem.
>
> Have anyone that has a number higher then 100000?
>
> Regards,
>
> David
>
One of the firewalls I maintain averages at ~420k without issue or
special memory tuning and during a D/DoS I've had others go up as high
as 1.8 million, though you do need to tune your memory settings to get
more than a million.
Regards,
Chris
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?46FBAF3C.207>