Date: Fri, 10 Sep 2004 15:51:48 -0400 From: "Don Bowman" <don@sandvine.com> To: "Glenn Dawson" <glenn@antimatter.net>, <freebsd-net@freebsd.org> Subject: RE: dyn buckets Message-ID: <A8535F8D62F3644997E91F4F66E341FC58726F@exchange.sandvine.com>
next in thread | raw e-mail | index | archive | help
From: owner-freebsd-net@freebsd.org > I have a firewall running 4.10 that handles around > 20mbits/sec of traffic > and has around 500 ipfw rules. > > Lately I've noticed that net.inet.ip.fw.curr_dyn_buckets > seems to be maxing > out. I've increased net.inet.ip.fw.dyn_buckets a few times, > but they seem > to max out each time. > > Is there any problem with increasing > net.inet.ip.fw.dyn_buckets far beyond > the default? (I'm at 2048 now) I use net.inet.ip.fw.dyn_buckets=16384 net.inet.ip.fw.dyn_syn_lifetime=5 net.inet.ip.fw.dyn_max=32000
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?A8535F8D62F3644997E91F4F66E341FC58726F>