From owner-freebsd-net@FreeBSD.ORG  Mon Sep 19 00:41:00 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 996F216A41F
	for <freebsd-net@freebsd.org>; Mon, 19 Sep 2005 00:41:00 +0000 (GMT)
	(envelope-from andre@netvision.com.br)
Received: from mx.netvision.com.br (mx12.netvision.com.br [200.247.230.249])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E6EE143D46
	for <freebsd-net@freebsd.org>; Mon, 19 Sep 2005 00:40:58 +0000 (GMT)
	(envelope-from andre@netvision.com.br)
Received: from localhost (localhost [127.0.0.1])
	by mailer.netvision.com.br (Postfix) with ESMTP id 1645620D9E7
	for <freebsd-net@freebsd.org>; Sun, 18 Sep 2005 21:40:57 -0300 (BRT)
Received: from mail.server.home (unknown [201.2.208.213])
	by mx.netvision.com.br (Postfix) with ESMTP id 7D8771F80FB
	for <freebsd-net@freebsd.org>; Sun, 18 Sep 2005 21:40:56 -0300 (BRT)
Received: from [192.168.7.3] (unknown [192.168.7.3])
	by mail.server.home (Postfix) with ESMTP id A2B3A6215
	for <freebsd-net@freebsd.org>; Sun, 18 Sep 2005 21:46:08 -0300 (BRT)
Message-ID: <432E0908.8030101@netvision.com.br>
Date: Sun, 18 Sep 2005 21:40:40 -0300
From: Andre <andre@netvision.com.br>
User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: amavisd-new at netvision.com.br
Subject: PF and "set limit src-nodes" error.
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Sep 2005 00:41:00 -0000


I can't set 'limit src-nodes' with pfctl on a FreeBSD 5.4-RELEASE 
system. This is the error I get:

# echo "set limit src-nodes 1000" | pfctl -f -
pfctl: DIOCSETLIMIT: Invalid argument

I'm able to set 'states' and 'frags' just fine:

# echo "set limit { states 50000, frags 2000 }" | pfctl -f -

Since 'limit src-nodes' is documented in the pf.conf(5) man page, my 
guess is I'm missing something in the kernel configuration. I'm running 
GENERIC with the following additions:

device          pf
device          pflog
device          pfsync

Anything else I should have put in there?