Date: Tue, 18 Oct 2011 20:25:49 +0200 From: Florian Smeets <flo@FreeBSD.org> To: Florian Wilkemeyer <fw@f-ws.de> Cc: freebsd-pf@FreeBSD.org Subject: Re: PF NAT issue with 9.0-BETA3 and RELENG_9 'head' Message-ID: <4E9DC4AD.2040103@FreeBSD.org> In-Reply-To: <CA%2BLSPrie-KoL8t3S=ia_KNA427GgHa_6NESwcJE_ic4085rMew@mail.gmail.com> References: <CA%2BLSPrie-KoL8t3S=ia_KNA427GgHa_6NESwcJE_ic4085rMew@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 18.10.11 18:44, Florian Wilkemeyer wrote: > Hello, > > i recently switched a router in our test-environment to FreeBSD 9.0-Beta3 > (and after things didnt worked ... checked out the current RELENG_9 > and recompiled kernel& world .. ) > > > > Problem: > After 5 - 15 minutes NAT stops working (normal routing still works.) > > Network Utilization: about 40 MByte/second, which gets routed > only a few kbit/s are getting natted (NTP Syncs and such ... ) > > When i took a look on the nat rules (via pfctl -vv -s nat) > the rules gets evaluated; but nothing matches anymore... > > State Table helds about 9500 Entrys, > Source Tracking Table about 300 > Hi, i guess you have pf compiled into your kernel? Try to use the module, that should be a workaround. This is a known problem and people are working on it. HTH, Florian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4E9DC4AD.2040103>