From owner-freebsd-net@FreeBSD.ORG Tue Feb 5 09:46:44 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 200A016A4EB for ; Tue, 5 Feb 2008 09:46:44 +0000 (UTC) (envelope-from rihad@mail.ru) Received: from mx4.mail.ru (fallback.mail.ru [194.67.57.14]) by mx1.freebsd.org (Postfix) with ESMTP id D8B8F13C4D1 for ; Tue, 5 Feb 2008 09:46:43 +0000 (UTC) (envelope-from rihad@mail.ru) Received: from mx38.mail.ru (mx38.mail.ru [194.67.23.16]) by mx4.mail.ru (mPOP.Fallback_MX) with ESMTP id 15BE594108 for ; Mon, 4 Feb 2008 19:00:44 +0300 (MSK) Received: from [217.25.27.27] (port=37127 helo=[217.25.27.27]) by mx38.mail.ru with esmtp id 1JM3kP-000CfQ-00 for freebsd-net@freebsd.org; Mon, 04 Feb 2008 19:00:41 +0300 Message-ID: <47A736A9.90603@mail.ru> Date: Mon, 04 Feb 2008 20:00:41 +0400 From: rihad User-Agent: Icedove 1.5.0.14pre (X11/20071018) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Spam: Not detected Subject: dummynet.expire q'n X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Feb 2008 09:46:44 -0000 Hi, From FreeBSD 7.0's ipfw manual: net.inet.ip.dummynet.expire: 1 Lazily delete dynamic pipes/queue once they have no pending traf- fic. You can disable this by setting the variable to 0, in which case the pipes/queues will only be deleted when the threshold is reached. Can a kernel guru enlighten me if there's any risk of a pipe going away from under your feet when an existing firewall rule is using it, resulting in a dead link where no traffic can be passed? As I don't really know how "lazy deletion" works, It's very important this never happens, so I've set this to 0 just to be safe, but the pipe count is growing! # ipfw pipe show | wc -l 229 with only 60 or so active ipfw pipe rules that triggered pipe creation. It seems that deleting an ipfw pipe rule will not delete the pipe behind it when net.inet.ip.dummynet.expire is 0? OTOH, won't setting it to 1 make pipes suddenly disappear by whatever "lazy deletion" means? Thanks.