Date: Tue, 31 Jul 2001 15:26:28 -0400 (EDT) From: Rob Simmons <rsimmons@wlcg.com> To: <freebsd-security@freebsd.org> Subject: ipfilter state tables Message-ID: <20010731151035.B11705-100000@mail.wlcg.com>
next in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 I noticed that the code around the IPSTATE_SIZE and IPSTATE_MAX constants in: src/contrib/ipfilter/ip_state.h src/sys/contrib/ipfilter/netinet/ip_state.h has changed and there was a line added to: src/contrib/ipfilter/HISTORY "allow state/nat table sizes to be externally influenced" I had suggested that a sysctl knob, or a kernel config file knob be added to control these. Does this mean that the knob exists? I looked in the man page for sysctl and did not see anything, nor did I see anything in LINT about it. Am I looking in the wrong place, or was that change just a preparation for adding the knob? Robert Simmons Systems Administrator http://www.wlcg.com/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7ZwZov8Bofna59hYRA03GAJ9ZvKVkrdo/NXwJfc1VT++2dtaGHACggIpc 9uQMgglQMZcI7FAzYHnKjnM= =/jwj -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010731151035.B11705-100000>