Date: Tue, 13 Oct 2020 11:17:28 +0200 From: Robert Schulze <rs@bytecamp.net> To: freebsd-stable@freebsd.org Subject: Re: pf and hnX interfaces Message-ID: <e0a08602-490d-f3da-fae3-19c5b5b03bde@bytecamp.net> In-Reply-To: <7166d87e-7547-6be8-42a7-b0957ca4f543@norma.perm.ru> References: <7166d87e-7547-6be8-42a7-b0957ca4f543@norma.perm.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Am 13.10.20 um 10:58 schrieb Eugene M. Zheganin: > > And the most mysterious partš - when I switch the pf off, the errors > stops to appear. This would clearly mean that pf blocks some packets, > but then again, this way the pflog0 would show them up, right (and yes - > it's "UP" )? maybe you run into state limits? Try pfctl -si and look into the value for "memory". If this is greater than 0, you have exausted the global state limit some time. "PF states limit reached" is also logged in the system message buffer, then. regards, Robert Schulze
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e0a08602-490d-f3da-fae3-19c5b5b03bde>