Date: Wed, 17 Aug 2011 14:58:40 +0200 From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= <eri@freebsd.org> To: Florian Smeets <flo@freebsd.org> Cc: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>, freebsd-pf@freebsd.org Subject: Re: svn commit: r223637 - in head: . contrib/pf/authpf contrib/pf/ftp-proxy contrib/pf/man contrib/pf/pfctl contrib/pf/pflogd sbin/pflogd sys/conf sys/contrib/altq/altq sys/contrib/pf/net sys/modules s... Message-ID: <CAPBZQG080N4xyDLG7y1rCprsa5oo7Dtshk1ny7j4-M3bEXhkaA@mail.gmail.com> In-Reply-To: <4E4BB602.2060205@freebsd.org> References: <201106281157.p5SBvP5g048097@svn.freebsd.org> <EA6E6909-A42B-4CF2-891A-B8A80E2B8476@FreeBSD.org> <20110629192224.2283efc8@fabiankeil.de> <20110707193539.GA60591@dragon.NUXI.org> <CAPBZQG1ZOBJh0BMPH%2BkKAHfWJoYCubdGunncd5Bhd7y39-_fkA@mail.gmail.com> <20110708170240.GA59024@dragon.NUXI.org> <4E4BB39D.8070903@freebsd.org> <22DE2AEF-22A3-4B6E-9E24-DCF0EDF40933@lists.zabbadoz.net> <4E4BB602.2060205@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Aug 17, 2011 at 2:37 PM, Florian Smeets <flo@freebsd.org> wrote: > On 17.08.2011 14:30, Bjoern A. Zeeb wrote: >> >> On Aug 17, 2011, at 12:27 PM, Florian Smeets wrote: >> >>> On 08.07.2011 19:02, David O'Brien wrote: >>>> >>>> On Fri, Jul 08, 2011 at 02:26:37PM +0200, Ermal Lui wrote: >>>>> >>>>> On Thu, Jul 7, 2011 at 9:35 PM, David O'Brien<obrien@freebsd.org> >>>>> wrote: >>>>>> >>>>>> I have 'pfctl', 'netstat', 'netstat -rn', and 'sysctl -a' output fro= m >>>>>> one >>>>>> of these experiences. =EF=BF=BDWould they be useful to you in lookin= g into >>>>>> this? >>>>> >>>>> please send those. >>>>> Also useful would be a description of your setup. >>>> >>>> Ermal, >>>> Thanks. =C2=A0I'll send to you off list. >>>> >>> >>> Hi, >>> >>> did you guys find out what was wrong? I may have a similar problem. My >>> server loses connection after some time. I think it is because the stat= e >>> table is getting full, but i only have a couple of active states. >>> >>> The current entries keep increasing, i had ~3600 this morning. >>> >>> flo@tb:~ # sudo pfctl -vsi|grep "current entries" >>> No ALTQ support in kernel >>> ALTQ related functions disabled >>> =C2=A0current entries =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 = =C2=A0 =C2=A0 =C2=A0 4891 >>> =C2=A0current entries =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 = =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A00 >>> flo@tb:~ # sudo pfctl -ss| wc -l >>> No ALTQ support in kernel >>> ALTQ related functions disabled >>> =C2=A0 =C2=A0 =C2=A012 >>> >>> Every new connection is added to the current entries but it seems they >>> are never removed?! >>> >>> I've set debug to loud, what else should i do to track this down? >> >> There is a thread in freebsd-net@ explaining some culprits with state table numbers from pfctl -ss and number from pfctl -vsi. >> What version (SVN r#) are you running? >> > > FreeBSD 9.0-BETA1 #2 r224876: Mon Aug 15 09:52:56 CEST 2011 > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > --=20 Ermal
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPBZQG080N4xyDLG7y1rCprsa5oo7Dtshk1ny7j4-M3bEXhkaA>