Maximum throughput ? limit?
Bartek W. aka Mastier
mistrzipan at gmail.com
Sat Jan 21 10:27:40 UTC 2012
W dniu 19.01.2012 17:32, Adam PAPAI pisze:
> Bartek W. aka Mastier wrote:
>
>>>
>> Indeed. The default maximum is 10 000 states as I remember.
>>
>> I.e. one of the main routers in my case. core quad.
>>
>> set limit { states 300000, frags 10000, src-nodes 100000 }
>
> I had the states up to 250000 but the frags and scr-nodes were the
> default.
>
> What's your timeout interval?
>
default
# pfctl -st
tcp.first 30s
tcp.opening 5s
tcp.established 18000s
tcp.closing 60s
tcp.finwait 30s
tcp.closed 30s
tcp.tsdiff 10s
udp.first 60s
udp.single 30s
udp.multiple 60s
icmp.first 20s
icmp.error 10s
other.first 60s
other.single 30s
other.multiple 60s
frag 30s
interval 10s
adaptive.start 180000 states
adaptive.end 360000 states
src.track 0s
More information about the freebsd-pf
mailing list