pf Performance question

Paul Procacci pprocacci at
Sat Apr 17 02:39:00 UTC 2021

Honestly, if it's a single udp packet every second you have nothing to
worry about ... unless you're running hardware maybe from the 80's.  ;)

On Fri, Apr 16, 2021 at 9:51 PM Doug Hardie <bc979 at> wrote:

> I have several devices that emit udp packets to a specific port every
> second.  Unfortunately, they cannot terminate that.  However, on my systems
> they show up in pftop and netstat.  Currently I have them ignored in pf.
> They create state entries, but there is nothing listening to that port.
> Will it use less CPU if I put a pf drop statement for that port?
> -- Doug
> _______________________________________________
> freebsd-questions at mailing list
> To unsubscribe, send any mail to "
> freebsd-questions-unsubscribe at"


:(){ :|:& };:

More information about the freebsd-questions mailing list