On Fri, Feb 13, 2026 at 02:41:00PM +0000, Stuart Henderson wrote: > On 2026/02/13 10:18, K R wrote: > > > > It runs about 10 network daemons serving TCP clients. About 64-128 > > open sockets each, at any given time. Not much traffic, but around 4k > > pf states. > > Yet it seems you ran into 100k states to be hitting PF state limits? > I wonder if it's worth scripting a check on the number of states and > dumping the state table (pfctl -ss -v at least) to get an idea what's in > there when it's high. >
Plus netstat and fstat should tell you where all these sockets are. Maybe this is some TIME_WAIT madness. In the end your expectaion of 640 - 1280 sockets is more than a magnitude off the reality from the pool info. So I would try to figure out what is going on and why are so many states and connections started. -- :wq Claudio
