I am running 4.7 on a firewall, with an extremely simple nat setup -- not all packets are passed through nat, as some services such as ntp and dnswall are handled on the firewall -- but for those packets that are nat'd, there are only static (redirect_address) rules.
What happens is that, over time, natd starts to use more cycles and memory, even without any network traffic through the box. When the latency to outside increases by about 4x, I kill and restart natd, and all works fine. This isn't ideal, however. Any suggestions? contents of my natd config follow. # rc.natd # # external interface interface sis0 # use_sockets same_ports unregistered_only # redirect_address 192.168.188.18 66.92.188.18 redirect_address 192.168.188.165 66.92.188.165 redirect_address 192.168.188.175 66.92.188.175 redirect_address 192.168.188.241 66.92.188.241 To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-net" in the body of the message