On Fri, May 27, 2011 at 09:18:48AM +0200, Claer wrote: > On Thu, May 26 2011 at 48:23, Oeschger Patrick wrote: > > hi all > > obsd 4.9 seems to support 128 routing domains > > is this a hard limit or is it configurable? > > how about 512/1024/2048 routing domains? (silly idea?) > > ...i want to consolidate more than 128 small firewalls on one hardware and > > routing domains would be nice to prevent data leaking between the FWs... > > Hi, > > The max rdomain value is controled with a define > sys/socket.h:#define RT_TABLEID_MAX 255
Yes, it should be enough to change this value and rebuild the system. > If you think the limit is 128, maybe you were encoutering a bug where 128 > is hardcoded. I found one in ifconfig configuring gif, reported to devs, > and now it's fixed in current. Try current and report the bug if it's still > present. > > As I didn't try more than 200 rdomains in a test machine, I could not tell > if 512/1024/2048 is a silly idea or not. 2000 and more should work. The memory usage will increase and a certain slowdown will happen (because 2000 rdomains need a lot of interfaces, etc). -- :wq Claudio
