On Tue, Aug 31, 2010 at 1:26 AM, Tom <[email protected]> wrote: > worked great.. > one firewall is 1.2.3 and it was exactly as you mentioned. > the other firewall is 1.2.2 and there is no "set skip on pfsync" line but I > added it in the same section before the > $rules .= "\n"; > touched a rule to force the firewall reload and the numbers show up as > expected. > # pfctl -sm > states hard limit 200000 > src-nodes hard limit 23456
That doesn't affect all scenarios but in some cases it can limit per-IP connections, so I changed it to stay the same as the state table size for future releases. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
