On Mon, Apr 19, 2010 at 05:45:50PM +0200, Manuel Bouyer wrote: > OK, so I modified the patch as attached. This seems to work well with > my test setup.
I also installed this patch on the server that showed the problem. After 12 hours: 217612 SYN cache entries added 0 hash collisions 202657 completed 0 aborted (no space to build PCB) 837 timed out 0 dropped due to overflow 0 dropped due to bucket overflow 14045 dropped due to RST 0 dropped due to ICMP unreachable 216774 delayed free of SYN cache entries Memory resource pool statistics Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle synpl 280 217996 0 217993 21 19 2 4 0 inf 1 So this seems to work fine. I'll wait a few more days before commit. thanks for the help ! -- Manuel Bouyer <bou...@antioche.eu.org> NetBSD: 26 ans d'experience feront toujours la difference --