Peter Eisch wrote: > ... > [wandering off topic] > The root of this (for me) could be tied back to two other current threads. > Finding the "right" prime number to make the kernel buffers sufficiently > large while still being reasonable; being able to detect when I've hit the > wall; and potentially being able to change the values without having to > recompile a kernel. I've had to stop keeping state on the most common TCP > ports due to the large number of sessions I need to support. This has been > the quick solution to when I hit the wall and it doesn't cost me a full > reboot. >
There is a certain amount of sense in what you've said here - * doing stateful filtering for a busy web server just makes no sense on port 80 as the real threat is in the content, Darren
