On Mon, Jul 21, 2008 at 03:55:41PM +0200, Amaury De Ganseman wrote:
Hey there,
> I run OpenBSD 4.3 on my gateway. But when a machine behind the
> NAT/gateway uses bittoreent (or gtk-gnutella) I loss packets.
> For example when I try to do a ping www.google.com I can see "ping:
> sendto: No buffer space available" (on my gateway)
> It's the same if I use gtk-gnutella. I think it's related to the huge
> number of states (about 1500 for bittorent)
The default limit for number of states is quite low. Try adding the
following to pf.conf and running pfctl -vf /etc/pf.conf
"
set limit { states 5000, frags 5000, src-nodes 5000 }
"
You can up the values if they are too low.
Use "pfctl -s info" to view how many entries there are in the state
table beforehand and compare it to afterwards.
HTH.
-- joe.
Denim is old news. Who wants to look like a member of B*witched?
