Henrik Gustafsson wrote:
There are a few gotchas here though, at least if i remember my problems correctly. If you plan to update your table regularly you will need at least 2x the maximum number of entries in the table since, at the time you do your refresh, pf will have two copies of your table in memory. The original and the new one.
That's true only if you reload your table from pf.conf. If you use pfctl -Tr, the kernel code is smart enough to avoid that problem if I remember correctly. Cedric
