On 3/31/06, Travis H. <[EMAIL PROTECTED]> wrote: > Is anyone else using tagging extensively and _not_ having problems > with running out of kernel buffer space? Do you do any retagging? Do > you tag on one interface and use the tag on another?
At work, all my rules are pass in ... tag ROUTED w/ a pass out quick tagged ROUTED at the head of my rule list. All my boxes are still running 3.5 though, but all have a large amount of uptime (since the last kernel patch I backported) w/ no problems. For pfSense (FreeBSD 6.0), we use tags pretty heavily for the traffic shaper (to keep it seperate from the filter policy - kinda of painful actually) and our userbase hasn't been complaining about this issue. We're probably not doing quite as much tagging as you so if it's tag related, it must be due to extensive retagging (we do very little of that). --Bill
