Subject: Re: kern/37174: ipfilter doesn't properly remove connections from NAT table
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: Pavel Cahyna <pavel@NetBSD.org>
List: netbsd-bugs
Date: 10/22/2007 21:20:03
The following reply was made to PR kern/37174; it has been noted by GNATS.
From: Pavel Cahyna <pavel@NetBSD.org>
To: gnats-bugs@NetBSD.org
Cc: kern-bug-people@NetBSD.org, gnats-admin@NetBSD.org,
netbsd-bugs@NetBSD.org
Subject: Re: kern/37174: ipfilter doesn't properly remove connections from NAT table
Date: Mon, 22 Oct 2007 23:14:42 +0200
> Install NetBSD 4.0_RC3 onto a machine which does NAT for a modest sized
> network. ipnat -l | wc will show a constantly growing list of connections.
> Networks which would normally only average around 1,000 connections show
> more than 25,000 connections in a day or two. Networks which average
> around 50 connections show more than 20,000 after four or five days.
Probably caused by http://releng.netbsd.org/cgi-bin/req-4.cgi?show=880
which will be backed out soon.