Subject: Re: ipnat
To: Patrick Welche <prlw1@newn.cam.ac.uk>
From: Manuel Bouyer <bouyer@antioche.eu.org>
List: netbsd-users
Date: 03/06/2006 23:39:48
On Mon, Mar 06, 2006 at 12:41:49PM +0000, Patrick Welche wrote:
> Should ipnat's statistics really be monotonically increasing?
>
> # ipnat -s
> mapped in 17877109 out 15501105
> added 442065 expired 0
> no memory 14499 bad nat 19
> inuse 2491
> rules 44
> wilds 4294967294
>
> There comes a point where it seems one can't make new connections (as in
> you have to be lucky, or try often). The ipf side of things is fine..
> The "no memory" part above looks worrying - what type of memory is ipnat
> running out of? What can one do about it?
These are probably limits in statically-allocated tables.
These are defined in a file in sys/netinet/ (sorry I don't remember which
one)
--
Manuel Bouyer <bouyer@antioche.eu.org>
NetBSD: 26 ans d'experience feront toujours la difference
--