On Thu, May 17, 2007 at 07:44:41PM +0200, Hauke Fath wrote:
> [Thread re-directed to tech-net list. Please post any replies there.]
> 
> At 13:14 Uhr +0000 17.5.2007, Darren Reed wrote:
> >On Tue, May 15, 2007 at 04:05:34PM +0200, Hauke Fath wrote:
> >>
> >> 4.1.20 is fscked, it goes to 'block all' mode in about a day here.
> >> Not useable.
> >
> >More information please.
> >
> >What made it seem like "block all" mode?
> 
> From some point of time (reached within a few hours on a working day) all
> incoming packets were blocked. In the end, the router itself was flooding
> the local DNS servers with requests while at the same time blocking some of
> the outgoing packets:

Does ipf 4.1.22 improve the situation?

Pavel