From 6891c20edc8e58c76f533c7ee11d883ffe1e4997 Mon Sep 17 00:00:00 2001 From: henning Date: Tue, 10 Jul 2018 16:48:22 +0000 Subject: [PATCH] The year is 2018. Mercury, Bowie, Cash, Motorola and DEC all left us. Just pf still has a default state table limit of 10000. Had! Now it's a tiny little bit more, 100k. lead guitar: me ok chorus: phessler theo claudio benno background school girl laughing: bob --- sys/net/pfvar.h | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/sys/net/pfvar.h b/sys/net/pfvar.h index 17878ab3d65..8edf918f946 100644 --- a/sys/net/pfvar.h +++ b/sys/net/pfvar.h @@ -1,4 +1,4 @@ -/* $OpenBSD: pfvar.h,v 1.479 2018/07/10 09:28:27 henning Exp $ */ +/* $OpenBSD: pfvar.h,v 1.480 2018/07/10 16:48:22 henning Exp $ */ /* * Copyright (c) 2001 Daniel Hartmeier @@ -620,9 +620,9 @@ struct pf_rule { #define PFRULE_AFTO 0x00200000 /* af-to rule */ #define PFRULE_EXPIRED 0x00400000 /* one shot rule hit by pkt */ -#define PFSTATE_HIWAT 10000 /* default state table size */ -#define PFSTATE_ADAPT_START 6000 /* default adaptive timeout start */ -#define PFSTATE_ADAPT_END 12000 /* default adaptive timeout end */ +#define PFSTATE_HIWAT 100000 /* default state table size */ +#define PFSTATE_ADAPT_START 60000 /* default adaptive timeout start */ +#define PFSTATE_ADAPT_END 120000 /* default adaptive timeout end */ #define PF_PKTDELAY_MAXPKTS 10000 /* max # of pkts held in delay queue */ struct pf_rule_item { -- 2.20.1