Bug 165315 - [pf] States never cleared in PF with DEVICE_POLLING
Summary: [pf] States never cleared in PF with DEVICE_POLLING
Status: Open
Alias: None
Product: Base System
Classification: Unclassified
Component: kern (show other bugs)
Version: Unspecified
Hardware: Any Any
: Normal Affects Only Me
Assignee: freebsd-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-02-20 11:00 UTC by fabrice.bruel
Modified: 2017-12-31 22:32 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description fabrice.bruel 2012-02-20 11:00:24 UTC
I'm testing hardware to improve a high load firewall. I'm using HP
360G7 and a Intel Quad port 82571EB (em(4)). In this hardware, if I
don't activate DEVICE_POLLING, network rate is very poor and sinusoidal.
 
If I activate DEVICE_POLLING, network is stable and fast, but :
- in 8.1p8, PF and rules over physical interfaces (em0 and em1) work
  perfectly, but if I applied PF rules on Vlan interfaces, many states
  would be never cleared

- in 8-STABLE is worse, a lot of state are never cleared on physical
  interfaces

I'm using PF in kernel mode.

How-To-Repeat: Enabling DEVICE_POLLING in kernel, and on em(4) interface. Create vlan
on this interfaces, generate network TCP highload, stop it and look at
pfctl -si "currentesentries", it never decrease to 0 (or 2 in you are
in ssh).
Comment 1 Mark Linimon freebsd_committer freebsd_triage 2012-02-22 03:47:57 UTC
Responsible Changed
From-To: freebsd-bugs->freebsd-pf

Over to maintainer(s).
Comment 2 Eitan Adler freebsd_committer freebsd_triage 2017-12-31 07:58:32 UTC
For bugs matching the following criteria:

Status: In Progress Changed: (is less than) 2014-06-01

Reset to default assignee and clear in-progress tags.

Mail being skipped