PF Source tracking table not cleaning up

A

Andras

Hello,

Source Tracking Table is not cleaning up. "pfctl -s Source" shows over 2,000 entries. For example :
Code: 
pfctl -s Source -vv
93.118.168.2 ( states 0, connections 0, rate 0.0/300s )
   age 244:46:56, expires in 00:00:00, 41 pkts, 6278 bytes
35.166.29.3 ( states 0, connections 0, rate 0.0/300s )
   age 246:03:49, expires in 00:00:00, 14 pkts, 608 bytes
115.84.75.3 ( states 0, connections 0, rate 0.0/300s )
   age 230:48:31, expires in 00:00:00, 7 pkts, 300 bytes
....
So they all say expires in 0 seconds, but they don't actually expire...

Here are some settings from pf.conf:
Code: 
set optimization conservative
set timeout { frag 30, tcp.established 28800 }
set timeout { tcp.first 30, tcp.closing 30, tcp.closed 30, tcp.finwait 30 }
set timeout { udp.first 30, udp.single 30, udp.multiple 30 }
set timeout { other.first 30, other.single 30, other.multiple 30 }
set limit { states 100000, frags 1000, src-nodes 4000 }
I already increased src-nodes to 4,000 but it still keeps increasing.

Thank You!

Andras
 
You must log in or register to reply here.
Back
Top