SG-1100 - [zone: mbuf_cluster] kern.ipc.nmbclusters limit reached
-
Data Summary
Minimum Average Maximum Last 95th Percentile
user util. 0.92 % 4.88 % 23.12% 4.54 %
nice util. 0.00 % 0.11 % 0.75% 0.30 %
system util. 0.65 % 3.09 % 10.88% 3.48 %
interrupt 0.00 % 0.23 % 3.59% 0.63 %
processes 238.00 240.35 247.61 240.00Tomorrow I can see if its climbing, though I don't know what is mbuf in these monitoring graphs.
-
The graphs should show here:
There's pretty much no traffic passing that test box though
Steve
-
This post is deleted! -
Sorry, just learned this function, never used it before :)
Here you can see when installed from scratch, last coupld of days:
-
But there where no RAM issues I think in the SG-1100:
(My main box Dell server 16Gb RAM hits 1 million Mbuff max. What are normal numbers?)
-
1M is waay higher than it ever needs to be but that's currently the default for x86.
The ~50K you see there is the default for the 1100. It does look like something is leaking there though.
What do you have configured on that box?
-
- 2 workstations with VPN connecting to ext.office where servers are running. Nextcloud, Zimbra etc.
- When workstations are not running, some 2-3 mobile phones at a time max. now and then. Thats it.
- a satelite receiver connected with CCca*m to decode channels. (NOT streaming)
When it comes to installed packages it is just PfBlocker, nothing else on the default / fresh configuration.
It had many PRI1-2-3-4-5 lists on it. Switching Pfblocker off makes the differences of above.
What I'm trying now is just the most important blocklists, some 8-9 lists of PRI 1-2-3. -
So that's the OpenVPN on the firewall?
Do you have anything configured like igmpproxy or traffic shaping?
Anything less common like PPPoE server or L2TP?
-
No nothing at all like that, just OpenVPN (and Pfblocker)
-
Just to be clear the workstations using a VPN are using the OpenVPN link on firewall? Rather than VPNs from each workstation directly?
