Updaterrd.sh
-
$pfstats
$pfnat
$srcip
$dstipthey all use
/sbin/pfctl -ss, which results in high cpu when the states table grows big.
so, why not output to a file and reuse the file? -
forgot the version is 1.2-beta1
after the default gateway changed, the ping destination ip test in updaterrd.sh doesnt change. -
after the default gateway changed, the ping destination ip test in updaterrd.sh doesnt change.
Yeah I think I noticed the same on one of my installs just in the past couple days.
$pfstats
$pfnat
$srcip
$dstipthey all use
/sbin/pfctl -ss, which results in high cpu when the states table grows big.
so, why not output to a file and reuse the file?Does that make a major, measurable difference? If so, I'm sure patches would be welcome.
-
@cmb:
Does that make a major, measurable difference? If so, I'm sure patches would be welcome.
sbin/pfctl -ss on my machine lasts about 5 seconds with the states table about 60K, 4 times is about 20 seconds.
reusing a file can reduces total time down to about 5 seconds.