SNMP OID for State Table?
-
Last week we had a situation where we hit the pre-set 10,000 state limit of our 1.2.3 device, which manifested itself in all sorts of problems with our application.
Is there a way to monitor the state table via SNMP?
-
i have no knowledge for the question itself, but if you have more ram than 10MB then you should have bigger state table, if you change the size for it
-
i have no knowledge for the question itself, but if you have more ram than 10MB then you should have bigger state table, if you change the size for it
Thank you Metu. I bumped it to 40,000 and we're still only utilizing around 3% of total RAM. We are awfully close to our MBUF limit however.
This is not critical, as it is being replaced in the next few weeks and will then be upgraded to 2.0. But having the comfort of knowing that we can monitor for this situation would be handy.
-
You can change mbufs in /boot/loader.conf e.g.
kern.ipc.nmbclusters=32768
-
You can change mbufs in /boot/loader.conf e.g.
kern.ipc.nmbclusters=32768
Thank you, but I have no idea what the impact of that would be. What is the impact of raising the MBUF limit?
To clarify, I am being asked by our CTO to monitor this. Either we can, or we can't, but I would like to provide an answer one way or the other.
-
The SNMP OIDs for various pf bits can be found here in the pf MIB:
http://files.pfsense.org/jimp/BEGEMOT-PF-MIB.txt
-
The SNMP OIDs for various pf bits can be found here in the pf MIB:
http://files.pfsense.org/jimp/BEGEMOT-PF-MIB.txt
Ah ha! Perfect! Right there at the top of the MIB is pfStateTable with a object-type description of "Number of entries in the state table."
That sounds like exactly what I need.
Thank you.
