Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [problem] State Timeout / TCP session closed

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 1 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R Offline
      RH-Fred
      last edited by

      Dear pfsense community,

      I am new with pfsense. 58 days ago (yes, it is my pfsense server uptime :) ) I have installed pfsense as a production router in front of my web servers. Everything just worked fine, and I was very very happy with it.
      My router is a 4-core Xeon with 8Gb of RAM.

      For a few ip ranges i have set state timeout to 86400 (1 Day) in order to have longer SSH sessions (for example).

      My problem is that since a few days ALL TCP connections are closed after 30sec. Sometimes connections are kept longer, but after 10-15min they are closed again every 30sec.
      It looks like a table overflow, but my state table size is 785000 and I only use 10000-15000 of them. My CPU is running between 1 and 5%, my disk space is 99% and my traffic throughput is between 10 and 40mbit/s

      I obviously double-checked my rules, and do not see anything wrong with them.
      I made a rule to drop all states after 10 sec and did not see any difference, it looks like the firewall is simply ignoring my rules.

      So in order to have my network working normally I do not have an other choice than disabling all packet filtering on my pfsense.

      What should I do in order to debug my problem ? Is this issue known ? (don't find anything) Should I reboot this server ?

      If have other problems with snort (which is disabled too) but don't think it is linked.

      thank you in advance for your help
      Fred

      P.S : Sorry if my english is not perfect, I work hard to improve it  ;)

      1 Reply Last reply Reply Quote 0
      • R Offline
        RH-Fred
        last edited by

        Hello,

        I heard that pfsense is very reliable, and some people says to me that a reboot is useless, and will not resolve my problem.

        Since nobody helped me, i took the decision to reboot my pfsense server.
        After reboot and without modifying any setting, my pfsense is working well again.  ???

        Maybee it is beacause I do not know how to troubleshot this kind of issue.
        Don't anyone know how to troubleshoot this kind of issue ?

        Thanks you  :)
        Fred

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.