Significant memory usage
-
I recently updated from 2.1.5 to 2.2.2. I had the usual problem of no boot after upgrade, but I rebooted via the command line and all started working. I have over 40 IPSEC VPNs which all came up.
4 days later I lost contact with the web GUI and had to reboot through the shell.
2 days after that I noticed that free memory had dropped to zero.
Shortly after I found that if I disbabled IPSEC via the checkbox on the IPSEC configuration page, then rechecked it a minute later, all the "used" memory reverted back to "free" memory. I've had to do that every other day. If I don't swap memory starts being used, and two days later the system crashes.
We've been using pfSense for 4 years and never had to reboot. No changes where made to the system or VPN configuration after the upgrade to 2.2.2. I can't help but wonder if strongSwan has a serious memory management problem.
I thought I'd ask the group before doing a clean install of 2.1.5.
Attached is an RRD chart.
Does anyone have any ideas?
-
How much RAM do you have in that system? strongswan is more memory hungry than racoon was, and more so because of an issue with rekeyed SAs piling up which is hopefully fixed in 2.2.3. From the looks of that though I suspect either you have a very small amount of RAM, or are hitting a memory leak worse than I've seen.
-
It's an i386 system with 4 gigs of RAM.
-
I was mistaken. It is an i386, but it's 1 gig of RAM with a 2 gig swap drive.
-
Any thoughts on when 2.2.3 will be released?
-
That seems really excessive. Could you PM me the output of "ipsec statusall"?
2.2.3 coming in the not too distant future, a month or less maybe. But not sure it'll solve whatever you're seeing without knowing more about it.