PFsense + Haproxy

  • Hi All,

    I installed Haproxy in Pfsense. When I use acl (URI) to control backend in haproxy, I found double state table records in

    Pfsense. Also, I found >700K  state table records in Pfsense, Pfsense will not working properly. Can I know how to reduce the state

    table records in PFsense?

  • What kind of states are there? On wan or lan side? Having a acl or not should have no effect to the number of states.. Are you using transparent-Client-Ip on the backend?

    To get rid of states you could possibly make some stateless floating rules, then pfsense wont track states anymore. Make sure to allow both ways and all types of flags..

Log in to reply