FreeBSD bug #222126 "pf is not clearing expired states" - could this be affecting SG-3100?
-
see: bug #222126 - 'pf is not clearing expired states'
It's marked as Closed/FIXED (but only in 12.0-CURRENT, in commit: r338272)
I don't know about the internals of the Netgate hardware, so just asking if this is something that could potentially affect SG-3100, and upcoming SG-1100 etc...
-
I don't think we've seen any reports of states piling up like that.
Searching a bit I don't see any recent threads that match the symptoms.
It's possible it takes a specific set of circumstances to trigger, and perhaps our default rulesets and limits work around it somehow. It's not exactly clear what it takes to replicate from the FreeBSD PR, just seems to hit some people and not others.
-
Ok, seemed like one worth peeking at, so I was just checking. -
Looking through more comments on that PR, it looks like for some people still seeing the issue it was actually a clock/timekeeping problem and not a bug. Maybe it hasn't hit pfSense because nobody is using that specific hardware or setup that had the clock issue.
