My State Tables are filling up, but not sure why. Anyone tell what these logs mean?



  • Hello,
    I am having a strange time here. First off I am streaming a video from a local media server (plex). And they are on the same subnet, so first off not sure why anything is going to gateway, but it is. Secondly I don't understand what the *.255:<plex port> signafies. Any ideas? But the state tables are filling up, and making everything super slow. Thanks.

    192.168.1.5:62136 (192.168.1.5:35094) -> 192.168.1.255:32414	SINGLE:NO_TRAFFIC	687 / 0	33 KiB / 0 B	
    LAN	udp	192.168.1.5:11781 -> 192.168.1.255:32414	NO_TRAFFIC:SINGLE	2.026 K / 0	97 KiB / 0 B	
    LAN	udp	192.168.1.5:38198 -> 192.168.1.255:32414	NO_TRAFFIC:SINGLE	2.268 K / 0	109 KiB / 0 B	
    LAN	udp	192.168.1.5:35966 -> 192.168.1.255:32412	NO_TRAFFIC:SINGLE	3.668 K / 0	176 KiB / 0 B	
    LAN	udp	192.168.1.5:62136 -> 192.168.1.255:32414	NO_TRAFFIC:SINGLE	1.374 K / 0	66 KiB / 0 B	
    WAN	udp	192.168.1.5:45211 (192.168.1.5:11781) -> 192.168.1.255:32414	SINGLE:NO_TRAFFIC	1.013 K / 0	48 KiB / 0 B	
    WAN	udp	192.168.1.5:48692 (192.168.1.5:38198) -> 192.168.1.255:32414
    

  • LAYER 8 Global Moderator

    @LakeWorthB said in My State Tables are filling up, but not sure why. Anyone tell what these logs mean?:

    But the state tables are filling up, and making everything super slow. Thanks.

    No -- unless you had say 100s of 1000's at minimum of states? That is your client/plex server sending a broadcast.. Those ports are plex "GDM network discovery"

    If you don't want pfsense to see said traffic, and create states for it - then block it on pfsense interface your seeing these.. Assume lan..

    How many states do you show total, and how many can your system handle? On the information widget on gui you should see

    State table size
    0% (331/813000)

    Unless that is like 100% or very very close to it, your not running into state exhaustion..

    If your not using it, you could also turn it off on your plex server, on your settings under network

    plex.png

    Uncheck that.

    What I would be concerned with is why are you showing states on your WAN?? Going to 192.168.1.255?

    And the wan IP is 192.168.1.5 as well?? Makes no sense at all.. How exactly do you have your network connected together? What is your wan IP, is it public is it rfc1918.. How do you have it connected to your network? Is pfsense VM, etc.. Is that 192.168.1.5 your plex server IP?

    This is not making any sense

    192.168.1.5:45211 (192.168.1.5:11781) -> 192.168.1.255:32414


  • Netgate Administrator

    Yeah that traffic creating WAN states is wrong in a number of ways!


  • LAYER 8 Global Moderator

    Well I could see a state getting created on broadcast that pfsense sees.

    Here for example just sent a ping to broadcast - and yeah there is a state

    statecreated.png

    Here is net view too broadcast, you can see pfsense creates a state on the lan where it sees the traffic

    udpstate.png

    But it sure and the hell would not send that out my wan?? So yeah something is way off here for sure.. which "could" explain whatever slowness he is seeing.



  • Thanks for the clues. Firstly I turned off the discovery option in Plex, but the main issue is I had the WAN and LAN on same subnet. Fixed that and now everything works great. Should thank Plex for pushing it over the edge.


  • LAYER 8 Global Moderator

    @LakeWorthB said in My State Tables are filling up, but not sure why. Anyone tell what these logs mean?:

    I had the WAN and LAN on same subnet.

    That anything would work at all - even slow as molasses with such a setup is surprising.



  • @johnpoz said in My State Tables are filling up, but not sure why. Anyone tell what these logs mean?:

    @LakeWorthB said in My State Tables are filling up, but not sure why. Anyone tell what these logs mean?:

    I had the WAN and LAN on same subnet.

    That anything would work at all - even slow as molasses with such a setup is surprising.

    Didn't think pfSense would allow a config like that. I don't care to test it :)


  • Netgate Administrator

    WAN is usually DHCP when that happens. Conflicting static subnets would not be allowed.

    Steve


Log in to reply