Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    GIF Tunnel & Disconnected IPv4 WAN Filling State Table

    Scheduled Pinned Locked Moved IPv6
    1 Posts 1 Posters 306 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jarrodsfarrell
      last edited by

      For context: Connection to the internet is done via a ADSL modem set in bridge mode so the firewall interacts directly with the ISP to DHCP a IPv4 address. For IPv6, it's done via a Hurricane Electric GIF tunnel.

      Moving along, the firewall and modem were off for an extended period and when turning it back on I found the state table filling up and the firewall being generally sluggish. After a quick phone Googling, I connect to the firewall over SSH and run pfctl -vvss to find a lot of states related to GIF so I took down the tunnel which solved the state table from filling. Verifying the firewall was reconnected the internet and updated HE with it's new IP, I turn on the GIF tunnel again and all seems well now.

      Had anyone else had this issue or did I discover a novel bug of some sort?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.