New user - Need help with 100% CPU usage/50k states

  • I started using pfSense about 3 weeks ago.  I have it installed on ESXi 4.1.  I've given pfSense 1600MHz of CPU and 1024MB of RAM.  RRD Summary is the only package I have installed.
    Version: 2.0-RC1 (amd64)
    built on Fri Apr 1 18:21:52 EDT 2011

    Something is causing pfSense to use 100% CPU and over 80% of its RAM.  I currently have it limited to 4800MHz/2048MB and it's still at 100% usage.  I can't afford to give it anymore. Current state table size is 49281/96000.  Currently connected to my network is 3 Win7 machines (only 1 being used), 1 Debian box (running a Minecraft server 0 players connected), and 2 WinXP machines.  The 2 WinXP machines are just being used for general internet browsing.  I've tried restarting pfSense 3 times and a few minutes after the reboot it goes back to this state.  As I said, I'm a new user so I'm not really sure how I should go about troubleshooting what is causing this.  If anyone could please give me some suggestions or tips, I'd really appreciate it.  Please let me know if you need more info and I'll provide it.  Thanks for reading.

    UPDATE:  I think I know what is causing all the lag.  Apparently it is spam querying my DNS servers trying to resolve my local hostname.  Now I've just go to figure out why and how to stop it.

  • Rebel Alliance Developer Netgate

    Do you have NAT reflection enabled? There was a recent but that could cause nat reflection to spawn a few thousand processes and consume all resources.

  • Thanks for the reply.

    I have 'Disable NAT Reflection for 1:1 NAT' checked.  Should I also check 'Disable NAT Reflection for port forwards'?

  • Rebel Alliance Developer Netgate

    Yes, make sure they are both disabled, and you may want to reboot for good measure. Though on a new snapshot it should be safe to have one or both enabled.

Log in to reply