Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Any reason why rc.newipsecdns eats all the resources?

    General pfSense Questions
    1
    3
    661
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nothing last edited by

      PFS 2.1 64bit two node CARP cluster. ~1000 IPsec VPN tunnels. (actual network load is less than 1Mbps)
      All of the sudden happens what the attached picture shows. No users were logged on the devices and no config changes have been applied.

      And "top" shows php is eating all the CPU, running one after another "/usr/local/bin/php -f /etc/rc.newipsecdns" processes
      Syslog shows no events.

      Same thing happens on both master and standby servers. The graphs attached are from the standby server.

      What could trigger such a loop with rc.newipsecdns? And when this script is executed?



      1 Reply Last reply Reply Quote 0
      • N
        nothing last edited by

        Seems that the issue is caused by the gateway monitoring engine. I have few gateways, all monitored. I have disabled monitoring and the memory and cpu resources got released…
        At least that's on first sight for now.

        1 Reply Last reply Reply Quote 0
        • N
          nothing last edited by

          Aaand another update:
          Looks like increasing Probe Interval to 30 and Down to 300 fixed the problem.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy