how much memory does increasing max rules for IPFW take up?

Vivek Khera vivek at
Thu May 15 16:28:52 UTC 2008

On May 15, 2008, at 6:03 AM, Bruce M. Simpson wrote:

> Having said that the default tunable of 256 state entries is  
> probably quite low for use cases other than "home/small office NAT  
> gateway".

The deafult on my systems seems to be 4096.  My steady state on a  
pretty popular web server is about 400, on a busy inbound mail server,  
around 800 states.  I need to account for peaks much higher, though.   
Luckily most of my connections are short-lived.

Thanks for the answers!

More information about the freebsd-ipfw mailing list