[ previous ] [ next ] [ threads ]
 
 From:  "Nathaniel B. Lyon" <nate dot lyon at nfldwifi dot net>
 To:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  "m0n0wall at lists dot m0n0 dot ch" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] Appliance to install m0n0wall on
 Date:  Mon, 19 Jul 2010 09:56:20 -0500
How tough is it to raise/lower the ipfilter tables?

-----Original Message-----
From: Chris Buechler [mailto:cbuechler at gmail dot com] 
Sent: Sunday, July 18, 2010 2:57 PM
To: Nathaniel B. Lyon
Cc: m0n0wall at lists dot m0n0 dot ch
Subject: Re: [m0n0wall] Appliance to install m0n0wall on

On Sun, Jul 18, 2010 at 12:26 PM, Nathaniel B. Lyon
<nate dot lyon at nfldwifi dot net> wrote:
> So monowall doesn't scale the state table based on the amount of memory the box has like pfsense?
>

No, ipfilter hard codes the limit. Not sure if that's something that's
changed in newer ipfilter versions (latest m0n0wall is FreeBSD 6.4,
latest FreeBSD is 8.1) so may change in the future, at this time
that's the case though.

> Also, would gig on board be better than something pci based?
>

Generally a wash, as long as you're talking PCI-X or PCI-e, not PCI.
The latter is too slow for full gig speeds.