Discussion:
pf Performance question
Doug Hardie
2021-04-17 01:50:44 UTC
Permalink
I have several devices that emit udp packets to a specific port every second. Unfortunately, they cannot terminate that. However, on my systems they show up in pftop and netstat. Currently I have them ignored in pf. They create state entries, but there is nothing listening to that port. Will it use less CPU if I put a pf drop statement for that port?

-- Doug
Paul Procacci
2021-04-17 02:38:45 UTC
Permalink
Honestly, if it's a single udp packet every second you have nothing to
worry about ... unless you're running hardware maybe from the 80's. ;)
Post by Doug Hardie
I have several devices that emit udp packets to a specific port every
second. Unfortunately, they cannot terminate that. However, on my systems
they show up in pftop and netstat. Currently I have them ignored in pf.
They create state entries, but there is nothing listening to that port.
Will it use less CPU if I put a pf drop statement for that port?
-- Doug
_______________________________________________
https://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "
--
__________________

:(){ :|:& };:
Continue reading on narkive:
Loading...