* Apparent Memory Leak
@ 2003-03-05 20:11 Del Winiecki
2003-03-06 11:23 ` Harald Welte
0 siblings, 1 reply; 2+ messages in thread
From: Del Winiecki @ 2003-03-05 20:11 UTC (permalink / raw)
To: netfilter-devel
Hi,
My Linux router using DNAT/SNAT/mangle etc, all works as expected, but
am seeing what appears to be a memory leak. As traffic increases,
available ram disappears and never returns. Eventually it begins to page
applications to disk, and then I have to reboot it. With no network
traffic, used memory is static.
I see a bug at RedHat where someone else had the exact same problem.
Does anyone know of any memory de-allocation problems at the net buffer
level?
This router handles internet traffic for 2 isp's and 7 company LAN's, so
moderately complex iptables setup, tbf rate management for some.
IPTABLES version 1.2.5
RedHat kernel 2.4.18-24.7.x for i686
running on an intel pentium 4 - 2.4ghz, ASUS P4B533 motherboard with
1gbyte ram.(5) 3com 3c905ctx nic cards, (1) Sangoma T1 WAN card.
The problem occurs with or without the Sangoma card present in the
system.
Regards,
Del W.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Apparent Memory Leak
2003-03-05 20:11 Apparent Memory Leak Del Winiecki
@ 2003-03-06 11:23 ` Harald Welte
0 siblings, 0 replies; 2+ messages in thread
From: Harald Welte @ 2003-03-06 11:23 UTC (permalink / raw)
To: Del Winiecki; +Cc: netfilter-devel
[-- Attachment #1: Type: text/plain, Size: 1583 bytes --]
On Wed, Mar 05, 2003 at 01:11:00PM -0700, Del Winiecki wrote:
> Hi,
> My Linux router using DNAT/SNAT/mangle etc, all works as expected, but
> am seeing what appears to be a memory leak. As traffic increases,
> available ram disappears and never returns. Eventually it begins to page
> applications to disk, and then I have to reboot it. With no network
> traffic, used memory is static.
> I see a bug at RedHat where someone else had the exact same problem.
> Does anyone know of any memory de-allocation problems at the net buffer
> level?
No, we are not aware of such issue. And there are in fact lots of
people (with large setups, even at universities) using
netfilter/iptables...
... so if there really is a memory leak, there has to be something
specific about your setup.
> This router handles internet traffic for 2 isp's and 7 company LAN's, so
> moderately complex iptables setup, tbf rate management for some.
2 isp's... but you don't do asymmetric routing?
what is the average number of conntrack entries you have?
does the number of conntrack entries also grow and never shrink?
does /proc/net/ip_conntrack show lots of UNCONFIRMED entries?
> Regards,
> Del W.
--
- Harald Welte <laforge@netfilter.org> http://www.netfilter.org/
============================================================================
"Fragmentation is like classful addressing -- an interesting early
architectural error that shows how much experimentation was going
on while IP was being designed." -- Paul Vixie
[-- Attachment #2: Type: application/pgp-signature, Size: 232 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2003-03-06 11:23 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-03-05 20:11 Apparent Memory Leak Del Winiecki
2003-03-06 11:23 ` Harald Welte
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.