It seems I cannot load a ruleset with more than 120 (128?) rules: npfctl: npfctl_config_send: Invalid argument Is there a limit on rule count? How to raise?
Hmm, /* * Some artificial limits. * Note: very unlikely to have many ALGs. */ #define NPF_MAX_RULES (1024 * 1024) #define NPF_MAX_ALGS 4 #define NPF_MAX_TABLES 128 #define NPF_MAX_RPROCS 128 #define NPF_MAX_IFMAP 64 Strange. If I remove some (random) rules, it loads. Trying to figure out... -- Gergely EGERVARY